Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2007-06-05
2007-06-05
Moise, Emmanuel L. (Department: 2137)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C713S188000
Reexamination Certificate
active
09854492
ABSTRACT:
An event report, such as a virus detection event, is sent from a reporting computer2to a receiving computer6via an internet link4. The report data may take the form of a URL requesting a web page28to be provided by the receiving computer6, the URL bearing an encrypted form24of the report data that is used to identify the requested web page as well as pass further information to the receiving computer6. Alternatively, the report data may be collated in the reporting computer2and passed to the receiving computer6when a computer virus definition data update is requested. The report data seeks to uniquely identify the event by incorporating the MAC address of the reporting computer2, the date, time, computer product identifier, version identifier, update identifier and driver triggered. Additionally, a checksum derived from the infected file together with an indication of the corrective action, if any, taken by the reporting computer2may be included. The report data sent to the receiving computer6may be used to obtain real life information concerning the prevalence of particular viruses together with information characterising the anti-virus programs and their update status being employed by the user community.
REFERENCES:
patent: 5291598 (1994-03-01), Grundy
patent: 5960170 (1999-09-01), Chen et al.
patent: 6842861 (2005-01-01), Cox et al.
patent: 2002/0138435 (2002-09-01), Williams et al.
“Symantec System Center Implmentation Guide”, Jun. 30, 2000, pp. 1-87. <http://www.symantec.com/techsupp/enterprise/products
av—ce
av7-ce/manuals.html>.
Menezes et al, “Handbook of Applied Cryptography”, 1997, pp. 12, 15-16.
Brown, Brain, “Data Communications,” 1999, pp. 1-2.
Graham, Ian, “URLs for HTTP Servers,” Jan. 5, 1998, pp. 1-2 <http://www.utoronto.ca/webdocs/HTMLdocs/NewHTML/url—http.html>.
Norton AntiVirus Corporate Edition, Implementation Guide, 2000, pp. 285-296.
McAfee.com: Virus Information Library, Oct. 12, 1999, pp. 1-3. <http://web.archive.org/web/19991012210358/vil.mcafee.com/help.asp>.
Symantec AntiVirus Research Center, Mar. 1, 2000, pp. 1-7. <http://web.archive.org/web/20000301031748/www.symantec.com/avcenter/vinfodb.html>.
Computer Associates Vet Anti-Virus Software Home Page, Feb. 29, 2000, pp. 1-4. <http://web.archive.org/web/20000229183411/http://www.vet.com.au/index.html>.
Trend Micro Delivers The First Free On-Line Virus Scanning Service, May 7, 1997, pp. 1-3. <http://www.trendmicro.com/en/about
ews/pr/archive/1997/pr050797.htm>.
“Search Help”, http://web.archive.org/web/19991012210358/vil.mcafee.com/help.asp Feb. 22, 2007.
Untitled document, p. 1, date unknown.
“Virus Information Library”, http://webarchive.org/web/19991127154729/vil.mcafee.com/alphar.asp?chat=%5b0-9%5d, Feb. 22, 2007.
Lawson Tarbotton Lee Codel
Moore Edward
Wolff Daniel Joseph
Hamaty Christopher J.
McAfee, Inc.
Moise Emmanuel L.
Pyzocha Michael
Zilka-Kotab, PC
LandOfFree
Event reporting between a reporting computer and a receiving... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Event reporting between a reporting computer and a receiving..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Event reporting between a reporting computer and a receiving... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3819921