发明名称 |
METHOD AND SYSTEM FOR FILTERING COMMUNICATION TO PREVENT EXPLOITATION OF SOFTWARE VULNERABILITY |
摘要 |
PROBLEM TO BE SOLVED: To provide a method and system for protecting an application that implements a communication protocol against exploitation of a communication-based vulnerability. SOLUTION: A protection system provides a protection policy that specifies how to recognize messages that expose a specific vulnerability and specifies actions to take when the vulnerability is exposed. A protection policy specifies the sequence of messages and their payload characteristics that expose a vulnerability. The protection system can specify the sequences of messages using a message protocol state machine. A message protocol state machine of an application represents the states that the application transitions through as it receives various messages. The protection system uses the message protocol state machine to track the states that lead up to the exposing of the vulnerability. COPYRIGHT: (C)2006,JPO&NCIPI |
申请公布号 |
JP2005276185(A) |
申请公布日期 |
2005.10.06 |
申请号 |
JP20050048972 |
申请日期 |
2005.02.24 |
申请人 |
MICROSOFT CORP |
发明人 |
ZUGENMAIER ALF;GUO CHUANXIONG;SIMON DANIEL R;GARMS JASON;WANG JIAHE HELEN |
分类号 |
G06F21/22;H04L12/26;H04L29/06;(IPC1-7):G06F11/00 |
主分类号 |
G06F21/22 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|