公开(公告)号：US10291633B1

公开(公告)日：2019-05-14

申请号：US15330591

申请日：2016-10-18

Applicant: U.S. Army Research Laboratory ATTN: RDRL-LOC-I

Inventor： Richard E Harang ,  Lisa M Marvel ,  Travis W Parker

IPC: H04L29/06 ,  H04L29/08 ,  H04W84/18

Abstract: A malware detection system comprising a signature generator for combining malware signatures into a malware signature filter with a fixed false positive rate; a central location configured to send the malware signature filter to each of a plurality of hosts that are configured to scan files on the host system using the malware signature filter; each host configured such that if the scan indicates a positive result, the file is quarantined and the host sends identification back to central location if a false positive result is obtained for additional instruction. A method for malware detection operative to combine malware signatures into a filter with fixed false positive rate; comprising sending a malware signature filter to hosts for scanning of files on the host system and incoming data; if the malware signature filter returns a positive alert, identification is sent back to a central location.