WO2012156782A1 - Safety system and portable filter module with several connection means for reading, virus identification and removal from data transport devices and computers in general - Google Patents
Safety system and portable filter module with several connection means for reading, virus identification and removal from data transport devices and computers in general Download PDFInfo
- Publication number
- WO2012156782A1 WO2012156782A1 PCT/IB2011/052168 IB2011052168W WO2012156782A1 WO 2012156782 A1 WO2012156782 A1 WO 2012156782A1 IB 2011052168 W IB2011052168 W IB 2011052168W WO 2012156782 A1 WO2012156782 A1 WO 2012156782A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- filter module
- portable filter
- data transport
- several
- computers
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/567—Computer malware detection or handling, e.g. anti-virus arrangements using dedicated hardware
Definitions
- the present invention provides a safety system and. product as a portable filter module applied for reading, identification and removal of virus existing in data (information) transport devices, such as pen-drives, microcomputers, notebooks, mobile phones and other apparatuses, wherein said system includes a computer program having several antiviruses, previously installed or real-time updated, upon filter module use, whose said portable filter module is equipped with several connection means, allowing coupling of several kinds of apparatus for data transport device and/or computers scanning before the data transfer, as well as promotes infected data transport devices and/or computers healing.
- data transport devices such as pen-drives, microcomputers, notebooks, mobile phones and other apparatuses
- said system includes a computer program having several antiviruses, previously installed or real-time updated, upon filter module use, whose said portable filter module is equipped with several connection means, allowing coupling of several kinds of apparatus for data transport device and/or computers scanning before the data transfer, as well as promotes infected data transport devices and/or computers healing.
- Some viruses are broadly known, such as “Time-bomb”, programmed to become ertain times established by their creator (e.g.: “Friday 13 th “, “Michelangelo”); others are programmed to damage the system of infected users and start programming their viruses in such a way that they only replicate, without he purpose of causing severe damage to the system (Worms) ; or other additional ones, such as Tro ans, Hi j ackers (programs or scripts "hijacking” Internet browsers, among others.
- “Time-bomb” programmed to become ertain times established by their creator (e.g.: “Friday 13 th “, “Michelangelo”); others are programmed to damage the system of infected users and start programming their viruses in such a way that they only replicate, without he purpose of causing severe damage to the system (Worms) ; or other additional ones, such as Tro ans, Hi j ackers (programs or scripts "hijacking
- Antivirus Security® AVG Internet Antivirus SEcurity® and others, mostly of the type installed in the equipment to be checked periodically.
- An antivirus ( AV ) system based on an AV module implemented via hardware for healing infected computer systems and as a method for updating AV databases for healing infected systems.
- the hardware based AV system is located between a PC and a disk device.
- the hardware based system may be implemented as a separate device or may be incorporated to a disk controller.
- An AV database updating method uses a two-phase method. First, updating is transferred from a reliable utility to an AV system updating sector. Then, updates are validated within the AV system and AV database are updated.
- the AV system has its own CPU and memory, which may be used in conjunction with AV application.
- a portable filter module has been planned, which is intended to remove threats from data transports before they are connected to computers, household equipment and other electronic devices.
- the invention provides more security, as the portable filter module including the protection system comprises an independent hardware, capable of updating existing antiviruses at real time and of analyzing, out of any operating system or applications, any type of data transport device before it is connected to the computer.
- secure protection is provided to data transport , devices, equipment , household appliances , and the like .
- the present invention comprises a security system and product as a portable filter module applied for reading,- identification and removal of virus existing in data (information; transport devices.
- Said filter module is intended to provide an on-line or off-line antivirus system to heal the infected data transports, analyze data correction and analyze correct operation.
- the invention allows its user to transport the filter module anywhere, and it may have varying formats, such as a keychain, for easier handling, applied to equipment as computers, notebooks, mobile phones, household appliances, or even automobiles and anywhere else the user wishes or is required to use.
- the invention provides a portable module which removes threats and recognizes any data transport device when it is connected to it, and which is automatically started or started by the user.
