Patent · US Active

Systems and methods for preventing chronic false positives

US9171152B1 · kind B1 · utility

2Cited by

2References

20Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Jeffrey Wilhelm · Los Angeles, US
Joseph Chen · Los Angeles, US

Key dates

Filing date	May 8, 2014
Grant date	Oct 27, 2015
Priority date	—
Expiry date	May 8, 2034

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/554
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer-implemented method for preventing chronic false positives may include (1) whitelisting a file based on a challenge notification that challenges a classification of the file as insecure, (2) obtaining attribute information about the file, (3) identifying, by analyzing the attribute information, a primitive that identifies a source of origin for the file, (4) determining, based on an analysis of files that originate from the source of origin, that the source of origin identified by the primitive is trustworthy, and (5) adjusting, based on the determination that the source of origin identified by the primitive is trustworthy, a security policy associated with the primitive to prevent future false positives for other files that originate from the source of origin. Various other methods, systems, and computer-readable media are also disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.