IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 8156558 B1

PDFFull Text
Date of Patent:
Apr. 10, 2012

Filed:

May. 17, 2003

Mechanism for evaluating security risks

Applicants:

Aaron R. Goldfeder, Seattle, WA (US);

John M. Hawkins, Duvall, WA (US);

Sergey A. Khorun, Redmond, WA (US);

Viresh N. Ramdatmisier, Seattle, WA (US);

Joseph Thomas Farro, Bothell, WA (US);

Gregory Darrell Fee, Seattle, WA (US);

Jeremiah S. Epling, Redmond, WA (US);

Andrew G. Bybee, Duvall, WA (US);

Jingyang Xu, Redmond, WA (US);

Tony Edward Schreiner, Redmond, WA (US);

Jamie L. Cool, Redmond, WA (US);

Inventors:

Aaron R. Goldfeder, Seattle, WA (US);

John M. Hawkins, Duvall, WA (US);

Sergey A. Khorun, Redmond, WA (US);

Viresh N. Ramdatmisier, Seattle, WA (US);

Joseph Thomas Farro, Bothell, WA (US);

Gregory Darrell Fee, Seattle, WA (US);

Jeremiah S. Epling, Redmond, WA (US);

Andrew G. Bybee, Duvall, WA (US);

Jingyang Xu, Redmond, WA (US);

Tony Edward Schreiner, Redmond, WA (US);

Jamie L. Cool, Redmond, WA (US);

Assignee:

Microsoft Corporation, Redmond, WA (US);

Attorney:

Merchant & Gould

Primary Examiner:

Zachary A Davis

Int. Cl.
CPC ...
G06F 11/30 (2006.01); G06F 12/14 (2006.01);
U.S. Cl.
CPC ...
Abstract

Described is a mechanism for collectively evaluating security risks associated with loading an application. A hosting environment associated with loading the application invokes a trust manager to evaluate the security risks. The trust manager invokes a plurality of trust evaluators, where each trust evaluator is responsible for analyzing and assessing a different security risk. Upon completion of each security risk evaluation, results of those individual security risk evaluations are returned to the trust manager. The trust manager aggregates the variety of security risk evaluation results and makes a security determination based on the aggregated evaluation results. That determination may be to move forward with loading the application, to block the load of the application, or perhaps to prompt the user for a decision about whether to move forward with the load.

Find Patent Forward Citations

Loading…