Patenton — panteon of patents

(19)

RU

(11)

2 607 231

(13)

C2

(51)

IPC

G06F21/56(2013-01-01)

(21) (22)

Application

2014121249, 2012-09-05

(24)

Start date

2012-09-05

(22)

Actual filing date

2012-09-05

(45)

Published

2017-01-10

(72)

Inventor

Tofan I. VladDudya V. SorinKanzha D. Vorel

(73)

Holder

Bitdefender Ajpiar Menedzhment Ltd

FUZZY WHITELISTING ANTI-MALWARE SYSTEMS AND METHODS Russian patent published in 2017 - IPC G06F21/56 

Abstract RU 2607231 C2

FIELD: computer safety.

SUBSTANCE: invention relates to computer security. Disclosed is a method comprising, in response to a tentative determination that a target object is suspected of being malicious, generating at a client computer system a plurality of target hashes of target object, each target hash representing a distinct code block of target object, comprising a sequence of processor instructions; sending a plurality of target hashes to a server; receiving from server computer system a server-side indicator of whether target object is malicious, wherein server-side indicator is generated by retrieving a plurality of reference hashes of a reference object for at least a target hash of plurality of target hashes, wherein reference object is selected from a set of whitelisted objects according to target hash, when plurality of target hashes is not identical to plurality of reference hashes, determining a similarity score according to a count of hashes common to both plurality of target hashes and plurality of reference hashes; and when similarity score exceeds a predetermined threshold, designating target object as non-malicious.

EFFECT: technical result consists in improvement of efficiency of whitelisting, without reduction of data security.

30 cl, 11 dwg

Similar patents RU2607231C2

Title Year Author Number
SYSTEM AND METHOD FOR CHECKING WEB RESOURCES FOR PRESENCE OF HARMFUL INSERTS 2017
  • Rabinovich Ilya Samuilovich
 RU2662391C1
DYNAMIC REPUTATION INDICATOR FOR OPTIMIZATION OF COMPUTER SECURITY OPERATIONS 2017
  • Hajmasan Gheorghe-Florin
  • Mondoc Alexandra
  • Portase Radu-Marian
 RU2723665C1
SYSTEMS AND METHODS FOR USING A REPUTATION INDICATOR TO FACILITATE MALWARE SCANNING 2014
  • Mirchesku Danel-Aleksandru
 RU2646352C2
CASCADE CLASSIFIER FOR THE COMPUTER SECURITY APPLICATIONS 2016
  • Gavrilut Dragos-Teodor
  • Vatamanu Cristina
  • Cosovan Doina
  • Luchian Henri
 RU2680738C1
SYSTEMS AND METHODS FOR USING DNS MESSAGES FOR SELECTIVE COLLECTION OF COMPUTER FORENSIC DATA 2020
  • Mircescu Daniel-Alexandru
 RU2776349C1
DOUBLE SELF-TEST OF MEMORY FOR PROTECTION OF MULTIPLE NETWORK ENDPOINTS 2016
  • Lutas Dan-Horea
  • Lukacs Sandor
  • Ticle Daniel-Ioan
  • Ciocas Radu-Ioan
  • Anichitei Ionel-Cristinel
 RU2714607C2
SYSTEM AND METHODS FOR AUDITING A VIRTUAL MACHINE 2017
  • Lukacs Sandor
  • Lutas Andrei-Vlad
  • Anichitei Ionel C.
 RU2691187C1
METHOD AND APPARATUS FOR DETECTING VIRUSES IN FILE SYSTEM 2010
  • Niemelja Jarno
  • Kharmonen Timo
  • Zirval'D Jorn
  • Stokhlberg Mika
 RU2551820C2
ASSESSMENT OF FILE REPUTATION 2015
  • Sim, Robert Alexander
  • Seifert, Christian
  • Penta, Anthony
  • Haber, Elliott Jeb
  • Kasperkiewicz, Tomasz
 RU2690759C2
SYSTEMS AND METHODS OF MONITORING MALWARE BEHAVIOR TO MULTIPLE OBJECTS OF SOFTWARE 2016
  • Khazhmasan George-Florin
  • Portase Radu-Maryan
 RU2683152C1

RU 2 607 231 C2

Authors

Tofan I. Vlad

Dudya V. Sorin

Kanzha D. Vorel

Dates

2017-01-10Published

2012-09-05Filed

download Download PDF read Similar patents