Patent
Methods for combating malicious software
S.D.H. Hsu,James Hormuzdiar +1 more
- 27 Apr 2006
114
TL;DR: In this paper, a method for combating malware monitors all attempts by any software executing on a computer to write data to the computer's digital storage medium and records details of the attempts in a system database having a causal tree structure.
read more
Abstract: A method for combating malware monitors all attempts by any software executing on a computer to write data to the computer's digital storage medium and records details of the attempts in a system database having a causal tree structure. The method also intercepts unauthorized attempts by executing objects to modify the memory allocated to other executing objects or to modify a selected set of protected objects stored on the digital storage medium, and may also intercept write attempts by executing objects that have a buffer overflow or that are executing in a data segment of memory. The method may include a procedure for switching the computer into a quasi-safe mode that disables all non-essential processes. Preferably, the database is automatically organized into software packages classified by malware threat level. Entire or packages or portions thereof may be easily selected and neutralized by a local or remote user.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Patent
Spyware detection mechanism
Cormac Herley,Brian W. Keogh,Aaron Michael Hulett,Adrian M. Marinescu,Stanislav Nurilov,Jeffrey S. Williams +5 more
- 28 Feb 2007
TL;DR: In this paper, a system and method that facilitates and effectuates detection of malware secreted and/or hidden in plain sight on a machine is presented, in order to achieve its aims, generating a list of all loaded modules, identifying from the list a set of modules common to more than a threshold number of processes, and eliminating those modules included in an authentication list.
259
Patent
Determining maliciousness of software
Simon Clausen,Rolf Repasi,Kien Sen Huang +2 more
- 23 Oct 2007
TL;DR: A method of detecting malicious activity, including the steps of intercepting activity in a processing system 100, detecting attributes of an unassessed process 460 associated with the activity, comparing the process attributes and activity to a database of attributes and activities associated with known malicious and non-malicious processes, was proposed in this article.
214
Patent
Methods and apparatus for dealing with malware
Melvyn Morris,Paul Stubbs,Markus Hartwig,Darren Harter +3 more
- 14 Feb 2012
TL;DR: In this article, a method of classifying a computer object as malware includes receiving at a base computer data about a computer objects from each of plural remote computers on which the object or similar objects are stored.
211
Patent
System and method for building and delivering mobile widgets
Srinivas A. Mandyam,Krishna Vedati,Kelvin Voon-Kit Chong +2 more
- 06 Jun 2008
TL;DR: In this article, a system and methods are provided for creating, publishing, sharing, and delivering mobile software applications called "mobile widgets" onto mobile devices. But this system may include functionality to render a declaratory component of a widget, such as HTML, and also functionality to execute an imperative component, which may or may not be compiled and/or in a scripting or functional language.
194
Patent
System and method for providing a secured operating system execution environment
Ahmed Said Sallam
- 31 Mar 2011
TL;DR: In this article, a system for launching a security architecture includes an electronic device comprising a processor and one or more operating systems, a security agent, and a launching module consisting of a boot manager and a secured launching agent.
193
References
Patent
System and method for comprehensive general generic protection for computers against malicious programs that may steal information and/or cause damages
Yaron Mayer,Zak Dechovich +1 more
- 20 Oct 2004
TL;DR: In this paper, the authors propose an approach based on automatic segregation between programs, so that the programs in each virtual environment think that they are alone on the computer, and any changes that they think they made in virtually shared resources are in reality only made in their own virtual environment.
683
Patent
Method and apparatus for removing harmful software
Matthew Williamson,Vladimir Gorelik +1 more
- 15 Sep 2006
TL;DR: In this paper, the authors address the problem of removing malicious code from infected computers, and propose a method to remove malicious code by removing the malicious code in the infected computer itself.
202
Patent
Centralized timed analysis in a network security system
Todd Brennan
- 29 Jul 2005
TL;DR: A security system provides a defense from known and unknown viruses, worms, spyware, hackers, and social engineering attacks as discussed by the authors, which can implement centralized policies that allow an administrator to approve, block, quarantine, or log file activities.
184
Detecting insider threats by monitoring system call activity
Nam Nguyen,Peter Reiher,Geoff Kuenning +2 more
- 18 Jun 2003
TL;DR: An experimental system is described designed to test the system's ability to detect common insider misbehavior by examining file system and process-related system calls and results show that this approach can detect many such activities.
Patent
Changed file identification, software conflict resolution and unwanted file removal
Yi-Min Wang,Aaron R. Johnson,David C. Ladd,Roussi Roussev,Chad Verbowski +4 more
- 22 Apr 2004
TL;DR: AskStrider as discussed by the authors is a software tool that matches volatile process information with persistent-state context information and change history to identify the presence of unwanted software, determine if a software patch is potentially breaking an application, and detect lingering components left over from an unclean uninstallation.
92