Invention Grant
US09386024B1 System and method for detecting modified or corrupted external devices
有权
用于检测修改或损坏的外部设备的系统和方法
- Patent Title: System and method for detecting modified or corrupted external devices
- Patent Title (中): 用于检测修改或损坏的外部设备的系统和方法
-
Application No.: US14855442Application Date: 2015-09-16
-
Publication No.: US09386024B1Publication Date: 2016-07-05
- Inventor: Oleg V. Zaitsev , Olga E. Domke , Konstantin Y. Manurin , Mikhail A. Levinsky
- Applicant: Kaspersky Lab AO
- Applicant Address: RU Moscow
- Assignee: AO Kaspersky Lab
- Current Assignee: AO Kaspersky Lab
- Current Assignee Address: RU Moscow
- Agency: Arent Fox LLP
- Agent Michael Fainberg
- Priority: RU2015125967 20150630
- Main IPC: H04L9/00
- IPC: H04L9/00 ; G06F11/00 ; H04L29/06
Abstract:
Disclosed are systems and methods for detecting modified or corrupted external devices connected to a computer system. An exemplary method includes storing in a database, data that relates to devices previously connected to the computer system and rules that specify conditions that indicate when the device should be further analyzed as being possibly corrupted. The method further includes receiving from the device data that relates to the device or to a connection between the device and the computer system; performing an analysis of the received data by comparing the received data and the stored data relating to devices previously connected to the computer system; and applying results of the analysis of the received data to the rules to determine whether the at least one condition is satisfied that indicates that the device is possibly modified or corrupted and should be further analyzed for presence of malware.
Information query
