Patent · US Active

Method for mitigating false positive generation in antivirus software

US8087086B1 · kind B1 · utility

296Cited by

1References

18Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Everett Lai · Monterey, US
Patrick Gardner · Cumming, US
John Meade · Marblehead, US

Key dates

Filing date	Jun 30, 2008
Grant date	Dec 27, 2011
Priority date	—
Expiry date	Jul 19, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/56
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method for mitigating false-positives as detected by antivirus software comprising accessing an operating system file that has been identified as malware; creating a signature for the operating system file; comparing the created signature to a signature database; and, if the created signature is not found in the signature database, defining the operating system file as malware. An operating system file, as used herein, is any file included as a part of the operating system binary executable file set, as well as any files added from third party vendors that integrate with or plug into the operating system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.