Invention Grant
- Patent Title: Mechanism for evaluating security risks
- Patent Title (中): 评估安全风险的机制
-
Application No.: US10440518Application Date: 2003-05-17
-
Publication No.: US08156558B2Publication Date: 2012-04-10
- Inventor: Aaron R. Goldfeder , John M. Hawkins , Sergey A. Khorun , Viresh N. Ramdatmisier , Joseph Thomas Farro , Gregory Darrell Fee , Jeremiah S. Epling , Andrew G. Bybee , Jingyang Xu , Tony Edward Schreiner , Jamie L. Cool
- Applicant: Aaron R. Goldfeder , John M. Hawkins , Sergey A. Khorun , Viresh N. Ramdatmisier , Joseph Thomas Farro , Gregory Darrell Fee , Jeremiah S. Epling , Andrew G. Bybee , Jingyang Xu , Tony Edward Schreiner , Jamie L. Cool
- Applicant Address: US WA Redmond
- Assignee: Microsoft Corporation
- Current Assignee: Microsoft Corporation
- Current Assignee Address: US WA Redmond
- Agency: Merchant & Gould
- Main IPC: G06F11/30
- IPC: G06F11/30 ; G06F12/14
Abstract:
Described is a mechanism for collectively evaluating security risks associated with loading an application. A hosting environment associated with loading the application invokes a trust manager to evaluate the security risks. The trust manager invokes a plurality of trust evaluators, where each trust evaluator is responsible for analyzing and assessing a different security risk. Upon completion of each security risk evaluation, results of those individual security risk evaluations are returned to the trust manager. The trust manager aggregates the variety of security risk evaluation results and makes a security determination based on the aggregated evaluation results. That determination may be to move forward with loading the application, to block the load of the application, or perhaps to prompt the user for a decision about whether to move forward with the load.
Public/Granted literature
- US20040230835A1 Mechanism for evaluating security risks Public/Granted day:2004-11-18
Information query
