首页>
外国专利>
Computer security technique employing patch with detection and/or characterization mechanism for exploit of patched vulnerability
Computer security technique employing patch with detection and/or characterization mechanism for exploit of patched vulnerability
展开▼
机译:利用具有检测和/或特征化机制的修补程序来利用修补程序漏洞的计算机安全技术
展开▼
页面导航
摘要
著录项
相似文献
摘要
A patch or set of patches may be deployed, often to a subset of potentially vulnerable systems, to address a particular vulnerability while providing a facility to monitor and, in some cases, characterize post-patch exploit attempts. Often, such a patch will check for an exploit signature and, if an exploit attempt is detected or suspected, take an appropriate action. For example, the patch may include code to log indicative data or trigger such logging. In some exploitations, the patch may generate or contribute to a warning or advisory regarding an additional target (or targets) of the exploit and, if appropriate, initiate a patch or protective measure for the additional target(s). In some exploitations, the patch may simulate responses or behaviors suggestive (to an attacker) of unpatched code. In some exploitations, the patch may direct an exploit attempt to a service (or simulated service) hosted or executing in an isolated protection domain
展开▼