Invention Grant
- Patent Title: Cluster anomaly detection using function interposition
-
Application No.: US14497523Application Date: 2014-09-26
-
Publication No.: US09773110B2Publication Date: 2017-09-26
- Inventor: Antonio C. Valles , Vincent J. Zimmer
- Applicant: Intel Corporation
- Applicant Address: US CA Santa Clara
- Assignee: Intel Corporation
- Current Assignee: Intel Corporation
- Current Assignee Address: US CA Santa Clara
- Agency: Jordan IP Law, LLC
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F21/55
Abstract:
Systems and methods may provide for identifying a runtime behavioral pattern of an application and detecting an anomaly in the runtime behavioral pattern. In addition, a security event may be triggered in response to the anomaly. In one example, the anomaly is detected with regard to one or more of a library call count, a library call type, a library call argument configuration or a library call timing associated with a runtime operation of the application.
Public/Granted literature
- US20160092681A1 CLUSTER ANOMALY DETECTION USING FUNCTION INTERPOSITION Public/Granted day:2016-03-31
Information query
