WO1998045778A3 - Antivirus system and method - Google Patents

Antivirus system and method Download PDF

Info

Publication number
WO1998045778A3
WO1998045778A3 PCT/IL1998/000170 IL9800170W WO9845778A3 WO 1998045778 A3 WO1998045778 A3 WO 1998045778A3 IL 9800170 W IL9800170 W IL 9800170W WO 9845778 A3 WO9845778 A3 WO 9845778A3
Authority
WO
Grant status
Application
Patent type
Prior art keywords
processor
predefined
behaviour
detect
antivirus
Prior art date
Application number
PCT/IL1998/000170
Other languages
French (fr)
Other versions
WO1998045778A2 (en )
Inventor
Marc Zuta
Original Assignee
Marc Zuta
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/566Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/567Computer malware detection or handling, e.g. anti-virus arrangements using dedicated hardware
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/30Monitoring
    • G06F11/34Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation ; Recording or statistical evaluation of user activity, e.g. usability assessment
    • G06F11/3466Performance evaluation by tracing or monitoring

Abstract

In an antivirus multiprocessor system, a second processor (2) is attached to a first processor (11) for monitoring its performance and intervening if predefined behaviour thereof is detected. The second processor (2) includes means for continuously supervising the operation of the first processor (11) to detect virus-related activities therein by comparing therein actual performed instructions in the first processor (11) with instruction sequences corresponding to known viruses or to predefined suspect behaviour, to prevent damage to the application processor. A plurality of sensors is used to detect suspect activity in various media like radio frequency or wireless RF, serial or parallel communication channels.
PCT/IL1998/000170 1997-04-08 1998-04-08 Antivirus system and method WO1998045778A3 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
IL12063297A IL120632D0 (en) 1997-04-08 1997-04-08 Multiprocessor system and method
IL120632 1997-04-08

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
AU6850798A AU6850798A (en) 1997-04-08 1998-04-08 Antivirus system and method

Publications (2)

Publication Number Publication Date
WO1998045778A2 true WO1998045778A2 (en) 1998-10-15
WO1998045778A3 true true WO1998045778A3 (en) 1998-12-30

Family

ID=11070011

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IL1998/000170 WO1998045778A3 (en) 1997-04-08 1998-04-08 Antivirus system and method

Country Status (1)

Country Link
WO (1) WO1998045778A3 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8924310B2 (en) 1999-08-31 2014-12-30 Lead Core Fund, L.L.C. Methods and apparatus for conducting electronic transactions
USRE45416E1 (en) 2001-07-10 2015-03-17 Xatra Fund Mx, Llc Processing an RF transaction using a routing number
US9336634B2 (en) 2001-07-10 2016-05-10 Chartoleaux Kg Limited Liability Company Hand geometry biometrics on a payment device
US9454752B2 (en) 2001-07-10 2016-09-27 Chartoleaux Kg Limited Liability Company Reload protocol at a transaction processing entity

