US 7,568,230 B2
System for selective disablement and locking out of computer system objects
Philip Lieberman, Beverly Hills, Calif. (US); and Nicholas M. Carroll, Los Angeles, Calif. (US)
Assigned to Lieberman Software Corporation, Los Angeles, Calif. (US)
Filed on Jun. 09, 2004, as Appl. No. 10/709,965.
Prior Publication US 2005/0278785 A1, Dec. 15, 2005
Int. Cl. G06F 11/00 (2006.01)
U.S. Cl. 726—23  [726/22; 726/24] 50 Claims
OG exemplary drawing
 
1. A method for disabling a virus in a computer, the method comprising the steps of:
(a) identifying a system object in the computer that is required by the virus; and
(b) storing an access control entry (ACE) in an access control list (ACL) for said system object, wherein said ACE specifies an entity and a permission needed by said entity to access or execute said system object, and said ACE further specifies that said entity is denied said permission, thereby disabling the virus by denying said entity future ability to access or execute said system object.