The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 10318731 B1

Date of Patent:

Jun. 11, 2019

Filed:

Dec. 05, 2016

Detection system and detection method

Applicant:

Institute for Information Industry, Taipei, TW;

Inventors:

Jian-Wei Liao, Taipei, TW;

Chin-Wei Tien, Taipei, TW;

Shun-Chieh Chang, Taipei, TW;

Assignee:

INSTITUTE FOR INFORMATION INDUSTRY, Taipei, TW;

Attorney:

CKC & Partners Co., LLC

Primary Examiner:

Daniel B Potratz

Int. Cl.

CPC ...

G06F 21/55 (2013.01); H04L 12/26 (2006.01); G06F 21/56 (2013.01);

U.S. Cl.

CPC ...

G06F 21/566 (2013.01); G06F 21/552 (2013.01); H04L 43/16 (2013.01); G06F 21/55 (2013.01); G06F 2221/033 (2013.01);

Abstract

A detection method comprising: (A) transmitting a to-be tested file to a first testing machine by the processing device; wherein the first testing machine uses for executing the to-be tested file; (B) monitoring that whether a component usage of the first testing machine is higher than a default threshold during a period of executing the to-be tested file by the processing device; and (C) when the component usage of the first testing machine is higher than the default threshold, the memory forensics module analyzes the memory space of the first testing machine to determine that whether the to-be tested file comprises a malware program and generate an analyzing result.

Find Patent Forward Citations