Families Citing this family (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1161716B1 (en) 1999-02-15 2013-11-27 Hewlett-Packard Development Company, L.P. Trusted computing platform
EP1055990A1 (en) * 1999-05-28 2000-11-29 Hewlett-Packard Company Event logging in a computing platform
EP1056010A1 (en) 1999-05-28 2000-11-29 Hewlett-Packard Company Data integrity monitoring in trusted computing entity
WO2001077794A3 (en) * 2000-04-06 2002-10-17 Granite Technologies Inc System and method for real time monitoring and control of a computer machine environment and configuration profile
US9213836B2 (en) 2000-05-28 2015-12-15 Barhon Mayer, Batya System and method for comprehensive general electric protection for computers against malicious programs that may steal information and/or cause damages
GB2411748B (en) * 2000-05-28 2005-10-19 Secureol System and method for comprehensive general generic protection for computers against malicious programs that may steal information and/or cause damages
US7263616B1 (en) * 2000-09-22 2007-08-28 Ge Medical Systems Global Technology Company, Llc Ultrasound imaging system having computer virus protection
GB2372594B (en) 2001-02-23 2004-10-06 Hewlett Packard Co Trusted computing environment
US9031880B2 (en) 2001-07-10 2015-05-12 Iii Holdings 1, Llc Systems and methods for non-traditional payment using biometric data
US7673343B1 (en) 2001-07-26 2010-03-02 Mcafee, Inc. Anti-virus scanning co-processor
US7665137B1 (en) 2001-07-26 2010-02-16 Mcafee, Inc. System, method and computer program product for anti-virus scanning in a storage subsystem
US6792543B2 (en) 2001-08-01 2004-09-14 Networks Associates Technology, Inc. Virus scanning on thin client devices using programmable assembly language
FR2830638A1 (en) * 2001-10-05 2003-04-11 France Telecom Detection of attacks, especially virus type attacks, on a computer system, whereby a generic method is used that is capable of detecting attack programs hidden in data chains that are loaded into memory by a detectable instruction
JP3914757B2 (en) 2001-11-30 2007-05-16 デュアキシズ株式会社 Apparatus and method and system for virus scanning
US7761605B1 (en) 2001-12-20 2010-07-20 Mcafee, Inc. Embedded anti-virus scanner for a network adapter
US8185943B1 (en) 2001-12-20 2012-05-22 Mcafee, Inc. Network adapter firewall system and method
EP1333350A1 (en) * 2002-01-30 2003-08-06 SGS-Thomson Microelectronics Limited Memory security device
US8171551B2 (en) * 2003-04-01 2012-05-01 Mcafee, Inc. Malware detection using external call characteristics
CA2537591C (en) * 2003-09-11 2014-08-19 Detica Limited Real-time network monitoring and security
DE102005014837B4 (en) 2004-08-02 2007-08-30 Mahltig, Holger Security module and method for controlling and monitoring a data traffic of a personal computer
US8201243B2 (en) 2006-04-20 2012-06-12 Webroot Inc. Backwards researching activity indicative of pestware
US8181244B2 (en) 2006-04-20 2012-05-15 Webroot Inc. Backward researching time stamped events to find an origin of pestware
US20070250818A1 (en) * 2006-04-20 2007-10-25 Boney Matthew L Backwards researching existing pestware
US8190868B2 (en) 2006-08-07 2012-05-29 Webroot Inc. Malware management through kernel detection
WO2011053324A1 (en) * 2009-10-31 2011-05-05 Hewlett-Packard Development Company, L.P. Malicious code detection
US8832837B2 (en) * 2012-06-29 2014-09-09 Mcafee Inc. Preventing attacks on devices with multiple CPUs
US9852290B1 (en) 2013-07-12 2017-12-26 The Boeing Company Systems and methods of analyzing a software component
EP2942728A1 (en) * 2014-04-30 2015-11-11 The Boeing Company Systems and methods of analyzing a software component
US9396082B2 (en) 2013-07-12 2016-07-19 The Boeing Company Systems and methods of analyzing a software component
GB201513525D0 (en) * 2015-07-31 2015-09-16 Arm Ip Ltd Probabilistic Processor Monitoring

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5414833A (en) * 1993-10-27 1995-05-09 International Business Machines Corporation Network security system and method using a parallel finite state machine adaptive active monitor and responder
US5440723A (en) * 1993-01-19 1995-08-08 International Business Machines Corporation Automatic immune system for computers and computer networks
US5491791A (en) * 1995-01-13 1996-02-13 International Business Machines Corporation System and method for remote workstation monitoring within a distributed computing environment
US5657473A (en) * 1990-02-21 1997-08-12 Arendee Limited Method and apparatus for controlling access to and corruption of information in computer systems

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5657473A (en) * 1990-02-21 1997-08-12 Arendee Limited Method and apparatus for controlling access to and corruption of information in computer systems
US5440723A (en) * 1993-01-19 1995-08-08 International Business Machines Corporation Automatic immune system for computers and computer networks
US5414833A (en) * 1993-10-27 1995-05-09 International Business Machines Corporation Network security system and method using a parallel finite state machine adaptive active monitor and responder
US5491791A (en) * 1995-01-13 1996-02-13 International Business Machines Corporation System and method for remote workstation monitoring within a distributed computing environment

