Show metadata Hide metadata

(19)

(11)

2 568 285

(13)

(51)

IPC

G06F21/56(2013-01-01)

G06F11/36(2006-01-01)

(21) (22)

Application

2013143770/08, 2013-09-30

(24)

Start date

2013-09-30

(22)

Actual filing date

2013-09-30

(45)

Published

2015-11-20

(72)

Inventor

Romanenko Aleksej MikhajlovichTolstikhin Il'Ja OlegovichProkudin Sergej Viktorovich

(73)

Holder

Zakrytoe Aktsionernoe Obshchestvo Kasperskogo"

METHOD AND SYSTEM FOR ANALYSING OPERATION OF SOFTWARE DETECTION RULES Russian patent published in 2015 - IPC G06F21/56 G06F11/36

Abstract RU 2568285 C2

FIELD: information technology.

SUBSTANCE: method of declaring file detection rules reliable, which includes selecting, from a set of existing files, a subset of known files; dividing the selected subset of known files into subsets of safe and harmful files; creating a file detection rule based on at least one known file from the subset of harmful files; checking unknown files from the set of existing files; declaring the detection rule reliable if the degree of similarity of neither one of the selected unknown files with known files from the subset of safe files does not exceed a set similarity threshold and the degree of similarity of selected unknown files with at least one file from the subset of harmful files exceeds the set similarity threshold.

EFFECT: fewer cases of false triggering of file detection rules.

2 cl, 5 dwg

Similar patents RU2568285C2

Title	Year	Author	Number
SYSTEM AND METHOD FOR EVALUATION OF RELIABILITY OF CATEGORISATION RULES	2013	Antonov Aleksej Evgenevich Romanenko Aleksej Mikhajlovich	RU2587429C2
SYSTEM AND METHOD OF INCREASING EFFICIENCY OF DETECTING UNKNOWN HARMFUL OBJECTS	2010	Mashevskij Jurij Vjacheslavovich Vasilenko Roman Sergeevich	RU2454714C1
SYSTEM AND METHOD OF MAKING FLEXIBLE CONVOLUTION FOR MALWARE DETECTION	2013	Antonov Aleksej Evgenevich Romanenko Aleksej Mikhajlovich	RU2580036C2
SYSTEM AND METHOD OF SIMILAR FILES DETERMINING	2015	Antonov Aleksej Evgenevich Romanenko Aleksej Mikhajlovich	RU2614561C1
SYSTEM AND METHOD FOR TWO-STAGE CLASSIFICATION OF FILES	2018	Romanenko Aleksej Mikhajlovich Prokudin Sergej Viktorovich Liskin Aleksandr Viktorovich	RU2708356C1
SYSTEM AND METHOD OF DETECTING DIRECTED ATTACK ON CORPORATE INFRASTRUCTURE	2013	Polyakov Aleksej Aleksandrovich Sapronov Konstantin Vladimirovich	RU2587426C2
SYSTEM AND METHOD OF REDUCING NUMBER OF FALSE TRIGGERING OF CLASSIFICATION ALGORITHMS	2018	Prokudin Sergej Viktorovich Chistyakov Aleksandr Sergeevich Romanenko Aleksej Mikhajlovich	RU2706883C1
METHOD FOR AUTOMATIC GENERATION OF HEURISTIC ALGORITHMS FOR SEARCHING FOR MALICIOUS OBJECTS	2012	Zajtsev Oleg Vladimirovich	RU2510530C1
SYSTEM AND METHOD OF DETERMINING UNKNOWN STATUS APPLICATION	2014	Filatov Konstantin Mikhajlovich Inozemtseva Olga Olegovna Jablokov Viktor Vladimirovich	RU2580053C2
SYSTEM AND METHOD OF CREATING ANTIVIRUS RECORD	2018	Gordejchik Sergej Vladimirovich Soldatov Sergej Vladimirovich Sapronov Konstantin Vladimirovich	RU2697954C2

RU 2 568 285 C2

Authors

Romanenko Aleksej Mikhajlovich

Tolstikhin Il'Ja Olegovich

Prokudin Sergej Viktorovich

Dates

2015-11-20—Published

2013-09-30—Filed