Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2006-06-27
2006-06-27
Smithers, Matthew (Department: 2137)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C713S188000
Reexamination Certificate
active
07069589
ABSTRACT:
A method and apparatus for detecting a class of viral code are provided. The apparatus comprises an heuristic analyzer and a search component. The heuristic analyzer heuristically analyzes a subject file and generates a set of flags along with statistical information. The search component uses the set of flags with statistical information to perform a search for a scan string and/or a statement type in the subject file. A positive detection alarm is triggered if the scan string and/or statement type is found at least a corresponding predetermined number of times. The heuristic analyzer may be rule-based and comprise an heuristic engine and heuristic rules. The search component also may be rule-based and comprise a search engine and viral code class rules.
REFERENCES:
patent: 5826013 (1998-10-01), Nachenberg
Dr. Frans Veldman, “Heuristic Anti-Virus Technology”, 1994-1995, pp. 1-12.
Kwan Tony
Schmall Markus
Baker & Botts L.L.P.
Computer Associates Think, Inc..
Fields Courtney
Smithers Matthew
LandOfFree
Detection of a class of viral code does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Detection of a class of viral code, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Detection of a class of viral code will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3619826