Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2011-07-05
2011-07-05
Orgad, Edan (Department: 2439)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S022000, C726S024000, C726S026000, C726S027000, C713S164000, C713S165000, C713S166000, C713S167000, C713S193000, C719S328000, C719S329000
Reexamination Certificate
active
07975302
ABSTRACT:
A system for detecting real-time system file intrusions in a user computer that is coupled to an administrator computer and includes an operating system and system files. At a boot time of the user computer, an application program interface (API) of the operating system receives a list of vital system files that consists of at least two directory files. At the boot time, one of more daemons are launched, after which the API detects one or more system calls made to one or more vital system files. The API raises an automatic interrupt ‘I’ command that awakens a daemon from a sleep mode. The awakened daemon catches the interrupt ‘I’ command and sends an alert message to the administrator computer to alert the administrator computer of the detecting of the system call made to the one or more vital system files.
REFERENCES:
patent: 5440723 (1995-08-01), Arnold et al.
patent: 5557798 (1996-09-01), Skeen et al.
patent: 6269409 (2001-07-01), Solomon
patent: 7051044 (2006-05-01), Fera et al.
patent: 2002/0026605 (2002-02-01), Terry
patent: 2003/0163718 (2003-08-01), Johnson et al.
patent: 2004/0064732 (2004-04-01), Hall
patent: 2004/0078568 (2004-04-01), Pham et al.
patent: 2004/0107361 (2004-06-01), Redan et al.
patent: 2004/0168078 (2004-08-01), Brodley et al.
SGI “Chapter 8. Monitoring Changes to Files and Directories.” http://techpubs.sgi.com/library/tpl/cgi-bin/getdoc.cgi/0650/bks/SGI—Developer/books/IIDsktp—IG/sgi—html/ch08.html#LE33384-PARENT. techpubs library: Nov. 7, 2001. 14 pages.
Microsoft TechNet. Windows 2000 Services. http://www.microsoft.com/technet/prodtechnol/windows2000serv/deploy/prodspecs/win2ksvc.mspx. TechNet: Jul. 1, 2001. 19 pages.
SGI—Developer Central Open Source/FAM. http://oss.sgi.com/projects/fam/faq.html. 6 pages.
Notice of Allowance (Mail Date Sep. 4, 2008) for U.S. Appl. No. 11/850,778, filed Sep. 6, 2007, Confirmation No. 8126.
Rivest, R.; The MD5 Message-Digest Algorithm; MIT Laboratory for Computer Science and RSA Data Security Inc., Apr. 1992; 21 pages.
Armingaud Francois-Dominique
Pazos Fernando Daniel Pedrazzoli
Okamoto & Benedicto LLP
Orgad Edan
Schmidt Kari L
Trend Micro Incorporated
LandOfFree
System for real-time detection of computer system files... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System for real-time detection of computer system files..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System for real-time detection of computer system files... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2675829