Invention Grant
- Patent Title: Endpoint malware detection using an event graph
-
Application No.: US15924449Application Date: 2018-03-19
-
Publication No.: US10417418B2Publication Date: 2019-09-17
- Inventor: Beata Ladnai , Mark David Harris , Andrew J. Thomas , Andrew G. P. Smith , Russell Humphries
- Applicant: Sophos Limited
- Applicant Address: GB Abingdon
- Assignee: Sophos Limited
- Current Assignee: Sophos Limited
- Current Assignee Address: GB Abingdon
- Agency: Strategic Patents, P.C.
- Priority: GB1610609.8 20160617; GB1611301.1 20160629
- Main IPC: G06F21/56
- IPC: G06F21/56 ; G06F21/55 ; G06F8/65
Abstract:
A data recorder stores endpoint activity on an ongoing basis as sequences of events that causally relate computer objects such as processes and files, and patterns within this event graph can be used to detect the presence of malware on the endpoint. The underlying recording process may be dynamically adjusted in order to vary the amount and location of recording as the security state of the endpoint changes over time.
Public/Granted literature
- US20180276379A1 ENDPOINT MALWARE DETECTION USING AN EVENT GRAPH Public/Granted day:2018-09-27
Information query