- the invention includes a security system comprising a database with several types of antiviruses capable of analyzing and filtering data (information) present in the transport devices, by comparing those antiviruses present in the database to extraction methods in digital signatures, malicious codes, malicious codes standards and the like, with the comparison to its database using several parameters , such as size, date, binary codes and the like .
- the database is accessed when a device or equipment is connected to any of the filter module ports by means of two operating modes, namely: (a) off-line - the memories containing the antivirus listing are accessed by the filter module disconnected from the network; and (b) on-line - the database is updated at real-time remotely using several remote connection servers via cable or wireless network.
- the portable filter module off-line mode works with a communication processor between the memories, communication ports and their input ports facing the several connectors in the data transport equipment .
- the system checks if the device or equipment is working, and informs its status to the user by means of an interface, for example, via led, sound device or display.
- an interface for example, via led, sound device or display.
- the system shows the user that the device or equipment reading process has automatically started, and so, the user, by means of the display interface and cleaning or quarantine buttons, may choose that:
- the system automatically starts monitoring and scanning for threats, and when finding them, warns the user by means of visual or sound warnings, removing them and continuing scanning;
- Option CLEAR starts monitoring and scanning for threats, and when finding them, warns the user by means of visual or sound warnings, deleting threats pointed out;
- Quarantine starts monitoring and scanning for threats, and when finding them, warns the user by means of visual or sound warnings, compacting or making the threats found inoperable, by moving them to a specific folder named "QUARANTINE”; thus, after checking and monitoring, the user may analyze this folder later in his computer .
- Invention mode "on-line", on its turn, works with a communication processor between memories, corctiu.n c3.tion DO! s and connection ports to data transport equipment .
- the system checks, at first, if it is working, and informs such status to the user by means of visual or sound warnings, indicating, thereafter, that device scanning is automatically started via remote communication.
- the portable filter module connects to several servers for on-line analysis of data from the equipment connected, allowing the user, by using the display and other control buttons, to choose:
- Option Clear starts monitoring and scanning for threats, and when finding them, warns the user by means of visual or sound warnings, automatically deleting the threats ;
- Quadrantine starts monitoring and scanning for threats, and when finding them, warns the user by means of visual or sound warnings, compacting or making that threat found inoperable, by moving it to a specific folder named "QUARANTINE” ; thus, after checking and monitoring, the user may analyze this folder in his compute ;
- the invention portable filter module may be developed in several formats, with several types of universal access ports for connecting electronic devices and equipment, with an interface to indicate equipment status to the user, checking them by the internal system of the filter module itself, located in internal memories, and it is executed by a processor fed by internal or external battery energy.
- Said portable filter module in a construction option, may be applied to computers, notebooks, household appliances, car dashboards, mobile phones, tablets, telephones and electronic equipment structures, regardless the equipment, by using only electrical power for feeding, ensuring, thus, higher security to the equipment, for being separated from an interconnection.
- This model may be considered an external filter for analysis of data transport devices or equipment, before they connect to other equipment.
- the portable filter module has an internal battery that may be charged via USB connection in the computer, USB or solar output source.
- the filter module databases updating has a two-phase approach. First, updates are transferred via cable connected to a computer, which connects the database to the remote server , discharging, thus , new updates for internal memories, and another one via direct connection to the se ve , using a wire-provided or wireless network, discharging information obtained from internal memories.
