Patent · US Active

Methods and systems for identifying potential enterprise software threats based on visual and non-visual data

US10235519B2 · kind B2 · utility

1Cited by

5References

16Claims

0Family size

Assignee

Carbon Black, Inc. · US

Inventors

Jeffrey J. Guy · Austin, US
Mark Gilbert · San Francisco, US

Key dates

Filing date	Oct 27, 2015
Grant date	Mar 19, 2019
Priority date	—
Expiry date	Dec 17, 2036

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Visual and non-visual elements associated with the candidate files are analyzed to determine whether the candidate files are malware. A visual element (e.g., icon) is extracted from the candidate file, and the icon's image is compared to a group of reference images associated with trusted entities. If the icon's image matches a reference image, the candidate file may be malware masquerading as trusted software. The non-visual elements associated with the candidate file are used, in combination with the visual elements, to determine whether the candidate file is malware.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.