Available Technology

Measuring Software Integrity with LKIM

US Patent # 8,326,579 Method and System for Program Execution Integrity Measurement
US Patent # 7,904,278 Methods and System for Program Execution Integrity Measurement 

This technology, the Linux Kernel Integrity Measurer (LKIM), verifies that running system software has not been modified and is authorized to run on the system. Unlike other system integrity technologies like antivirus programs, LKIM does not require a database of known malware signatures and is capable of detecting modifications resulting from previously unknown attacks. While LKIM was initially designed for Linux, there are variations that extend to other operating systems (including Microsoft Windows and the Xen Hypervisor). Proper use of this technology increases confidence that running systems, even those that might be known to be vulnerable to malicious attacks, have not actually been compromised, making the system more trustworthy for its intended purpose.

 

Abstract: 

Click to view PDFs of these patents on the US Patent and Trademark Office website: Patent #8,326,579Patent #7,904,278

applications: 
  • Measurement and attestation
  • System monitoring
  • Configuration control
  • Protecting access to network resources
  • Projecting trust across the network
  • Computer forensics
Patent Number: 
8,326,579; 7,904,278
Patent Issue Date: 
December 4, 2012
Email: 
tech_transfer@nsa.gov
Lab Representatives
Share to Facebook Share to Twitter Share to Google Plus Share to Linkedin