- Figure 1 depicts a general scheme of the system and portaole filter module used for scanning and cleaning viruses from data transport devices such as pen- drives, computers, cameras , and the like;
- Figure 2 depicts a structural diagram of elements comprised by the security system, including a block diagram of the main components / functions present in the portable filter module when on off-line mode;
- Figure 3 depicts a structural diagram of the elements comprised by the security system, including a block diagram of the main components / functions present in the portable filter module when on on-line mode, however, using the access to the se ver by means of a direct connection to the network, or wireless;
- Figure 4 depicts a structural diagram of the elements comprised by the security system, including a block diagram of the main components / functions present in the portable filter module when on on-line mode, however, using the access to the server b means of computer;
- Figure 5 depicts a flowchart for the operation of the security system executed by the portable filter module through operating modes, namely, on-line and off-line;
- Figure 6 shows a perspective view of the portable filter module, representing the invention by means of a preferred constructive embodiment
- Figure 7 shows a perspective top view of the portable filter module showing the opposite side to the one in the previous figure
- Figure 8 depicts the portable filter module in perspective and at least two inlet options for battery electric power charging, i.e., by a pin connector or USB;
- Figure 9 depicts the filter module connection to a computer for charging power via USB cable
- Figure 10 depicts a first access option from the filter module to the remote server for updating its internal database, in this example, by means of communication through wireless mobile phone technology;
- Figure 11 depicts a second access option from the filter module to the remote server for updating its internal database, in this example, by means of communication through wireless wi-fi technology;
- Figure 12 depicts a third access option from the filter module to the remote server for updating its internal database, in this example, by means of communication through network cable;
- Figure 13 depicts a fourth access option from the filter module to the remote server for updating its internal database, in this example, by means of connection via a USB cable to a computer, here a notebook, which is connected to an Internet modem;
- Figure 14 depicts a fifth access option from the filter module to the remote server for updating its internal database
- the portable filter module connects to a microcomputer (notebook) , which, on its turn, accesses the server by means of a wireless apparatus;
- Figure 15 depicts the portable filter module performing reading and cleaning on a mobile phone by means of a USB connection, and updating its internal database, m this example, by wireless system, to a remote server;
- Figure 16 depicts the portable filter module performing reading and cleaning on a camera by means of a USB connection, and updating its internal database, in this example, by wireless system, to a remote server;
- Figure 16 depicts the portable filter module performing reading and cleaning on a tablet by means of a USB connection, and updating its internal database, in this example, by communication via cable to a modem and the latter to a remote server;
- Figure 18 depicts the portable filter module performing reading and cleaning on a pen-drive by means of a USB connection, and updating its internal database, in this example, by communication via USB cable to a microcomputer and the latter, on its turn, to a modem communicating with the remote server;
- Figure 19 depicts the portable filter module performing reading and cleaning on a pen-drive by means of appropriate connecters , and updating its internal database, in this example, by communication, via a wireless system, from a microcomputer related to a modem and remote server;
- Figures 20 and 21 depict several security system application versions performed by the portable filter module via USB cable or the like, related to data / information transport devices or equipment;
- Figure 22 depicts the portable filter module performing reading and cleaning on a conventional CPU hard disk, by means of a USB connection, and updating its internal database, in this example , by communication from the CPU to a modem and the latter, to a remote server;
- Figure 23 depicts the portable filter module performing reading and cleaning on a conventional notebook hard disk, by means of a USB connection, and updating its internal database, in this example, by remote communication to a modem and the latter, to a remote server;
- FIGS. 24 and 25 depict the several connection means developed for the several data transport devices and equipment
- the present invention security system (1) and product as a portable filter module (2) both applied for reading, identification and removal of virus (V) existing in data I information) transport (DT) devices, such as pen-drives (a) , mobile phones (b) , cameras (c) , memory cards ( d) and other apparatuses , or also computers (PC), notebooks (Nb) , tablets (Tb) and the like, capable of being connected to module (2) by means of several connectors (CI) or data cables (Cb)
- said system (1) including a computer program (3) having a processor (P) and memories (M) containing a database ( BD1 ) with several antiviruses (AVI), previously installed in the filter module (2) .
- Said portable filter module (2) is also equipped with a connection means (C2) for access, at real time, to Internet server (s ⁇ (SI) to programs providing databases (BD2) with several antiviruses (AV2) .
- the portable filter module provides an interface panel (PF) with the user, composed of a display (T) and buttons (B) , explained later on herein.
