Browse Prior Art Database

Preventing Malicious Applications from Stealing User Information

IP.com Disclosure Number: IPCOM000237187D
Publication Date: 2014-Jun-06
Document File: 7 page(s) / 473K

Publishing Venue

The IP.com Prior Art Database

Related People

Jie Ping: INVENTOR [+2]

Abstract

Some applications store a user's account and password information as plain text, which is easily read and stolen. This solution enables a user to encrypt this information in storage, thus blocking the processes which attempt to read or steal the user's data.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 52% of the total text.

Page 01 of 7

Preventing Malicious Applications from Stealing User Information

 Jie Ping Yu Xin Liu

Symantec Corporation

Abstract

Some applications store a user's account and password information as plain text, which is easily read and stolen. This solution enables a user to encrypt this information in storage, thus blocking the processes which attempt to read or steal the user's data.

Copyright © 2014 Symantec Corporation. All rights reserved. 1


Page 02 of 7

Copyright © 2014 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. For a full list of Symantec trademarks, please visit http://www.symantec.com/about/profile/policies/trademarks/currentlist.jsp

Any Symantec products described in this document are distributed under licenses restricting their use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.

THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

Symantec Corporation 350 Ellis Street Mountain View, CA 94043 United States

http://www.symantec.com

2

Copyright © 2014 Symantec Corporation. All rights reserved.


Page 03 of 7

Preventing Malicious Applications from Stealing User Information

Problem Statement

     In some applications, a user's account and password information is stored as plain text, which exposes this data to theft and intrusion. A need exists for internet security software that enables a user to encrypt this information in storage, thus blocking the processes which attempt to read or steal the user's data.

Solution Description

     FIG. 1 depicts a flow diagram of a complete work flow. As illustrated by this figure, when application A attempts to store a user's password as plain text,...