US 11,687,649 B2
Securely and efficiently providing user notifications about security actions
Ion-Alexandru Ionescu, Seattle, WA (US)
Assigned to Crowdstrike, Inc., Irvine, CA (US)
Filed by Crowdstrike, Inc., Irvine, CA (US)
Filed on Aug. 31, 2020, as Appl. No. 17/8,038.
Application 17/008,038 is a continuation of application No. 15/951,025, filed on Apr. 11, 2018, granted, now 10,762,202.
Prior Publication US 2020/0394297 A1, Dec. 17, 2020
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/00 (2013.01); G06F 21/55 (2013.01); G06F 9/54 (2006.01); G06F 21/33 (2013.01); G06F 21/56 (2013.01)
CPC G06F 21/554 (2013.01) [G06F 9/545 (2013.01); G06F 9/547 (2013.01); G06F 21/33 (2013.01); G06F 21/566 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
performing, by a software security agent executing in kernel mode of a computing device, a security action with respect to a malicious data object or a malicious activity detected on the computing device;
providing, by the software security agent, to one or more user mode components, a token associated with a user session in which the malicious data object or the malicious activity was detected;
receiving, by the one or more user mode components, based at least in part on the token, a pointer to one or more Component Object Model (COM) interfaces; and
outputting, via an output device of the computing device, and using the pointer to the one or more COM interfaces, a notification to indicate that the security action was performed.