- Said portable filter module (see figures 1 and 2) is equipped with ports (PI) and converters (V) for connectors (CI ; identification, for direct coupling of several types of data transport (DT) devices (s) and/or computers (PC) to, by means of the processor (PRC), perform the reading of files (AQ) in said devices (DT) / computers (PC), in order to promote their scanning / healing, either if they are infected with viruses (V) or not.
- PI ports
- V converters
- CI connectors
- identification for direct coupling of several types of data transport (DT) devices (s) and/or computers (PC) to, by means of the processor (PRC), perform the reading of files (AQ) in said devices (DT) / computers (PC), in order to promote their scanning / healing, either if they are infected with viruses (V) or not.
- 3) is also equipped with port(s) (P2 ⁇ and converter (s) (V) for connecting a communicator (C2 ) , which, by means of the processor ( P ) , operates on apparatuses (API), equipped with remote communicators, such as wi-fi systems, radiofrequency and the like, with or without data cables, capable of communicating with Internet servers (SI) and respective programs providing databases (BD2 ) with several antiviruses (AV2 ⁇ , in order to perform files (AQ) reading for said devices (DT) / computers (PC) , in order to promote their scanning / healing, either if they are infected with viruses (V) or not .
- API apparatuses
- BD2 Internet servers
- BD2 antiviruses
- AV2 ⁇ several antiviruses
- the filter module (2) (see figures 1 and
- 4) is also equipped with port is) (P3) and converter (s) (V) for connecting a cable or communicator (C2) , which, by means of the processor (P) , operates in computers (PC), notebooks (Nb) , or others equipped with remote communicators ( C 3 ) , capable of communicating with Internet servers (SI) and respective programs providing databases (BD2) with several antiviruses (AV2), m order to perform files (AQ) reading for said devices (DT), in order to promote their scanning / healing, either if they are infected with viruses (V) or not .
- PC computer
- Nb notebooks
- C 3 remote communicators
- Said portable filter module (2) comprises, in a preferred construction option, a small box, composed of base (2a) and cover or fairing (2b), on which the on/off button (20) is disposed.
- the fairing (2b) top face comprises the interface with the user, comprising a status panel or display with indicator lights (10), namely: (i) green, for on status (10a), (ii) yellow for scanning status (10b) and (iii) red for threats found (10c) and buttons for choosing on-line mode (11a), off-line mode (lib) and decision buttons, namely quarantine button (11c) and cleaning button. (“Clear”) (lid) .
- a sound interface is provided, composed of an amplifier and a sound box (12) .
- the fairing top face (2a) includes a liquid crystal display (T) or the like, used for text alphanumeric communication.
- the portable filter module (2) box provides several types of connectors or inlets (CI) for several models of data transport ( DT) devices, and the main ones are: USB connector (13) for data cables or other device, such as pen-drive (a), connector RJ45 (14), retractable wi- fi antenna (15), micro SD inlet (16), pin connector (17) for battery charger (Bt) cable (Cb' ) , SD / MC / memory stick/duo inlet, Compact Flash, Smart Media (18) and the like, appropriate to any type of media or data transport device (DT) requiring their files (AQ) to be checked for viruses .
- USB connector (13) for data cables or other device, such as pen-drive (a), connector RJ45 (14), retractable wi- fi antenna (15), micro SD inlet (16), pin connector (17) for battery charger (Bt) cable (Cb' ) , SD / MC / memory stick/duo inlet, Compact Flash, Smart Media (18) and the like, appropriate to any type of media or data transport device (DT) requiring their files
- the status display ( 11 ) when connecting the transport device (DT), the status display ( 11 ) is started, and stares informing, on the interface panel ( PF) display (T) if the user wishes to choose using on-line or off-line mode for executing the antiviruses (AV1/AV2), which choice shall be defined by using buttons (11a) and (lib), respecti ely;
- the module (2) connects to a database (BD2) in an Internet server (SI), by means of a network via cable (Cb) or remote connection - wireless - C2/C3 , to start scanning the data transport (DT) device connected to any of the connectors (CI);
- BD2 database
- SI Internet server
- the interface panel (10) warns the user, by means of the yellow indicator or led (10b) , about the scanning status;
- the sound interface (12) is activated, sending a warning signal, while lighting the red indicator or led (10c);
- the interface panel (PF) by means of the display (T) , shows two options for the user to decide: (i) "clean threats / viruses" (V) or (ii) "store in quarantine”; any of the decisions shall be taken by selecting buttons (lie) or (lid);
- the program or software (3) creates, automatically, a file folder in the data transport (DT) device itself, a file self-named as "quarantine”, and also compacts this threat / virus and transfers it to said folder, allowing the user to, on a later time, analyze it in an appropriate computer;
- the sound interface (12) warns about the scanning operation ending via a message on the display (T) and sound effect ,
Abstract
Description
Claims
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/IB2011/052168 WO2012156782A1 (en) | 2011-05-17 | 2011-05-17 | Safety system and portable filter module with several connection means for reading, virus identification and removal from data transport devices and computers in general |
BR112013029431A BR112013029431A2 (en) | 2011-05-17 | 2011-05-17 | security system and portable filter module with various connection means for reading, identifying and removing viruses from data carriers and computers in general. |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/IB2011/052168 WO2012156782A1 (en) | 2011-05-17 | 2011-05-17 | Safety system and portable filter module with several connection means for reading, virus identification and removal from data transport devices and computers in general |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2012156782A1 true WO2012156782A1 (en) | 2012-11-22 |
Family
ID=44356283
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/IB2011/052168 WO2012156782A1 (en) | 2011-05-17 | 2011-05-17 | Safety system and portable filter module with several connection means for reading, virus identification and removal from data transport devices and computers in general |
Country Status (2)
Country | Link |
---|---|
BR (1) | BR112013029431A2 (en) |
WO (1) | WO2012156782A1 (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103220275A (en) * | 2013-03-28 | 2013-07-24 | 东莞宇龙通信科技有限公司 | Mobile terminal, submachine of mobile terminal and work method of submachine |
ES2676740A1 (en) * | 2017-01-24 | 2018-07-24 | Javier BERMUDEZ PEREZ | SECURITY DEVICE, SYSTEM AND ASSOCIATED PROCESS FOR DATA ANALYSIS (Machine-translation by Google Translate, not legally binding) |
CN111147500A (en) * | 2019-12-30 | 2020-05-12 | 国网河南省电力公司南阳供电公司 | Information intranet data transfer equipment and method based on data security processing |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE10218429A1 (en) * | 2002-04-25 | 2003-11-06 | Strothmann Rolf | Computer virus detection system, comprises a security arrangement consisting of a computer, protective software and quarantine means arranged between an external network and a local network or computer |
US20060284632A1 (en) * | 2005-06-15 | 2006-12-21 | Microsoft Corporation | Portable multi-purpose toolkit for testing computing device hardware and software |
US20100011442A1 (en) * | 2008-07-09 | 2010-01-14 | Sumwintek Corp. | Data security device for preventing the spreading of malware |
US7657941B1 (en) * | 2008-12-26 | 2010-02-02 | Kaspersky Lab, Zao | Hardware-based anti-virus system |
FR2949888A1 (en) * | 2009-09-04 | 2011-03-11 | Thales Sa | Device for protecting CPU of computer against e.g. malware, has male port connected to host equipment via interface, and operating system simulating host equipment, where device is received by peripheral equipment as host equipment |
-
2011
