Method, server and system for detecting safety of file sample

A technology for detecting files and security, applied in the field of network security, can solve the problems of missing malicious programs, consuming a lot of time, and the speed of correction cannot keep up with the speed of virus variants, etc., to facilitate rule changes, save changing time, and avoid missed judgments The effect of malicious programs

Active Publication Date: 2013-06-12
BEIJING QIHOO TECH CO LTD
View PDF2 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] In view of the above problems, the present invention is proposed to provide a method, server and system for detecting the security of file samples, to solve the problem that it takes a lot of time to correct the rules, and the correction speed cannot keep up with the mutation speed of the virus, which leads to the omission of malicious programs in the detection. The problem

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, server and system for detecting safety of file sample
  • Method, server and system for detecting safety of file sample
  • Method, server and system for detecting safety of file sample

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0086] Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

[0087] see figure 1 , a structural diagram of a server for detecting file sample security in an embodiment. The server 100 includes: a compiler 110 , a parser 120 and a matcher 130 .

[0088] Wherein, the compiler 110, the parser 120, and the matcher 130 may be located in the same physical device, or may be located in different physical devices, and there is no special limitation here.

[0089] The compiler 110 is adapted to set ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method, a server and a system for detecting the safety of a file sample. The method comprises the following step of configuring rule description of rules to generate a source file containing each rule description; analyzing each rule from the source file, and constructing a rule management interface according to the configured rule organism structure by utilizing each analyzed rule, wherein the rule management interface comprises a plurality of matching rules; and receiving characteristics of an inputted file sample, matching and comparing the characteristics of the file sample with the matching rules through the rule management interface, and returning a matching result to a client so that the client determines the safety of the file sample according to the matching result. The method, the server and the system for detecting the safety of the file sample, disclosed by the invention, can solve a problem that rogue programs are leaked in judgment during detection generated by the fact that the change of rules for the detection is difficult and wastes too much time, and the change speed of the rules can not follow up the variation speed of the virus in the prior art.

Description

technical field [0001] The invention relates to the field of network security, in particular to a method, server and system for detecting the security of file samples. Background technique [0002] In the prior art, in order to quickly identify and eliminate malicious programs in the terminal, cloud security technology is used. Among them, the characteristics of the suspicious file samples in the terminal are transmitted to the server of the cloud security center, and the server makes a judgment on the security of the file samples according to the characteristics of the file samples, and then the terminal performs the security check according to the information sent back by the server of the cloud security center. Kill reporting and processing. [0003] The characteristics of the file sample include: file MD5 (the fifth edition of the message digest algorithm), SHA1 (secure hash algorithm), path, size, execution process, DNA (characteristic information of the file) and othe...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/26
Inventor 魏自立王志超
Owner BEIJING QIHOO TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap