Abstract: Methods, and computing devices implementing the methods, that enable client computing devises to work in conjunction with a server device to identify and temporarily defend against non-benign applications (e.g., malware, etc.) and other threats before a more permanent solution or defense (e.g., a patch or software upgrade) becomes available and installed on the client computing device. The server device may be configured to receive reports from the client computing devices, receive threat feeds from third-party servers (e.g., threat intelligence servers, etc.), and use information included in the received threat feed and information included in the received reports to analyze, in the server computing device, a software application that is operating on a client device in multiple passes. The server may generate threat scores (e.g., one for each pass, etc.), and the threat scores to the client computing device for use in devising a customized security response.

Abstract: Methods, and computing devices implementing the methods, that enable client computing devises to work in conjunction with a server device to identify and temporarily defend against non-benign applications (e.g., malware, etc.) and other threats before a more permanent solution or defense (e.g., a patch or software upgrade) becomes available and installed on the client computing device. The server device may be configured to receive reports from the client computing devices, receive threat feeds from third-party servers (e.g., threat intelligence servers, etc.), and use information included in the received threat feed and information included in the received reports to analyze, in the server computing device, a software application that is operating on a client device in multiple passes. The server may generate threat scores (e.g., one for each pass, etc.), and the threat scores to the client computing device for use in devising a customized security response.

Abstract: Methods, and computing devices implementing the methods, that enable client computing devises to work in conjunction with a server device to identify and temporarily defend against non-benign applications (e.g., malware, etc.) and other threats before a more permanent solution or defense (e.g., a patch or software upgrade) becomes available and installed on the client computing device. The server device may be configured to receive reports from the client computing devices, receive threat feeds from a third-party server (e.g., threat intelligence servers, etc.), and use information included in the received threat feed and information included in the received reports to analyze, in the server computing device, a software application that is operating on a client device in multiple passes. The server may generate one or more threat scores and send the one or more threat scores to the client computing device for use in devising a customized security response.

Abstract: The present invention discloses a method and apparatus for a mobile station application to receive and transmit raw packetized data in a wireless communication system. The present invention includes a mobile station application that creates at least one socket. At least one of mobile station protocol layers of a communication protocol stack receives encapsulated raw packetized data from a communication network. The raw packetized data lacks destination port information. At least one of the mobile station protocol layers transmits unencapsulated raw packetized data to the created sockets. In turn, the created sockets transmit the raw packetized data to the mobile station application. In another implementation, the created sockets transmit raw packetized data of the mobile station application to at least one of the mobile station protocol layers. In turn, at least one of the mobile station protocol layers transmits encapsulated raw packetized data to the communication network.

Abstract: The present invention discloses a method and apparatus for a mobile station application to identify specified events in a wireless communication system. The present invention includes an application program interface (API) that facilitates communications between a mobile station communication protocol stack, which communicates with a communication network, and a mobile station application. The API enables at least one of specified events based on its state. The mobile station application then identifies the specified events that are enabled.

Abstract: The present invention discloses a method and apparatus for detecting a specified event in a wireless communication system. The present invention includes an application program interface (API) that facilitates communications between a mobile station communication protocol stack, which communicates with a communication network, and a mobile station application. The mobile station communication protocol stack polls a memory when the mobile station application registers a specified event. Based on the polling, the mobile station communication protocol stack then detects the specified event. In another implementation of the present invention, the mobile station communication protocol stack detects the specified event by an interrupt notice, which is triggered when the specified event occurs.