Detecting stealth network communications

Details Detecting stealth network communications Detecting stealth network communications

2007-03-13

2011-12-13

An, Meng (Department: 2195)

Electrical computers and digital processing systems: virtual mac

Virtual machine task or process management

C713S164000

Reexamination Certificate

active

08079030

ABSTRACT:
A computer has a hypervisor that supervises a virtual machine. The virtual machine includes a guest security module that enforces a security policy on network traffic entering and exiting the virtual machine. Malicious software (malware) uses stealth network communications to avoid the guest security module and attempts to communicate with its home base. A security module within the hypervisor has access to all network communications entering and exiting the computer. The security module communicates with the guest security module to identify communications of which the guest security module is aware. The security module analyzes the network communications for the computer to identify a stealth network communication of which the guest security module is unaware. The security module alters the stealth network communication, thereby prevent the malware from communicating with its home base.

REFERENCES:
patent: 2007/0156900 (2007-07-01), Chien
patent: 2007/0266433 (2007-11-01), Moore
patent: 2008/0163207 (2008-07-01), Reumann et al.

Affiliated with

Also associated with

Rating

Detecting stealth network communications does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Detecting stealth network communications, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Detecting stealth network communications will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFUS-PAI-O-4299534