Patent · US Active

Selecting malware signatures to reduce false-positive detections

US8239948B1 · kind B1 · utility

23Cited by

1References

20Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Kent E. Griffin · Santa Monica, US
Tzi-Cker Chiueh · Taipei, TW
Scott Schneider · Waukesha, US
Xin Hu · White Plains, US

Key dates

Filing date	Dec 19, 2008
Grant date	Aug 7, 2012
Priority date	—
Expiry date	Jan 15, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A set of candidate signatures for a malicious software (malware) is generated. The candidate signatures in the set are scored based on features that indicate the signatures are more unique and thus less likely to generically occur non-malicious programs. A malware signature for the malware entity is selected from among the candidate malware signatures based on the scores. The selected malware signature is stored.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.