Patents Assigned to Narf Industries, LLC
-
Patent number: 10866908Abstract: A system and method is provided for probabilistic defense against remote exploitation of memory. In certain embodiments, the system comprises one or more processors, read and execute (RX) portions of memory, read and write (RW) portions of memory, execute only (XOM) portions of memory, and one or more programs stored in the memory. The one or more programs include instructions for maintaining all pointers to RX memory instructions in XOM memory. In addition, the one or more programs include instructions for preventing all direct references to RX memory in RW memory by forcing pointers in RW memory to reference XOM memory first, which then references RX memory instructions.Type: GrantFiled: May 19, 2017Date of Patent: December 15, 2020Assignee: NARF INDUSTRIES, LLCInventors: Paul E. Makowski, Benjamin L. Schmidt, Maxwell J. Koo
-
Patent number: 10805336Abstract: A system and method for identifying and preventing vulnerability exploitation is provided. The system comprises a processor and memory. The memory stores one or more programs comprising instructions to execute a method. The method first comprises comparing a first version of a software module with a second version of a software module. Second, the system determines one or more differences between the first version and the second version. Next, the system represents the one or more differences as symbolic constraints. Last, the system generates a firewall for identifying exploitative input using the symbolic constraints.Type: GrantFiled: December 5, 2018Date of Patent: October 13, 2020Assignee: Narf Industries, LLCInventors: Paul Makowski, Benjamin Schmidt
-
Patent number: 10747686Abstract: A system and method is provided for secure establishment of a trusted enclave among co-privileged executable code. The system comprises one or more processors; execute only memory; and one or more programs stored in the memory. The one or more programs comprise instructions to establish a trusted enclave and an untrusted enclave in kernel space code, wherein the trusted enclave and the untrusted enclave are co-privileged from the perspective of the processor. The trusted code has the ability to modify page tables and the untrusted code does not have the ability to modify page tables. Any changes to memory mappings involve the trusted code. Page tables are mapped as read-only during execution of the untrusted code and mapped as writeable only during execution of the trusted code.Type: GrantFiled: December 28, 2017Date of Patent: August 18, 2020Assignee: NARF INDUSTRIES, LLCInventors: Paul E. Makowski, Benjamin L. Schmidt, Maxwell J. Koo
-
Publication number: 20190116201Abstract: A system and method for identifying and preventing vulnerability exploitation is provided. The system comprises a processor and memory. The memory stores one or more programs comprising instructions to execute a method. The method first comprises comparing a first version of a software module with a second version of a software module. Second, the system determines one or more differences between the first version and the second version. Next, the system represents the one or more differences as symbolic constraints. Last, the system generates a firewall for identifying exploitative input using the symbolic constraints.Type: ApplicationFiled: December 5, 2018Publication date: April 18, 2019Applicant: Narf Industries, LLCInventors: PAUL MAKOWSKI, Benjamin Schmidt
-
Patent number: 10187418Abstract: A system and method for identifying and preventing vulnerability exploitation is provided. The system comprises a processor and memory. The memory stores one or more programs comprising instructions to execute a method. The method first comprises comparing a first version of a software module with a second version of a software module. Second, the system determines one or more differences between the first version and the second version. Next, the system represents the one or more differences as symbolic constraints. Last, the system generates a firewall for identifying exploitative input using the symbolic constraints.Type: GrantFiled: July 13, 2016Date of Patent: January 22, 2019Assignee: NARF INDUSTRIES, LLCInventors: Paul Makowski, Benjamin Schmidt
-
Publication number: 20180181498Abstract: A system and method is provided for secure establishment of a trusted enclave among co-privileged executable code. The system comprises one or more processors; execute only memory; and one or more programs stored in the memory. The one or more programs comprise instructions to establish a trusted enclave and an untrusted enclave in kernel space code, wherein the trusted enclave and the untrusted enclave are co-privileged from the perspective of the processor. The trusted code has the ability to modify page tables and the untrusted code does not have the ability to modify page tables. Any changes to memory mappings involve the trusted code. Page tables are mapped as read-only during execution of the untrusted code and mapped as writeable only during execution of the trusted code.Type: ApplicationFiled: December 28, 2017Publication date: June 28, 2018Applicant: Narf Industries, LLCInventors: Paul E. Makowski, Benjamin L. Schmidt, Maxwell J. Koo
-
Publication number: 20170337139Abstract: A system and method is provided for probabilistic defense against remote exploitation of memory. In certain embodiments, the system comprises one or more processors, read and execute (RX) portions of memory, read and write (RW) portions of memory, execute only (XOM) portions of memory, and one or more programs stored in the memory. The one or more programs include instructions for maintaining all pointers to RX memory instructions in XOM memory. In addition, the one or more programs include instructions for preventing all direct references to RX memory in RW memory by forcing pointers in RW memory to reference XOM memory first, which then references RX memory instructions.Type: ApplicationFiled: May 19, 2017Publication date: November 23, 2017Applicant: NARF INDUSTRIES, LLCInventors: PAUL E. MAKOWSKI, BENJAMIN L. SCHMIDT, MAXWELL J. KOO
-
Publication number: 20170019422Abstract: A system and method for identifying and preventing vulnerability exploitation is provided. The system comprises a processor and memory. The memory stores one or more programs comprising instructions to execute a method. The method first comprises comparing a first version of a software module with a second version of a software module. Second, the system determines one or more differences between the first version and the second version. Next, the system represents the one or more differences as symbolic constraints. Last, the system generates a firewall for identifying exploitative input using the symbolic constraints.Type: ApplicationFiled: July 13, 2016Publication date: January 19, 2017Applicant: Narf Industries, LLCInventors: Paul Makowski, Benjamin Schmidt