The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jun. 05, 2012
Filed:
Nov. 28, 2011
Andrew F. Fanton, Westminster, CO (US);
John J. Gandee, Loveland, CO (US);
William H. Lutton, Fort Collins, CO (US);
Edwin L. Harper, Platteville, CO (US);
Kurt E. Godwin, Loveland, CO (US);
Anthony A. Rozga, Wellington, CO (US);
Andrew F. Fanton, Westminster, CO (US);
John J. Gandee, Loveland, CO (US);
William H. Lutton, Fort Collins, CO (US);
Edwin L. Harper, Platteville, CO (US);
Kurt E. Godwin, Loveland, CO (US);
Anthony A. Rozga, Wellington, CO (US);
Fortinet, Inc., Sunnyvale, CA (US);
Abstract
Systems and methods for allowing authorized code to execute on a computer system are provided. According to one embodiment, an in-memory cache is maintained having entries containing execution authorization information regarding recently used modules. After verifying a module, its execution authorization information is added to the cache. Activity relating to a module is intercepted. A hash value of the module is generated. The module is verified with reference to a multi-level whitelist including a global whitelist, a local whitelist and the cache. The verification includes first consulting the cache and if the module is not found, then looking up its hash value in the local whitelist and if it is not found, then looking it up in the global whitelist. Finally, the module is allowed to be executed if the code module is approved by the multi-level whitelist database architecture.