Patent · US Active

Software classification using phylogenetic techniques

US10783247B1 · kind B1 · utility

6Cited by

6References

16Claims

0Family size

Assignee

Triad National Security, LLC · US

Inventors

Shannon Steinfadt · Los Alamos, US
Taina Immonen · Frederick, US
Thomas Leitner · Dortmund, DE
Michael Kyle · Boulder, US

Key dates

Filing date	Dec 14, 2017
Grant date	Sep 22, 2020
Priority date	—
Expiry date	Oct 17, 2038

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Software, such as malware, may be classified using phylogenetic techniques. An evolutionary history of a representative set of software programs may be reconstructed to generate a reference phylogeny. Dynamic traces of the representative software programs may be obtained. The dynamic traces may include time-ordered sequences of execution commands extracted from running software binaries. Metrics may be developed using the dynamic traces. One or more unknown software programs may then be classified against the reference phylogeny using the metrics developed using the dynamic traces of the representative set of software programs.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.