The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Oct. 08, 2019
Filed:
Sep. 30, 2016
Mcafee, Inc., Santa Clara, CA (US);
Yuriy Bulygin, Beaverton, OR (US);
Gideon Gerzon, Zichron Yaakov, IL;
Sameer Desai, Folsom, CA (US);
Hisham Shafi, Akko, IL;
Andrew A. Furtak, Beaverton, OR (US);
Oleksandr Bazhaniuk, Hillsboro, OR (US);
Mikhail V. Gorobets, Hillsboro, OR (US);
Ravi L. Sahita, Beaverton, OR (US);
Ofer Levy, Atlit, IL;
McAfee, LLC, Santa Clara, CA (US);
Abstract
In an embodiment, a processor for Return Oriented Programming (ROP) detection includes at least one execution unit; a plurality of event counters, each event counter associated with a unique type of a plurality of types of control transfer events; and a ROP detection unit. The ROP detection unit may be to: adjust a first event counter in response to detection of a first type of control transfer events; in response to a determination that the first event counter exceeds a first threshold, access a first configuration register associated with the first event counter to read configuration data; identify a set of ROP heuristic checks based on the configuration data read from the first configuration register; and perform each ROP heuristic check of the identified set of ROP heuristic checks. Other embodiments are described and claimed.