Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2011-01-11
2011-01-11
Zand, Kambiz (Department: 2434)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S022000, C726S023000, C726S025000, C713S188000
Reexamination Certificate
active
07870612
ABSTRACT:
The example embodiments herein relate to an antivirus protection system and method for computers based on program behavior analysis. The antivirus protection system may comprise: a Process Behavior-Evaluating Unit for identifying the programs existing in the user's computers and classifying them into normal programs and suspect programs; a Program-Monitoring Unit for monitoring and recording the actions and/or behaviors of programs; a Correlation-Analyzing Unit for creating correlative trees and analyzing the correlations of actions and/or behaviors of programs, the correlative trees comprising a process tree and a file tree; a Virus-Identifying Knowledge Base, comprising a Program-Behavior Knowledge Base and a Database of Attack-Identifying Rules; a Virus-Identifying Unit for comparing captured actions and/or behaviors to the information in the Virus-Identifying Knowledge Base to determine whether the program is a virus program. With the techniques of certain example embodiments, it may be possible to increase efficiency and reduce the need to upgrade virus codes after viruses become active, while also effectively blocking unknown viruses, Trojans, etc.
REFERENCES:
patent: 7487544 (2009-02-01), Schultz et al.
patent: 7509677 (2009-03-01), Saurabh et al.
patent: 7519998 (2009-04-01), Cai et al.
patent: 7752668 (2010-07-01), Omote et al.
patent: 2004/0243829 (2004-12-01), Jordan
patent: 2005/0268338 (2005-12-01), Made
patent: 2006/0265746 (2006-11-01), Farley et al.
patent: 200510007682.X (2006-08-01), None
Fujian Eastern Micropoint Info-Tech Co., Ltd
J.C. Patents
Tabor Amare
Zand Kambiz
LandOfFree
Antivirus protection system and method for computers does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Antivirus protection system and method for computers, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Antivirus protection system and method for computers will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2712866