发明名称 |
SYSTEM AND METHOD FOR GENERATING RULES FOR DETECTING MODIFIED OR CORRUPTED EXTERNAL DEVICES |
摘要 |
Disclosed are systems and methods for generating rules for detecting modified or corrupted external devices connected to a computer system. An exemplary method includes analyzing data associated with the external device connected to the computer system based on stored data associated with one or more other devices; identifying at least one anomaly associated with the analyzed data that indicates the detected external device is modified or corrupted; generating at least one rule in response to the identified anomaly, wherein the at least one rule is based on the external device; and storing the at least one rule in a database accessible to the computer system. |
申请公布号 |
US2017004304(A1) |
申请公布日期 |
2017.01.05 |
申请号 |
US201615165422 |
申请日期 |
2016.05.26 |
申请人 |
AO Kaspersky Lab |
发明人 |
Zaitsev Oleg V.;Domke Olga E.;Manurin Konstantin Y.;Levinsky Mikhail A. |
分类号 |
G06F21/56 |
主分类号 |
G06F21/56 |
代理机构 |
|
代理人 |
|
主权项 |
1. A method for analyzing a device connected to a computer system, the method comprising:
analyzing data associated with the external device connected to the computer system based on stored data associated with one or more other devices; identifying at least one anomaly associated with the analyzed data that indicates the detected external device is modified or corrupted; generating at least one rule in response to the identified anomaly, wherein the at least one rule is based on the external device; and storing the at least one rule in a database accessible to the computer system. |
地址 |
Moscow RU |