专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20140059684A1 SYSTEM AND METHOD FOR COMPUTER INSPECTION OF INFORMATION OBJECTS FOR SHARED MALWARE COMPONENTS 有权
标题翻译：计算机检查共享的恶意软件组件的信息对象的系统和方法
公开(公告)号：US20140059684A1
公开(公告)日：2014-02-27
申请号：US13592596
申请日：2012-08-23
申请人： Daniel Wyschogrod , Steven W. Jilcott , Jonathan Aron Rubin , John O. Everett
发明人： Daniel Wyschogrod , Steven W. Jilcott , Jonathan Aron Rubin , John O. Everett
IPC分类号： G06F21/00
CPC分类号： G06F21/562
摘要： Embodiments of a system and method for computer inspection of information objects, for example, executable software applications for common components that may include elements of computer viruses, items from hacker exploit libraries, or other malware components. Information objects may contain identified sequences of instructions, each of which may be identified and hierarchically grouped based on their structural relationship(s). In the software context, programming languages may include multiple components that include functional code; these components are often shared between programmers. In some embodiments, an inspection of the hierarchical relationship of components (e.g., constituent functions) in the information objects may allow for identification of common components shared between programs. In some embodiments, authorship of objects or components in the objects may be identified by comparisons between component samples. In some embodiments, inspection of the relationship between components is limited to component groups having a specified structural size, complexity, or eccentricity.
摘要翻译：用于信息对象的计算机检查的系统和方法的实施例，例如可以包括计算机病毒的元件的常规组件的可执行软件应用，来自黑客利用库的项目或其他恶意软件组件。信息对象可以包含指定的指令序列，每个指令可以基于它们的结构关系被识别和分层分组。在软件环境中，编程语言可以包括包括功能代码的多个组件; 这些组件通常在程序员之间共享。在一些实施例中，对信息对象中的组件（例如，组成功能）的分级关系的检查可以允许识别程序之间共享的公共组件。在一些实施例中，可以通过组件样本之间的比较来识别对象中的对象或组件的作者身份。在一些实施例中，组件之间的关系的检查限于具有特定结构尺寸，复杂性或偏心度的组件组。

2. 发明授权

US08931092B2 System and method for computer inspection of information objects for shared malware components 有权
标题翻译：计算机检查用于共享恶意软件组件的信息对象的系统和方法
公开(公告)号：US08931092B2
公开(公告)日：2015-01-06
申请号：US13592596
申请日：2012-08-23
申请人： Daniel Wyschogrod , Steven W. Jilcott , Jonathan Aron Rubin , John O. Everett
发明人： Daniel Wyschogrod , Steven W. Jilcott , Jonathan Aron Rubin , John O. Everett
IPC分类号： G06F21/56
CPC分类号： G06F21/562
摘要： Embodiments of a system and method for computer inspection of information objects, for example, executable software applications for common components that may include elements of computer viruses, items from hacker exploit libraries, or other malware components. Information objects may contain identified sequences of instructions, each of which may be identified and hierarchically grouped based on their structural relationship(s). In the software context, programming languages may include multiple components that include functional code; these components are often shared between programmers. In some embodiments, an inspection of the hierarchical relationship of components (e.g., constituent functions) in the information objects may allow for identification of common components shared between programs. In some embodiments, authorship of objects or components in the objects may be identified by comparisons between component samples. In some embodiments, inspection of the relationship between components is limited to component groups having a specified structural size, complexity, or eccentricity.
摘要翻译：用于信息对象的计算机检查的系统和方法的实施例，例如可以包括计算机病毒的元件的常规组件的可执行软件应用，来自黑客利用库的项目或其他恶意软件组件。信息对象可以包含指定的指令序列，每个指令可以基于它们的结构关系被识别和分层分组。在软件环境中，编程语言可以包括包括功能代码的多个组件; 这些组件通常在程序员之间共享。在一些实施例中，对信息对象中的组件（例如，组成功能）的分级关系的检查可以允许识别程序之间共享的公共组件。在一些实施例中，可以通过组件样本之间的比较来识别对象中的对象或组件的作者身份。在一些实施例中，组件之间的关系的检查限于具有特定结构尺寸，复杂性或偏心度的组件组。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式