WO1998045778A3 - Antivirus system and method - Google Patents

Antivirus system and method

Info

Publication number
WO1998045778A3
WO1998045778A3 PCT/IL1998/000170 IL9800170W WO1998045778A3 WO 1998045778 A3 WO1998045778 A3 WO 1998045778A3 IL 9800170 W IL9800170 W IL 9800170W WO 1998045778 A3 WO1998045778 A3 WO 1998045778A3
Authority
WO
Grant status
Application
Patent type
Prior art keywords
processor
predefined
behaviour
detect
antivirus
Prior art date
Application number
PCT/IL1998/000170
Other languages
French (fr)
Other versions
WO1998045778A2 (en )
Inventor
Marc Zuta
Original Assignee
Marc Zuta
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/566Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/567Computer malware detection or handling, e.g. anti-virus arrangements using dedicated hardware
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/30Monitoring
    • G06F11/34Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation ; Recording or statistical evaluation of user activity, e.g. usability assessment
    • G06F11/3466Performance evaluation by tracing or monitoring

Abstract

In an antivirus multiprocessor system, a second processor (2) is attached to a first processor (11) for monitoring its performance and intervening if predefined behaviour thereof is detected. The second processor (2) includes means for continuously supervising the operation of the first processor (11) to detect virus-related activities therein by comparing therein actual performed instructions in the first processor (11) with instruction sequences corresponding to known viruses or to predefined suspect behaviour, to prevent damage to the application processor. A plurality of sensors is used to detect suspect activity in various media like radio frequency or wireless RF, serial or parallel communication channels.
PCT/IL1998/000170 1997-04-08 1998-04-08 Antivirus system and method WO1998045778A3 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
IL12063297 1997-04-08
IL120632 1997-04-08

Publications (2)

Publication Number Publication Date
WO1998045778A2 true WO1998045778A2 (en) 1998-10-15
WO1998045778A3 true true WO1998045778A3 (en) 1998-12-30

Family

ID=11070011

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IL1998/000170 WO1998045778A3 (en) 1997-04-08 1998-04-08 Antivirus system and method

Country Status (1)

Country Link
WO (1) WO1998045778A3 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8924310B2 (en) 1999-08-31 2014-12-30 Lead Core Fund, L.L.C. Methods and apparatus for conducting electronic transactions
USRE45416E1 (en) 2001-07-10 2015-03-17 Xatra Fund Mx, Llc Processing an RF transaction using a routing number
US9336634B2 (en) 2001-07-10 2016-05-10 Chartoleaux Kg Limited Liability Company Hand geometry biometrics on a payment device
US9454752B2 (en) 2001-07-10 2016-09-27 Chartoleaux Kg Limited Liability Company Reload protocol at a transaction processing entity

