Runtime protection analyzes the behavior of all the programs already running on your computer and blocks any activity that looks as if it could be malicious. For example, it checks any changes being made to the Windows registry, which may indicate that malware is installing itself so that it starts automatically whenever you restart the computer.
Runtime protection solutions include:
Host intrusion prevention systems (HIPS) monitor the behavior of code to stop malware before a specific detection update is released. Many HIPS solutions monitor code when it runs and intervene if the code is deemed to be suspicious or malicious.
Buffer overflow prevention systems (BOPS) will catch attacks targeting security vulnerabilities in both operating system software and applications. Attacks are reported when an attempt is made to exploit a running process using buffer overflow techniques.
Back to Security Protection A-Z
Back to Threatsaurus Home