|
Match
|
Document |
Document Title |
|
|
7596808 |
Zero hop algorithm for network threat identification and mitigation
A method, system, apparatus, and computer-readable medium to enable a set of security device interfaces within a broadcast domain to identify and mitigate attacks. For each address of a device...
|
|
|
7596811 |
Methods and systems for network traffic security
The present invention is directed to methods of and systems for adaptive networking that monitors a network resource of a network. The method monitors an application performance. The method...
|
|
|
7594266 |
Data security and intrusion detection
Systems and methods are provided for the detection and prevention of intrusions in data at rest systems such as file systems and web servers. Item requests are examined to determine if the request...
|
|
|
7594263 |
Operating a communication network through use of blocking measures for responding to communication traffic anomalies
A communication network is operated by detecting an anomaly in the communication traffic at a plurality of nodes in a communication network. A first blocking measure A is independently applied at...
|
|
|
7594272 |
Detecting malicious software through file group behavior
A malicious software detection module (MSDM) detects worms and other malicious software. The MSDM executes on a computer system connected to a network. The MSDM monitors a storage device of the...
|
|
|
7594224 |
Distributed enterprise security system
A system and method for distributed enterprise security, comprising, a server operable to update information, wherein the information can include one or more of a policy and configuration...
|
|
|
7594271 |
Method and system for real-time tamper evidence gathering for software
A method and system are directed to differentiating between normal characteristics and abnormal characteristics within a software process, such that tampering of the software process may be...
|
|
|
7590707 |
Method and system for identifying network addresses associated with suspect network destinations
A method and system for identifying network addresses associated with suspect network destinations is described. One embodiment receives a target Uniform Resource Locator (URL) to be analyzed;...
|
|
|
7591018 |
Portable antivirus device with solid state memory
In one embodiment, a rescue device is employed to disinfect a computer infected with a virus. The rescue device may comprise solid state memory. The rescue device may be removable from the computer...
|
|
|
7591016 |
System and method for scanning memory for pestware offset signatures
Systems and methods for managing pestware processes on a protected computer are described. In one implementation, a reference point in the executable memory that is associated with a process...
|
|
|
7590813 |
Cache scanning system and method
A method includes stalling a cache flush instruction to flush a cache; determining that the cache comprises a file that has been infected with malicious code, and terminating the cache flush...
|
|
|
7591017 |
Apparatus, and method for implementing remote client integrity verification
Apparatus, system, method and computer program product for verifying the integrity of remote network devices that request access to network services and resources. Unintended computer programs such...
|
|
|
7590834 |
Method and apparatus for tracking boot history
A computer determines whether it has been booted from a hard disk drive or from an alternate source (e.g., a floppy drive or portable memory) that entails a higher risk of importing a virus into...
|
|
|
7591019 |
Method and system for optimization of anti-virus scan
A system and method for optimizing a process of synchronization of a database of files checked by an anti-virus (AV) application implemented as a special AV driver. The database is updated by a...
|
|
|
7587765 |
Automatic virus fix
A client computer is connected via a network to an anti-virus server. A signal from the anti-virus server notifies the client computer that an anti-virus needs to be immediately downloaded from the...
|
|
|
7587761 |
Adaptive defense against various network attacks
An apparatus for optimizing a filter based on detected attacks on a data network includes an estimation means and an optimization means. The estimation means operates when a detector detects an...
|
|
|
7581250 |
System, computer program product and method of selecting sectors of a hard disk on which to perform a virus scan
A system, computer program product and method of selecting sectors of a disk on which to perform a virus scan are provided. Initially, all data in all sectors of a disk is scanned for viruses....
|
|
|
7581253 |
Secure storage tracking for anti-virus speed-up
A computer system includes a security subsystem which is able to trustfully track which files or storage areas of a storage device have been altered since a last virus scan. The trusted information...
|
|
|
7581254 |
Virus scanner system and method with integrated spyware detection capabilities
A system, method and computer program product are provided for scanning for spyware utilizing a virus scanner. In use, at least one computer is scanned for viruses utilizing a virus scanner. Still...
|
|
|
7581252 |
Storage conversion for anti-virus speed-up
A computer system includes a security subsystem which is able to trustfully track which files or storage areas of a storage device have been altered since a last virus scan. The trusted information...
|
|
|
7577941 |
System and method for identifying potential security risks in controls
Controls of interest are indentified by determining which installed software objects associated with the application of interest exhibit certain characteristics, such as being publicly creatable,...
|
|
|
7577848 |
Systems and methods for validating executable file integrity using partial image hashes
Systems and methods for validating integrity of an executable file are described. In one aspect, multiple partial image hashes are generated, the combination of which represent a digest of an...
|
|
|
7574742 |
System and method of string matching for uniform data classification
A system and method comprising providing a plurality of signature strings, inputting a plurality of strings, separating the signature strings into a plurality of signature groups, respectively...
|
|
|
7574743 |
Method for ensuring security, data storage apparatus, security ensuring server, and storage medium storing program for the same
A method for ensuring security and a data storage apparatus that enable an efficient security check on a notebook PC or like that are taken outside are provided. By executing a program that is read...
|
|
|
7571481 |
Computer peripheral apparatus and method of controlling the same
A computer peripheral apparatus of this invention has a check step of checking whether received data is infected with a computer virus. If the received data satisfies a predetermined condition, the...
