Electrical computers and digital processing systems: support – Computer virus detection by cryptography
Reexamination Certificate
2004-03-23
2010-02-23
Zand, Kambiz (Department: 2434)
Electrical computers and digital processing systems: support
Computer virus detection by cryptography
C713S152000, C713S176000, C726S022000, C726S023000, C726S024000, C726S025000, C726S026000
Reexamination Certificate
active
07669059
ABSTRACT:
Methods and apparatuses are presented for detecting hostile software in a computer system involving storing a representation of configuration data associated with an operating system for the computer system obtained at a first time, comparing the stored representation of the configuration data obtained at the first time with a representation of the configuration data associated with the operating system for the computer system obtained at a second time, and if deviation is detected between the stored representation of the configuration data obtained at the first time and the representation of the configuration data obtained at the second time, automatically performing at least one remedial measure in response to the deviation detected. In one embodiment of the invention, the configuration data relates to identification of executable code installed in the computer system. The configuration data may be obtained from a registry key in a registry maintained by the operating system.
REFERENCES:
patent: 5123045 (1992-06-01), Ostrovsky et al.
patent: 5315232 (1994-05-01), Stewart
patent: 5451230 (1995-09-01), Steinert
patent: 5822517 (1998-10-01), Dotan
patent: 5889943 (1999-03-01), Ji et al.
patent: 5951698 (1999-09-01), Chen et al.
patent: 6559867 (2003-05-01), Kotick et al.
patent: 7502939 (2009-03-01), Radatti
patent: 7509680 (2009-03-01), Sallam
patent: 2001/0037450 (2001-11-01), Metlitski et al.
patent: 2002/0152399 (2002-10-01), Smith
patent: 2003/0088792 (2003-05-01), Card et al.
patent: 2004/0139334 (2004-07-01), Wiseman
patent: 2004/0172551 (2004-09-01), Fielding et al.
Brent, Michael, StartupWatch, Retrieved from Internet: <<URL:http://www.harmlesslion.com/cgi-bin/showprog.cgi?search=startupwatch>>, Mar. 16, 2004, 2 pages total.
Brent, Michael, StartupWatch—Source Code, Retrieved from Internet: <<URL:http://www.harmlesslion.com/cgi-bin/showprog.cgi?search=startupwatch>>, Jun. 16, 2004, 23 pages total.
Brent, Michael, StartupWatch—Program Instructional window captions and explanations, Jun. 15, 2004, 1 page total.
Brent, Michael, StartupWatch, Retrieved from Internet <<URL:http:/www.harmlesslion.com/cgi-bin/showprog.cgi?search=startupwatch>>, Jun. 16, 2004 [Program on CD-Rom].
Bayou Yonas
Network Equipment Technologies Inc.
Townsend and Townsend / and Crew LLP
Zand Kambiz
LandOfFree
Method and apparatus for detection of hostile software does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for detection of hostile software, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for detection of hostile software will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4200019