| 发明名称 | Dynamically remote tuning of a malware content detection system | ||
| 摘要 | According to one embodiment, an apparatus comprises a processor and memory. Communicatively coupled to the processor, the memory comprises one or more detection modules each being software that is configurable to enable, disable or modify capabilities for that corresponding detection module. A first detection module the detection modules, when executed by the processor, conducts a first capability including an analysis of a received object to determine if the received object is associated with a malicious attack. The analysis may be altered upon receipt of a configuration file that is substantially lesser in size than the software forming the first detection module and includes information to alter one or more rules controlling the first capability. | ||
| 申请公布号 | US9223972(B1) | 申请公布日期 | 2015.12.29 |
| 申请号 | US201414231216 | 申请日期 | 2014.03.31 |
| 申请人 | FireEye, Inc. | 发明人 | Vincent Michael;Thioux Emmanuel;Vashisht Sai;Kindlund Darien |
| 分类号 | G06F21/00;G06F21/56 | 主分类号 | G06F21/00 |
| 代理机构 | Rutan & Tucker LLP | 代理人 | Rutan & Tucker LLP ;Schaal William W. |
| 主权项 | 1. An apparatus comprising: a processor; and a memory communicatively coupled to the processor, the memory comprises one or more detection modules each being software that is configurable to enable, disable or modify capabilities for that corresponding detection module, a first detection module of the one or more detection modules, when executed by the processor, conducts a first capability including an analysis of a received object to determine if the received object is associated with a malicious attack, wherein the analysis is altered upon receipt of a configuration file that is substantially lesser in size than the software forming the first detection module and includes information to alter one or more rules controlling the first capability. | ||
| 地址 | Milpitas CA US | ||