Data processing: artificial intelligence – Knowledge processing system – Creation or modification
Reexamination Certificate
2006-12-08
2010-10-05
Vincent, David R (Department: 2129)
Data processing: artificial intelligence
Knowledge processing system
Creation or modification
C726S022000
Reexamination Certificate
active
07809670
ABSTRACT:
The present invention is directed to a method and system for automatically classifying an application into an application group which is previously classified in a knowledge base. More specifically, a runtime behavior of an application is captured as a series of events which are monitored and recorded during the execution of the application. The series of events are analyzed to find a proper application group which shares common runtime behavior patterns with the application. The knowledge base of application groups is previously constructed based on a large number of sample applications. The construction of the knowledge base is done in such a manner that each sample application can be classified into application groups based on a set of classification rules in the knowledge base. The set of classification rules are applied to a new application in order to classify the new application into one of the application groups.
REFERENCES:
patent: 7574409 (2009-08-01), Patinkin
patent: 2004/0111708 (2004-06-01), Calder et al.
patent: 2004/0199827 (2004-10-01), Muttik et al.
patent: 2006/0212942 (2006-09-01), Barford et al.
patent: 2006/0282425 (2006-12-01), Aggarwal et al.
patent: 2009/0276383 (2009-11-01), Salahshour et al.
Wei et al., Profiling and Clustering Internet Hosts, 2006, International Conference on Data Mining, pp. 1-7.
Yang et al., A Study on Retrospective and On-line Event Detection, 1998, ACM 1-58113-015-5.
Guan et al., Y-Means: A clustering method for intrusion detection, 2003, CCECE 2003 CCGEI, MOntreal, IEEE.
Lee, T., and J.J. Mody, “Behavioral Classification,” Proceedings of the European Institute for Computer Antivirus Research Conference, Hamburg, Germany, Apr. 29-May 3, 2006, pp. 1-17.
Lee Tony
Lin Ying Lena
Marinescu Adrian M.
Mody Jigar J.
Polyakov Alexey A.
Microsoft Corporation
Vincent David R
Workman Nydegger
LandOfFree
Classification of malware using clustering that orders... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Classification of malware using clustering that orders..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Classification of malware using clustering that orders... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4202744