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
COHEN F.: "CURRENT BEST PRACTICE AGAINST COMPUTER VIRUSES.", PROCEEDINGS OF THE ANNUAL INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY. TAIPEI, OCT. 1 - 3, 1991., NEW YORK, IEEE., US, vol. CONF. 25, 1 January 1991 (1991-01-01), US, pages 261 - 270., XP002913268, ISBN: 978-0-7803-0120-7, DOI: 10.1109/CCST.1991.202223 *
LADKIN P., THIMBLEBY H.: "COMMENTS ON A PAER BY VAOS, PAYNE AND COHEN: "A MODEL FOR DETECTINGTHE EXISTENCE OF SOFTWARE CORRUPTION IN REAL TIME".", COMPUTERS & SECURITY., ELSEVIER SCIENCE PUBLISHERS. AMSTERDAM., NL, vol. 13., 1 January 1994 (1994-01-01), NL, pages 527 - 531., XP002913267, ISSN: 0167-4048, DOI: 10.1016/0167-4048(91)90140-9 *
QASEM I. R., ET AL.: "COMPUTER VIRUSES: DETECTION AND PREVENTION TECHNIQUES.", TECHNOLOGIES TODAY AND TOMORROW. NEW ORLEANS, APRIL 1 - 4, 1990., NEW YORK, IEEE., US, vol. -, 1 January 1990 (1990-01-01), US, pages 199/200., XP002913269 *

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8924310B2 (en) 1999-08-31 2014-12-30 Lead Core Fund, L.L.C. Methods and apparatus for conducting electronic transactions
US8938402B2 (en) 1999-08-31 2015-01-20 Lead Core Fund, L.L.C. Methods and apparatus for conducting electronic transactions
US9519894B2 (en) 1999-08-31 2016-12-13 Gula Consulting Limited Liability Company Methods and apparatus for conducting electronic transactions
USRE45416E1 (en) 2001-07-10 2015-03-17 Xatra Fund Mx, Llc Processing an RF transaction using a routing number
US9336634B2 (en) 2001-07-10 2016-05-10 Chartoleaux Kg Limited Liability Company Hand geometry biometrics on a payment device
US9454752B2 (en) 2001-07-10 2016-09-27 Chartoleaux Kg Limited Liability Company Reload protocol at a transaction processing entity

Also Published As

Publication number Publication date Type
WO1998045778A2 (en) 1998-10-15 application

Similar Documents

Publication Publication Date Title
US5802101A (en) Direct sequence SS LAN station with reduced power consumption and method for operating the same
US7808958B1 (en) Rogue wireless access point detection
JPS5598353A (en) Abnormal condition detecting method of sliding member in rotating machine
Philippi et al. A multistage approach to population monitoring for rare plant populations
JPS63180229A (en) Mobile communication system
JPH04357471A (en) Antenna monitoring device
JPS61198057A (en) Method and device for diagnosing damage of sliding bearing for rolling mill
WO1996006747A3 (en) A tyre condition monitoring system
JPS5934146A (en) Flaw detector for rotor blade
JPH0245838A (en) Program execution condition monitoring method
JP2010198414A (en) Monitoring system, device and method, and program
JPS5674632A (en) Abnormality diagnostic method of bearing
JPS61260306A (en) Prevention system against mutual interference between robots
Martincic et al. Distributed perimeter detection in wireless sensor networks
US6137259A (en) Battery pack with water leakage detecting seal
Robertson et al. Detection and estimation of randomly occurring deterministic disturbances
JP2008154080A (en) Portable information terminal, security method and program
US20110199861A1 (en) Method and system for detecting motorized objects
DE20217854U1 (en) Signaling means, data processing apparatus, detection means and associated system
DE29724587U1 (en) Means for detecting and evaluating time and operational data
DE20200702U1 (en) Working chamber system and leak monitoring device
US20120322360A1 (en) Distributed Wireless Communications for Tactical Network Dominance
JP2004301814A (en) Vessel collision prevention warning device
Singh et al. Argus-a distributed network-intrusion detection system
JP2007122228A (en) Network medical inspection system

Legal Events

Date Code Title Description
AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

AK Designated states

Kind code of ref document: A2

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

ENP Entry into the national phase in:

Ref country code: US

Ref document number: 1998 205341

Date of ref document: 19981208

Kind code of ref document: A

Format of ref document f/p: F

AK Designated states

Kind code of ref document: A3

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

NENP Non-entry into the national phase in:

Ref country code: CA

NENP Non-entry into the national phase in:

Ref country code: JP

Ref document number: 1998542562

Format of ref document f/p: F

122 Ep: pct application non-entry in european phase