| 发明名称 | System and method of controlling access of a native image of a machine code to operating system resources | ||
| 摘要 | Disclosed is a system and method for controlling access of a native image of a machine code to resources of an operating system of a device. An example method includes obtaining the native image of the machine code; identifying a parent assembly from which the native image was created; determining a category of trust of the parent assembly; determining a category of trust of the native image based on the category of trust of the parent assembly; and restricting access of the native image that has an untrusted category of trust to the resources of the operating system of the device. | ||
| 申请公布号 | US9384364(B1) | 申请公布日期 | 2016.07.05 |
| 申请号 | US201514811135 | 申请日期 | 2015.07.28 |
| 申请人 | AO Kaspersky Lab | 发明人 | Ivanov Dmitry G.;Pavlov Nikita A.;Shvetsov Dmitry V.;Gorshenin Mikhail A. |
| 分类号 | G06F21/62 | 主分类号 | G06F21/62 |
| 代理机构 | Arent Fox LLP | 代理人 | Arent Fox LLP ;Fainberg Michael |
| 主权项 | 1. A method for controlling access of a native image of a machine code to resources of an operating system of a device, the method comprising: restricting, by a hardware processor, writing access to the native image of the machine code; identifying, by the hardware processor, a parent assembly which was used to create the native image having a restricted writing access; updating, by the hardware processor, the native image by replacing at least a part of the native image with a new native image based on the parent assembly; determining, by the hardware processor, a category of trust of the parent assembly; assigning, by the hardware processor, a category of trust of the parent assembly to the updated native image; and restricting, by the hardware processor, access of the updated native image that has an untrusted category of trust to the resources of the operating system of the device. | ||
| 地址 | Moscow RU | ||