&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
			function printpage()
			{
			window.print()
			}
			</script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11704412.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,704,412 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Methods and systems for distribution and integration of threat indicators for information handling systems</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Kathleen M. Moriarty,  Arlington, MA (US);  Ricardo L. Martinez,  Leander, TX (US); and  Samant Kakarla,  Wellesley, MA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Dell Products L.P.,  Round Rock, TX (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  DELL PRODUCTS L.P.,  Round Rock, TX (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Jul.  14, 2020, as Appl. No. 16/928,695.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2022/0019670 A1, Jan.  20, 2022</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>G06F 21/57</b></i> (2013.01); <i><b>H04L 9/40</b></i> (2022.01); <i><b>G06F 21/55</b></i> (2013.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>G06F 21/577</b></i> (2013.01)&#xa0;[<i><b>G06F 21/554</b></i> (2013.01); <i><b>H04L 63/1433</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>24 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11704412-20230718-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A method, comprising:<div class="claim_text">performing the following within a code vendor environment:<div class="claim_text">developing an executable target code,</div>
                  <div class="claim_text">then associating the executable target code with one or more threat indicators and/or one or more behaviors, and</div>
                  <div class="claim_text">then creating a data set including the executable target code and the one or more associated threat indicators and/or behaviors;</div>
                </div>
                <div class="claim_text">then releasing the data set from the code vendor environment by providing the data set including the executable target code and the one or more associated threat indicators and/or behaviors across a network from a first information handling system of the code vendor environment to at least one other different information handling system that comprises an endpoint information handling system or to a second information handling system that is different from each of the first information handling system and the endpoint information handling system, and that is coupled to and managing the endpoint information handling system;</div>
                <div class="claim_text">then receiving the data set including the executable target code from across the network, and installing the executable target code from the data set onto the endpoint information handling system;</div>
                <div class="claim_text">then executing the installed executable target code from the data set on a programmable integrated circuit of the endpoint information handling system while using the associated threat indicators and/or behaviors to detect the presence of a threat associated with the executable target code on the endpoint information handling system without taking any further action to associate the executable target code with the one or more threat indicators and/or one or more behaviors; and</div>
                <div class="claim_text">then taking at least one automatic action and/or providing at least one alert only upon detection of the presence of the threat associated with the executable target code on the endpoint information handling system;</div>
                <div class="claim_text">where the one or more behaviors comprise at least one of expected behaviors associated with the executable target code or unexpected behaviors associated with the executable target code.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>