|
|
|
7571482 |
Automated rootkit detector
Embodiments of a RootKit detector are directed to identifying a RootKit on a computer that is designed to conceal malware. Aspects of the RootKit detector leverage services provided by kernel...
|
|
|
7571477 |
Real-time network attack pattern detection system for unknown network attack and method thereof
In a real-time network attack pattern detection system and method, a common pattern is detected in real time from packets, which are suspected to be a network attack such as Worm, to effectively...
|
|
|
7571319 |
Validating inbound messages
A system and method for verifying messages. The method may include the steps of receiving an inbound message and characterizing the inbound message by analyzing a latent cryptographic identifier in...
|
|
|
7571483 |
System and method for reducing the vulnerability of a computer network to virus threats
A method for reducing vulnerability of a computer network to a detected virus threat includes receiving an identifier of a network device detected as a source of virus activity. The method also...
|
|
|
7568231 |
Integrated firewall/virus scanner system, method, and computer program product
A security system, method and computer program product are provided. In use, a request from a remote computer to write to a file on a local computer is identified. It is then determined whether the...
|
|
|
7568230 |
System for selective disablement and locking out of computer system objects
A method for disabling a process in a computer, particularly including processes such as viruses, spyware, adware, and malware generally. A file object (file or folder) is identified in the...
|
|
|
7568233 |
Detecting malicious software through process dump scanning
An executable file containing malicious software can be packed using a packer to make the software difficult to detect. The executable file is loaded into the computer's memory and executed as a...
|
|
|
7565549 |
System and method for the managed security control of processes on a computer system
Managing and controlling the execution of software programs with a computing device to protect the computing device from malicious activities. A protector system implements a two-step process to...
|
|
|
7565523 |
Apparatus and method for restoring master boot record infected with virus
An apparatus for and a method of restoring a master boot record infected with a virus. The apparatus comprises a first storage unit storing a master boot record (MBR), and a virus check unit...
|
|
|
7565695 |
System and method for directly accessing data from a data storage medium
Systems and methods for scanning files for pestware on a protected computer are described. In one variation, locations of each of a plurality of files in a file storage device of the protected...
|
|
|
7565694 |
Method and apparatus for preventing network reset attacks
A method for improving resistance of network protocols running on transmission control protocol (TCP), such as BGP. For example, a method comprises receiving, from a TCP application, a request to...
|
|
|
7565686 |
Preventing unauthorized loading of late binding code into a process
A late binding code manager prevents the unauthorized loading of late binding code into a process. The late binding code manager detects an attempt to load late binding code into a process's...
|
|
|
7565692 |
Floating intrusion detection platforms
The present invention is a “floating” intrusion detection system that can use any computer on the network as an intrusion detection platform. A software agent program called a “socket” is...
|
|
|
7562122 |
Message classification using allowed items
A system and method are disclosed for classifying a message. The method includes receiving the message, identifying all items of a certain type in the message, determining whether each of the items...
|
|
|
7562214 |
Data processing systems
Detection of an attack on a data processing system. An example method comprising, in the data processing system: providing an initial secret; binding the initial secret to data indicative of an...
|
|
|
7562388 |
Method and system for implementing security devices in a network
Supporting the implementation and collaboration of a variety of security modules in a distributed computing network. A security interface provides a universal platform for coupling security modules...
|
|
|
7562293 |
Method and apparatus for processing a parseable document
A data processing method comprises receiving an electronically parseable document, scanning the document according to at least one predefined rule to determine if the document is suspicious, and,...
|
|
|
7559086 |
System and method for detecting multi-component malware
Malicious behavior of a computer program is detected using an emulation engine, an event detector and an event analyzer. The emulation engine includes a system emulator configured to emulate, in an...
|
|
|
7552479 |
Detecting shellcode that modifies IAT entries
On start up of a process, a critical imported functions table including resolved addresses of critical imported functions that an application, such as a host intrusion detection system application...
|
|
|
7549169 |
Alternated update system and method
A method includes generating new update name lists and providing malicious code protection update information including the new update name lists to host computer systems. In one embodiment, the...
|
|
|
7548544 |
Method of determining network addresses of senders of electronic mail messages
In one embodiment, a method comprises computer-implemented steps of receiving a plurality of electronic mail messages containing sender address information that is non-trusted. For each electronic...
|
|
|
7549055 |
Pre-boot firmware based virus scanner
The present disclosure relates to allowing the utilization of a virus scanner and cleaner that operates primarily in the pre-boot phase of computer operation and, more particularly, to allowing the...
|
|
|
7549166 |
Defense mechanism for server farm
A method and system for handling a malicious intrusion to a machine in a networked group of computers. The malicious intrusion is an unauthorized access to the machine, such as a server in a server...
|
|
|
7546471 |
Method and system for virus detection using pattern matching techniques
A method and system for providing virus detection. A virus detection system provides for the use of pattern matching techniques on data at a binary level for virus detection. Whenever an incoming...
|
|
|
7546638 |
Automated identification and clean-up of malicious computer code
Malicious computer code ( 101 ) is automatically cleaned-up from a target computer ( 103 ). An operating system ( 109 ) automatically boots ( 201 ) in the computer memory ( 105 ) of the target...
|