Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2009-03-30
2009-10-13
Cervetti, David Garcia (Department: 2436)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S025000, C703S023000, C703S013000
Reexamination Certificate
active
07603713
ABSTRACT:
A method and system for accelerating malware emulator by using an accelerator. The accelerator allows for a potentially malicious component (i.e., process) containing dummy processes to be executed in a real CPU of a computer system using its operating memory. A special memory area is allocated for the process based on the memory requested by the process in the emulator. The state of the CPU and the memory is loaded in the emulator prior to executing the suspicious process. The system can be restored to its initial state in case of malicious actions performed by the process. The dummy instructions of the process are processed by the CPU at its own speed and as soon as the process performs a malicious instruction it is stopped by the emulator. The emulation process is accelerated to a speed of a regular CPU.
REFERENCES:
patent: 5398196 (1995-03-01), Chambers
patent: 5751982 (1998-05-01), Morley
patent: 5978917 (1999-11-01), Chi
patent: 6021510 (2000-02-01), Nachenberg
patent: 6026230 (2000-02-01), Lin et al.
patent: 6094731 (2000-07-01), Waldin et al.
patent: 6357008 (2002-03-01), Nachenberg
patent: 7010698 (2006-03-01), Sheymov
patent: 7234167 (2007-06-01), Teblyashkin et al.
patent: 7370361 (2008-05-01), de los Santos et al.
patent: 7469419 (2008-12-01), Sobel
patent: 7475288 (2009-01-01), Multhaup et al.
patent: 2002/0116635 (2002-08-01), Sheymov
patent: 2003/0115479 (2003-06-01), Edwards et al.
patent: 2005/0071824 (2005-03-01), K. N. et al.
patent: 2005/0177736 (2005-08-01), de los Santos et al.
patent: 2006/0143522 (2006-06-01), Multhaup et al.
patent: 2006/0212723 (2006-09-01), Sheymov
patent: 2007/0038867 (2007-02-01), Verbauwhede et al.
patent: 2007/0136455 (2007-06-01), Lee et al.
patent: 2008/0040710 (2008-02-01), Chiriac
patent: 2008/0167853 (2008-07-01), Fernsler et al.
patent: 2008/0263659 (2008-10-01), Alme
patent: 2008/0271147 (2008-10-01), Mohanan et al.
patent: 2009/0006074 (2009-01-01), Green
patent: 2009/0077544 (2009-03-01), Wu
patent: 2009/0126016 (2009-05-01), Sobko et al.
patent: 2009/0165138 (2009-06-01), Stewart et al.
Bardmesser Law Group
Cervetti David Garcia
Kaspersky Lab ZAO
LandOfFree
Method for accelerating hardware emulator used for malware... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method for accelerating hardware emulator used for malware..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method for accelerating hardware emulator used for malware... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4066526