Computer system security method and apparatus having program authorization information data structures
INFORMATION PROTECTION AND AUTHENTICATION OF TEXAS, LLCThe holder of the '717 patent has sued Microsoft, Symantec, CA, F-Secure, McAfee, Kaspersky, Sophos, Novell, and PC Tools for infringing this patent.
Last updated: about 1 year ago
Summary / Description
| Summary / Description | Chris Johnson's Gatekeeper Anti Virus, developed in the 1980s and until 1993, provided a UI for controlling application functions on a per-program basis and storing the privileges in a file. |
Basic Information
| Type of Prior Art | Online Publication |
| URL | http://cd.textfiles.com/hackchr... |
| Author/Creator | Chris Johnson |
| Title | Gatekeeper false alarm? |
| Publication Date | October 24, 1989 |
| Publisher | VIRUS-L Digest, Ken van Wyk |
| Directions to Document Location | |
| Additional Information | This article refers to a version of Gatekeeper, which was available on the Mac. The excerpt discusses the feature of controlling viruses by controlling specific behaviors on a per-program basis. |
Notes / To Do
| Notes | |
Excerpt
STRs 801 and 700 are good examples of strands of hay mistaken for needles.
Returning to Gatekeeper, the symptoms are not quite "hard-wired". Gatekeeper's
philosophy is, basically, that if a virus can't move, add, modify or delete
executable resources (there are about 24 types), then it can't spread.
And a virus that can't spread isn't really a virus anymore. Of course, you'll
still want something like Disinfectant to remove the effectively sterilized
virus.
The list of executable resources is certainly not hard-wired - it's easily
edited by following the instructions in the on-line help. The type of
monitoring that Gatekeeper does *is* hard-wired, but in order to establish
that this is a problem, a way must first be found to spread a virus without
moving, adding, modifying or deleting executable resources.
In short, the hard-wired aspects of Gatekeeper are not a problem - they are
*fundamental* protections. This is why Gatekeeper has been able to stop
every Mac virus discovered to date, including totally new viruses like
ANTI and INIT 29 which were developed *after* Gatekeeper was written.
I should add that Gatekeeper's security system has not had to change since
it was first released on 2-Jan-89, precisely because it is such a fundamental
approach to stopping viruses.
Relevance
Claims
Claim 120
In a digital computer system having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, a method for providing improved computer security comprising the steps of:
a) storing digital authorization information in said memory means which restricts an associated program from accessing resources when executed by said digital data processing means which are accessible to said computer user; and
b) storing in at least one segment, digital data for associating said authorization information with at least one program to be executed by said processing means for said computer user.
Relevance
The Gatekeeper software would associate a number of authorization entries with each program, and would store these associations in a policy file. The authorization entries would control certain behaviors typical of viruses and worms, and in this way the system would protect the user by preventing the viruses from taking control of the operating system (Mac OS).
The Gatekeeper software would associate a number of authorization entries with each program, and would store these associations in a policy file. The authorization entries would control certain behaviors typical of viruses and worms, and in this way the system would protect the user by preventing the viruses from taking control of the operating system (Mac OS).
Claim Chart
All
Claim 61
In a digital computer system for providing improved computer security having digital data processing means for executing a plurality of digital computer programs for a computer user and memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising:
a) means for storing digital authorization information in said memory means which restricts an associated program from performing operations, when executed by said processing means, which are available to said computer user; and
b) means for storing in at least one segment digital data for associating said authorization information with at least one program to be executed by said processing means.
Relevance
The Gatekeeper software would associate a number of authorization entries with each program, and would store these associations in a policy file. The authorization entries would control certain behaviors typical of viruses and worms, and in this way the system would protect the user by preventing the viruses from taking control of the operating system (Mac OS).
The Gatekeeper software would associate a number of authorization entries with each program, and would store these associations in a policy file. The authorization entries would control certain behaviors typical of viruses and worms, and in this way the system would protect the user by preventing the viruses from taking control of the operating system (Mac OS).
Claim Chart
All
Claim 1
In a digital computer system having a digital data processing means for executing a plurality of digital programs and a memory means for storing digital program instructions and digital data, apparatus for protecting a digital computer user from operations typically performable by a digital computer program executing on behalf of a user comprising:
a) means for storing a plurality of digital authorization entries in said memory means, wherein said entries qualify operations which an associated program is permitted to perform when executed by said processing means; and
b) means for storing in at least one segment, digital data for associating said authorization entries with at least one program.
Relevance
The Gatekeeper software would associate a number of authorization entries with each program, and would store these associations in a policy file. The authorization entries would control certain behaviors typical of viruses and worms, and in this way the system would protect the user by preventing the viruses from taking control of the operating system (Mac OS).
The Gatekeeper software would associate a number of authorization entries with each program, and would store these associations in a policy file. The authorization entries would control certain behaviors typical of viruses and worms, and in this way the system would protect the user by preventing the viruses from taking control of the operating system (Mac OS).
Claim Chart
All
