Cross-platform detection method and system for malicious files in cloud environment

A technology for malicious files and detection methods, which is applied to cross-platform detection in the cloud environment of malicious files, and the field of malicious file detection. Effects of processing efficiency, increased versatility and automation
CN103559441AActive Publication Date: 2014-02-05INST OF INFORMATION ENG CHINESE ACAD OF SCI
3 Cites 28 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
INST OF INFORMATION ENG CHINESE ACAD OF SCI
Publication Date
2014-02-05

Smart Images

  • Figure 1
    Figure 1
Patent Text Reader

Abstract

The invention relates to a cross-platform detection method and system for malicious files in a cloud environment. The detection method includes the steps: 1) acquiring original suspicious malicious files, storing the original suspicious malicious files in a distributed storage cluster in the cloud environment and isolating the malicious files; 2) manufacturing file copies of the malicious files, recognizing formats of the filename extension of the file copy of each malicious file and uploading the recognized file copy of each malicious file to a WEB end; 3) only downloading the copies of the malicious files from the WEB end according to different operating system types to security sandbox virtual machines corresponding to respective systems, and detecting characteristics and / or running behaviors of the malicious files; 4) submitting and summarizing detection results of the malicious files in the security sandbox virtual machines, associating the detection results with the original malicious files and then detecting cross-platform malicious files. Universality and automation degree of malicious file detection are improved, the malicious files can be preprocessed in batch by the aid of cloud platform technology, and the processing efficiency of malicious file detection is greatly improved.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to a malicious file detection method and system, in particular to a malicious file cloud environment cross-platform detection method and system, belonging to the field of computer network security. Background technique

[0002] Malicious files, also known as malicious code and malware, usually refer to software that is installed and run on the user's computer or other terminals (such as smartphones) without explicitly prompting the user or without the user's permission, damaging the system and stealing user information document. Typical malicious files include viruses, Trojan horses, worms, remote control software, keylogger software, JS scripts for hanging horses, webshell backdoors, mobile phone call monitoring, address book theft, rogue software, and so on.

[0003] The detection and analysis of malicious files is an indispensable part of security research and security product development, which is of great significance. Trad...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More