| 发明名称 | Systems and methods for neutralizing file-format-specific exploits included within files contained within electronic communications | ||
| 摘要 | A computer-implemented method for neutralizing file-format-specific exploits contained within electronic communications may include (1) identifying an electronic communication, (2) identifying at least one file contained within the electronic communication, and then (3) neutralizing any file-format-specific exploits contained within the file. In one example, neutralizing any file-format-specific exploits contained within the file may include applying at least one file-format-conversion operation to the file. Additionally or alternatively, neutralizing any file-format-specific exploits contained within the file may include constructing a sterile version of the file that selectively omits at least a portion of any exploitable content contained within the file. Various other methods, systems, and computer-readable media are also disclosed. | ||
| 申请公布号 | US9009459(B1) | 申请公布日期 | 2015.04.14 |
| 申请号 | US201213418332 | 申请日期 | 2012.03.12 |
| 申请人 | Symantec Corporation | 发明人 | Nachenberg Carey;Guo Fanglu;Nanda Susanta;Bhatkar Sandeep;Shou Darren;Dacier Marc |
| 分类号 | G06F15/16;G06F21/56 | 主分类号 | G06F15/16 |
| 代理机构 | ALG Intellectual Property, LLC | 代理人 | ALG Intellectual Property, LLC |
| 主权项 | 1. A computer-implemented method for neutralizing file-format-specific exploits included within files contained within electronic communications, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising: identifying an electronic communication transmitted to a specified recipient at least in part by intercepting the electronic communication during transmission; identifying at least one file attached to the electronic communication as an attachment; protecting the specified recipient of the electronic communication by: neutralizing any file-format-specific exploits contained within the attachment by applying at least one file-format-conversion operation to the attachment, wherein applying the file-format-conversion operation to the attachment comprises: identifying the attachment's current file format;converting the attachment into at least one file format that is different from the attachment's current file format;converting the attachment back to its original file format;completing the transmission of the electronic communication by providing the electronic communication to the specified recipient after neutralizing any file-format-specific exploits by converting the attachment into the file format that is different from the attachment's current file format and converting the attachment back to its original file format. | ||
| 地址 | Mountain View CA US | ||