| 摘要 |
A method for selectively preventing the downloading and execution of undesired Executable Objects in a computer includes analyzing a header of a an Executable Object which is detected at a gateway, determining the resources of a computer that the Executable Object needs to utilize and comparing the resources of the computer that the Executable Object needs to utilize with a user's Security Policy representing the resources, or a combination of resources, that the user allows or does not allow an executable object to utilize within its network. The Executable Object is allowed to pass through the gateway and to reach the computer which has initiated its downloading, if the resources of the computer that the Executable Object needs to utilize are included in the list of the resources allowed for use by the Security Policy. The Executable Object is prevented from passing through the gateway, thereby preventing it from reaching the computer which has initiated its downloading, if the resources of the computer that the Executable Object needs to utilize are included in the list of the resources prohibited for use by the Security Policy. |
