发明名称 |
Systems and methods for neutralizing file-format-specific exploits included within files contained within electronic communications |
摘要 |
A computer-implemented method for neutralizing file-format-specific exploits contained within electronic communications may include (1) identifying an electronic communication, (2) identifying at least one file contained within the electronic communication, and then (3) neutralizing any file-format-specific exploits contained within the file. In one example, neutralizing any file-format-specific exploits contained within the file may include applying at least one file-format-conversion operation to the file. Additionally or alternatively, neutralizing any file-format-specific exploits contained within the file may include constructing a sterile version of the file that selectively omits at least a portion of any exploitable content contained within the file. Various other methods, systems, and computer-readable media are also disclosed. |
申请公布号 |
US9009459(B1) |
申请公布日期 |
2015.04.14 |
申请号 |
US201213418332 |
申请日期 |
2012.03.12 |
申请人 |
Symantec Corporation |
发明人 |
Nachenberg Carey;Guo Fanglu;Nanda Susanta;Bhatkar Sandeep;Shou Darren;Dacier Marc |
分类号 |
G06F15/16;G06F21/56 |
主分类号 |
G06F15/16 |
代理机构 |
ALG Intellectual Property, LLC |
代理人 |
ALG Intellectual Property, LLC |
主权项 |
1. A computer-implemented method for neutralizing file-format-specific exploits included within files contained within electronic communications, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising:
identifying an electronic communication transmitted to a specified recipient at least in part by intercepting the electronic communication during transmission; identifying at least one file attached to the electronic communication as an attachment; protecting the specified recipient of the electronic communication by:
neutralizing any file-format-specific exploits contained within the attachment by applying at least one file-format-conversion operation to the attachment, wherein applying the file-format-conversion operation to the attachment comprises:
identifying the attachment's current file format;converting the attachment into at least one file format that is different from the attachment's current file format;converting the attachment back to its original file format;completing the transmission of the electronic communication by providing the electronic communication to the specified recipient after neutralizing any file-format-specific exploits by converting the attachment into the file format that is different from the attachment's current file format and converting the attachment back to its original file format. |
地址 |
Mountain View CA US |