Families Citing this family (33)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1161716B1 (en) 1999-02-15 2013-11-27 Hewlett-Packard Development Company, L.P. Trusted computing platform
EP1055990A1 (en) * 1999-05-28 2000-11-29 Hewlett-Packard Company Event logging in a computing platform
EP1056010A1 (en) 1999-05-28 2000-11-29 Hewlett-Packard Company Data integrity monitoring in trusted computing entity
WO2001016900A3 (en) * 1999-08-31 2001-10-04 American Express Travel Relate Methods and apparatus for conducting electronic transactions
EP1410129A2 (en) * 2000-02-07 2004-04-21 Panacya, Inc. Computer security system identifying suspect behavior
WO2001077794A3 (en) * 2000-04-06 2002-10-17 Granite Technologies Inc System and method for real time monitoring and control of a computer machine environment and configuration profile
US9213836B2 (en) 2000-05-28 2015-12-15 Barhon Mayer, Batya System and method for comprehensive general electric protection for computers against malicious programs that may steal information and/or cause damages
GB2411748B (en) * 2000-05-28 2005-10-19 Secureol System and method for comprehensive general generic protection for computers against malicious programs that may steal information and/or cause damages
US7263616B1 (en) * 2000-09-22 2007-08-28 Ge Medical Systems Global Technology Company, Llc Ultrasound imaging system having computer virus protection
GB2372594B (en) 2001-02-23 2004-10-06 Hewlett Packard Co Trusted computing environment
US9031880B2 (en) 2001-07-10 2015-05-12 Iii Holdings 1, Llc Systems and methods for non-traditional payment using biometric data
US7673343B1 (en) 2001-07-26 2010-03-02 Mcafee, Inc. Anti-virus scanning co-processor
US7665137B1 (en) 2001-07-26 2010-02-16 Mcafee, Inc. System, method and computer program product for anti-virus scanning in a storage subsystem
US6792543B2 (en) 2001-08-01 2004-09-14 Networks Associates Technology, Inc. Virus scanning on thin client devices using programmable assembly language
FR2830638A1 (en) * 2001-10-05 2003-04-11 France Telecom Detection of attacks, especially virus type attacks, on a computer system, whereby a generic method is used that is capable of detecting attack programs hidden in data chains that are loaded into memory by a detectable instruction
JP3914757B2 (en) 2001-11-30 2007-05-16 デュアキシズ株式会社 Apparatus and method and system for virus scanning
US7761605B1 (en) 2001-12-20 2010-07-20 Mcafee, Inc. Embedded anti-virus scanner for a network adapter
US8185943B1 (en) 2001-12-20 2012-05-22 Mcafee, Inc. Network adapter firewall system and method
EP1333350A1 (en) * 2002-01-30 2003-08-06 SGS-Thomson Microelectronics Limited Memory security device
WO2004036397A1 (en) * 2002-10-17 2004-04-29 Zacharias Sahlberg Method and device for separating different segments of computer equipment
US8171551B2 (en) * 2003-04-01 2012-05-01 Mcafee, Inc. Malware detection using external call characteristics
CA2537591C (en) * 2003-09-11 2014-08-19 Detica Limited Real-time network monitoring and security
DE102005014837B4 (en) 2004-08-02 2007-08-30 Mahltig, Holger Security module and method for controlling and monitoring a data traffic of a personal computer
US8201243B2 (en) 2006-04-20 2012-06-12 Webroot Inc. Backwards researching activity indicative of pestware
US8181244B2 (en) 2006-04-20 2012-05-15 Webroot Inc. Backward researching time stamped events to find an origin of pestware
US20070250818A1 (en) * 2006-04-20 2007-10-25 Boney Matthew L Backwards researching existing pestware
US8190868B2 (en) 2006-08-07 2012-05-29 Webroot Inc. Malware management through kernel detection
WO2011053324A1 (en) * 2009-10-31 2011-05-05 Hewlett-Packard Development Company, L.P. Malicious code detection
US8832837B2 (en) * 2012-06-29 2014-09-09 Mcafee Inc. Preventing attacks on devices with multiple CPUs
US9852290B1 (en) 2013-07-12 2017-12-26 The Boeing Company Systems and methods of analyzing a software component
EP2942728A1 (en) * 2014-04-30 2015-11-11 The Boeing Company Systems and methods of analyzing a software component
US9396082B2 (en) 2013-07-12 2016-07-19 The Boeing Company Systems and methods of analyzing a software component
GB201513525D0 (en) * 2015-07-31 2015-09-16 Arm Ip Ltd Probabilistic Processor Monitoring

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5414833A (en) * 1993-10-27 1995-05-09 International Business Machines Corporation Network security system and method using a parallel finite state machine adaptive active monitor and responder
US5440723A (en) * 1993-01-19 1995-08-08 International Business Machines Corporation Automatic immune system for computers and computer networks
US5491791A (en) * 1995-01-13 1996-02-13 International Business Machines Corporation System and method for remote workstation monitoring within a distributed computing environment
US5657473A (en) * 1990-02-21 1997-08-12 Arendee Limited Method and apparatus for controlling access to and corruption of information in computer systems

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5657473A (en) * 1990-02-21 1997-08-12 Arendee Limited Method and apparatus for controlling access to and corruption of information in computer systems
US5440723A (en) * 1993-01-19 1995-08-08 International Business Machines Corporation Automatic immune system for computers and computer networks
US5414833A (en) * 1993-10-27 1995-05-09 International Business Machines Corporation Network security system and method using a parallel finite state machine adaptive active monitor and responder
US5491791A (en) * 1995-01-13 1996-02-13 International Business Machines Corporation System and method for remote workstation monitoring within a distributed computing environment

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
COHEN F.: "CURRENT BEST PRACTICE AGAINST COMPUTER VIRUSES.", PROCEEDINGS OF THE ANNUAL INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY. TAIPEI, OCT. 1 - 3, 1991., NEW YORK, IEEE., US, vol. CONF. 25, 1 January 1991 (1991-01-01), US, pages 261 - 270., XP002913268, ISBN: 978-0-7803-0120-7, DOI: 10.1109/CCST.1991.202223 *
LADKIN P., THIMBLEBY H.: "COMMENTS ON A PAER BY VAOS, PAYNE AND COHEN: "A MODEL FOR DETECTINGTHE EXISTENCE OF SOFTWARE CORRUPTION IN REAL TIME".", COMPUTERS & SECURITY., ELSEVIER SCIENCE PUBLISHERS. AMSTERDAM., NL, vol. 13., 1 January 1994 (1994-01-01), NL, pages 527 - 531., XP002913267, ISSN: 0167-4048, DOI: 10.1016/0167-4048(91)90140-9 *
QASEM I. R., ET AL.: "COMPUTER VIRUSES: DETECTION AND PREVENTION TECHNIQUES.", TECHNOLOGIES TODAY AND TOMORROW. NEW ORLEANS, APRIL 1 - 4, 1990., NEW YORK, IEEE., US, vol. -, 1 January 1990 (1990-01-01), US, pages 199/200., XP002913269 *

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8924310B2 (en) 1999-08-31 2014-12-30 Lead Core Fund, L.L.C. Methods and apparatus for conducting electronic transactions
US8938402B2 (en) 1999-08-31 2015-01-20 Lead Core Fund, L.L.C. Methods and apparatus for conducting electronic transactions
US9519894B2 (en) 1999-08-31 2016-12-13 Gula Consulting Limited Liability Company Methods and apparatus for conducting electronic transactions
USRE45416E1 (en) 2001-07-10 2015-03-17 Xatra Fund Mx, Llc Processing an RF transaction using a routing number
US9336634B2 (en) 2001-07-10 2016-05-10 Chartoleaux Kg Limited Liability Company Hand geometry biometrics on a payment device
US9454752B2 (en) 2001-07-10 2016-09-27 Chartoleaux Kg Limited Liability Company Reload protocol at a transaction processing entity

Also Published As

Publication number Publication date Type
WO1998045778A2 (en) 1998-10-15 application

Similar Documents

Publication Publication Date Title
US6789202B1 (en) Method and apparatus for providing a policy-driven intrusion detection system
US6693548B2 (en) Structural monitoring system for helicopter rotor components
DE29911748U1 (en) Arrangement for mobile detection of fires
US20140109226A1 (en) Kernel-Level Security Agent
JPH03205999A (en) Abnormality monitoring device
Philippi et al. A multistage approach to population monitoring for rare plant populations
WO1988000747A2 (en) Intrusion detection system
JP2001222425A (en) Virus eradication system and method, and recording medium
WO2000041542A3 (en) System for allocating resources in a communication system
JPS6252601A (en) Plant operation supporting system
JPS63180229A (en) Mobile communication system
DE20017009U1 (en) Monitoring system for objects, such as buildings and areas
JPH04357471A (en) Antenna monitoring device
JPS6293620A (en) Diagnostic device for rotary machine
GB2393540B (en) System,method and apparatus for the frequency management of blades in a bladed architecture based on performance requirements
WO1996006747A3 (en) A tyre condition monitoring system
US20060144170A1 (en) Method and apparatus for detecting surveillance devices
JPS5934146A (en) Flaw detector for rotor blade
JP2000278063A (en) Power amplifier circuit and method for controlling its transmission output
JPH03220828A (en) Wireless monitoring equipment
DE20108302U1 (en) Arrangement of agricultural equipment for detection of the consumption amount of grit
JPS61265533A (en) Apparatus for detecting abnormality of rotor
JPS5674632A (en) Abnormality diagnostic method of bearing
Robertson et al. Detection and estimation of randomly occurring deterministic disturbances
JPH01217666A (en) Fault detecting system for multiprocessor system

Legal Events

Date Code Title Description
AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

AK Designated states

Kind code of ref document: A2

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

ENP Entry into the national phase in:

Ref country code: US

Ref document number: 1998 205341

Date of ref document: 19981208

Kind code of ref document: A

Format of ref document f/p: F

AK Designated states

Kind code of ref document: A3

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

NENP Non-entry into the national phase in:

Ref country code: CA

NENP Non-entry into the national phase in:

Ref country code: JP

Ref document number: 1998542562

Format of ref document f/p: F

122 Ep: pct application non-entry in european phase