System and method for malware detection in a distributed network of computer nodes
US9332029B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Dec 24, 2014 |
| Grant date | May 3, 2016 |
| Priority date | — |
| Expiry date | Dec 24, 2034 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/568
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Disclosed are system and method of distributed detection of malware. An example system includes a security client deployed on a computer node. The security client is operable to identify and communicate with similar security clients deployed on other computer nodes located in a local or remote computer networks. The security client is configured to: perform a malware analysis of files on the computer node; identify unknown files; collect information and statistics data about the unknown file; transmit to other computer nodes a request for identification about the unknown file; receive from at least one other computer node a response containing the identification of the unknown file as a malicious file and a malware remediation tool, wherein the remediation tool includes information, statistics data and malware repair or removal instructions for the malicious file; and use the received malware remediation tool to repair or remove the malicious file.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.