Patenton — panteon of patents

(19)

RU

(11)

2 634 205

(13)

C2

(51)

IPC

G06F21/53(2013-01-01)

G06F21/56(2013-01-01)

G06F9/455(2006-01-01)

(21) (22)

Application

2016103212, 2014-07-02

(24)

Start date

2014-07-02

(22)

Actual filing date

2014-07-02

(45)

Published

2017-10-24

(72)

Inventor

Lukaks SandorTosha Raul-VasileBoka Paul-DanielKhazhmashan George-FlorinLutsas Andrej-Vlad

(73)

Holder

Bitdefender Ajpiar Menedzhment Ltd

EVALUATION OF PROCESS OF MALWARE DETECTION IN VIRTUAL MACHINES Russian patent published in 2017 - IPC G06F21/53 G06F21/56 G06F9/455 

Abstract RU 2634205 C2

FIELD: information technology.

SUBSTANCE: described systems and methods provide the ability to protect the computer system against malware, in particular against viruses and rootkits. The anti-malware component runs inside the virtual machine (VM) provided by the hypervisor. The memory self-analysis module is executed outside the virtual machine at the hypervisor level of the processor privilege and protects the process running inside the virtual machine by protecting memory page of the corresponding process against writing. By combining the anti-malware components running inside and outside the corresponding VM, some embodiments of the invention can use a variety of behaviour data that components within the VM have access to while ensuring the integrity of these components outside the corresponding VM.

EFFECT: placement of a component that detects process startups outside the corresponding virtual machine to a higher level of processor privileges than the operating system privilege level, which allows to prevent malware from hiding from the anti-malware components.

21 cl, 11 dwg

Similar patents RU2634205C2

Title Year Author Number
PAGE ERROR INSERTION IN VIRTUAL MACHINES 2014
  • Lutsas Andrej-Vlad
 RU2659472C2
COMPLEX CLASSIFICATION FOR DETECTING MALWARE 2014
  • Lukaks Sandor
  • Tosha Raul-Vasile
  • Boka Paul-Daniel
  • Khazhmashan George-Florin
  • Lutsas Andrej-Vlad
 RU2645268C2
MEMORY INTROSPECTION ENGINE FOR PROTECTING INTEGRITY OF VIRTUAL MACHINES 2014
  • Lutsas Andrej-Vlad
  • Lukaks Sandor
  • Lutsas Dan-Khorya
 RU2640300C2
SYSTEMS AND METHODS FOR PRESENTING A RESULT OF A CURRENT PROCESSOR INSTRUCTION WHEN EXITING FROM A VIRTUAL MACHINE 2015
  • Lukaks Sandor
  • Lutas Andrej-Vlad
 RU2686552C2
COMPUTER SECURITY SYSTEMS AND METHODS USING ASYNCHRONOUS INTROSPECTION EXCEPTIONS 2016
  • Lukaks Sandor
  • Sirb Kristyan-Bogdan
  • Lutas Andrej-Vlad
 RU2703156C2
DOUBLE SELF-TEST OF MEMORY FOR PROTECTION OF MULTIPLE NETWORK ENDPOINTS 2016
  • Lutas Dan-Horea
  • Lukacs Sandor
  • Ticle Daniel-Ioan
  • Ciocas Radu-Ioan
  • Anichitei Ionel-Cristinel
 RU2714607C2
SYSTEM AND METHODS FOR DECRYPTING NETWORK TRAFFIC IN A VIRTUALIZED ENVIRONMENT 2017
  • Caragea Radu
 RU2738021C2
EVENT FILTERING FOR SECURITY APPLICATIONS OF VIRTUAL MACHINES 2017
  • Lutas Andrei-Vlad
 RU2723668C1
SYSTEM AND METHODS FOR AUDITING A VIRTUAL MACHINE 2017
  • Lukacs Sandor
  • Lutas Andrei-Vlad
  • Anichitei Ionel C.
 RU2691187C1
ATTESTATION OF HOST CONTAINING TRUSTED EXECUTION ENVIRONMENT 2015
  • Fergyuson Nils T.
  • Samsonov Evgenij Anatolevich
  • Kinskhumann
  • Chandrashekar Samartkha
  • Messek Dzhon Entoni
  • Novak Mark Fishel
  • Makkarron Kristofer
  • Temkhejn Amitabkh Prakash
  • Van Tsyan
  • Krus Devid Mettyu
  • Ben-Zvi Nir
  • Vinberg Anders Bertil
 RU2679721C2

RU 2 634 205 C2

Authors

Lukaks Sandor

Tosha Raul-Vasile

Boka Paul-Daniel

Khazhmashan George-Florin

Lutsas Andrej-Vlad

Dates

2017-10-24Published

2014-07-02Filed

download Download PDF read Similar patents