Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2003-07-29
2010-06-15
Pyzocha, Michael (Department: 2437)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C713S165000, C713S187000, C713S188000, C726S026000
Reexamination Certificate
active
07739737
ABSTRACT:
A technique for finding malicious code such as viruses in an executable binary file converts the executable binary to a function unique form to which function unique forms of virus code may be compared. By avoiding direct comparison of the expression of the viral code but looking instead at its function, obfuscation techniques intended to hide the virus code are substantially reduced in effectiveness.
REFERENCES:
patent: 6357008 (2002-03-01), Nachenberg
patent: 6594783 (2003-07-01), Dollin et al.
patent: 6851057 (2005-02-01), Nachenberg
patent: 7036111 (2006-04-01), Dollin et al.
patent: 7069589 (2006-06-01), Schmall et al.
patent: 7188369 (2007-03-01), Ho et al.
Christodorescu, Mihai, “Detecting Malicous Patterns in Executables via Model Cehcking”, University of Wisconsin, Madison, Jul. 12, 2002, pp. 1-15.
Christodorescu et al., “Static Analysis of Executables to Detect Malicous Patterns”, University of Wisconsin, Feb. 2003, pp. 1-21.
Christodorescu Mihai
Jha Somesh
Boyle Fredrickson , S.C.
Gelagay Shewaye
Pyzocha Michael
Wisconsin Alumni Research Foundation
LandOfFree
Method and apparatus to detect malicious software does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus to detect malicious software, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus to detect malicious software will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4184855