- 2011-05-17 WO PCT/IB2011/052168 patent/WO2012156782A1/en active Application Filing
- 2011-05-17 BR BR112013029431A patent/BR112013029431A2/en not_active IP Right Cessation
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE10218429A1 (en) * | 2002-04-25 | 2003-11-06 | Strothmann Rolf | Computer virus detection system, comprises a security arrangement consisting of a computer, protective software and quarantine means arranged between an external network and a local network or computer |
US20060284632A1 (en) * | 2005-06-15 | 2006-12-21 | Microsoft Corporation | Portable multi-purpose toolkit for testing computing device hardware and software |
US20100011442A1 (en) * | 2008-07-09 | 2010-01-14 | Sumwintek Corp. | Data security device for preventing the spreading of malware |
US7657941B1 (en) * | 2008-12-26 | 2010-02-02 | Kaspersky Lab, Zao | Hardware-based anti-virus system |
FR2949888A1 (en) * | 2009-09-04 | 2011-03-11 | Thales Sa | Device for protecting CPU of computer against e.g. malware, has male port connected to host equipment via interface, and operating system simulating host equipment, where device is received by peripheral equipment as host equipment |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103220275A (en) * | 2013-03-28 | 2013-07-24 | 东莞宇龙通信科技有限公司 | Mobile terminal, submachine of mobile terminal and work method of submachine |
ES2676740A1 (en) * | 2017-01-24 | 2018-07-24 | Javier BERMUDEZ PEREZ | SECURITY DEVICE, SYSTEM AND ASSOCIATED PROCESS FOR DATA ANALYSIS (Machine-translation by Google Translate, not legally binding) |
CN111147500A (en) * | 2019-12-30 | 2020-05-12 | 国网河南省电力公司南阳供电公司 | Information intranet data transfer equipment and method based on data security processing |
Also Published As
Publication number | Publication date |
---|---|
BR112013029431A2 (en) | 2017-08-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9307317B2 (en) | Wireless programmable microphone apparatus and system for integrated surveillance system devices | |
CN105531712B (en) | The behavioural analysis based on data flow in mobile device | |
US9225527B1 (en) | Hidden plug-in storage drive for data integrity | |
US20160065908A1 (en) | Portable camera apparatus and system for integrated surveillance system devices | |
EP3113062B1 (en) | System and method of detecting modified or corrupted external devices | |
Bommisetty et al. | Practical mobile forensics | |
US8640233B2 (en) | Environmental imaging | |
EP2946328A1 (en) | System for and a method of cognitive behavior recognition | |
CN103262087A (en) | Signature-independent, system behavior-based malware detection | |
CN101916349A (en) | File access control method based on filter driving, system and filer manager | |
CN101848373A (en) | Wireless video monitoring system and video monitoring method thereof | |
CN105892889A (en) | Fingerprint operation method and terminal device | |
CN108337913A (en) | Fingerprint login method, micro-control unit, fingerprint power supply module and electric terminal | |
CN107729836A (en) | Face identification method and Related product | |
Tamma et al. | Practical Mobile Forensics: Forensically investigate and analyze iOS, Android, and Windows 10 devices | |
WO2012156782A1 (en) | Safety system and portable filter module with several connection means for reading, virus identification and removal from data transport devices and computers in general | |
CN110138780B (en) | Method for realizing Internet of things terminal threat detection based on probe technology | |
US11467644B2 (en) | Systems and methods for detecting battery removal while an information handling system is in an off state | |
CN106156574A (en) | A kind of Information Authentication method, Apparatus and system | |
CN102236610A (en) | Mobile storage equipment and method and intrusion prevention system | |
CN103870378A (en) | Monitoring method for terminal device and terminal device | |
KR100733742B1 (en) | Portable information processing terminal and communication system thereof | |
EP4338076A1 (en) | A computerized charging/interface device with malware detection and backup capabilities | |
CN104484589A (en) | Method for achieving multifunctional fingerprint unlocking on basis of computer software | |
CN106503539A (en) | Smart machine screen-lock password crack method and evidence-obtaining system based on Mobex agreements |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 11731092 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 11731092 Country of ref document: EP Kind code of ref document: A1 |
|
REG | Reference to national code |
Ref country code: BR Ref legal event code: B01A Ref document number: 112013029431 Country of ref document: BR |
|
ENP | Entry into the national phase |
Ref document number: 112013029431 Country of ref document: BR Kind code of ref document: A2 Effective date: 20131114 |