SYSTEM AND METHOD OF DETECTING AN UNAUTHORIZED ALTERATION IN REGARDS TO A CERTIFICATE STORE

SYSTEM AND METHOD OF DETECTING AN UNAUTHORIZED ALTERATION IN REGARDS TO A CERTIFICATE STORE

Disclosed herein are systems and methods for detecting unauthorized alteration with regard to a certificate store. An exemplary method comprises: tracking changes in a file system or a system registry of an operating system of a device with regard to the certificate store, detecting an alteration or...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: OVCHARIK, Vladislav I, BYKOV, Oleg G, SIDOROVA, Natalya S
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Disclosed herein are systems and methods for detecting unauthorized alteration with regard to a certificate store. An exemplary method comprises: tracking changes in a file system or a system registry of an operating system of a device with regard to the certificate store, detecting an alteration or an attempted alteration with regard to the certificate and sending information about the alternation or the attempted alteration to an analysis module, obtaining information about at least one certificate with which a change in the file system or the system registry with regard to the certificate store is connected, and determining a class of the change, where the class of the change is determined from a portion of the respective system registry or the file system in which the change occurred and from an action associated with the change, and comparing the obtained information to similar information on known certificates.