Rootkit detection by using hardware resources to detect inconsistencies in network traffic

Invention Grant

US09680849B2 Rootkit detection by using hardware resources to detect inconsistencies in network traffic 有权

Please log in to see more content

Patent Title: Rootkit detection by using hardware resources to detect inconsistencies in network traffic
Application No.: US14930058

Application Date: 2015-11-02
Publication No.: US09680849B2

Publication Date: 2017-06-13
Inventor: Omer Ben-Shalom , Alex Nayshtut , Igor Muttik
Applicant: McAfee, Inc.
Applicant Address: US CA Santa Clara
Assignee: McAfee, Inc.
Current Assignee: McAfee, Inc.
Current Assignee Address: US CA Santa Clara
Agency: Blank Rome, LLP
Main IPC: H04L29/00
IPC: H04L29/00 ; H04L29/06 ; G06F21/55 ; G06F21/50

Rootkit detection by using hardware resources to detect inconsistencies in network traffic

Abstract:

A technique allows detection of covert malware that attempts to hide network traffic. By monitoring network traffic both in a secure trusted environment and in an operating system environment, then comparing the monitor data, attempts to hide network traffic can be detected, allowing the possibility of performing rehabilitative actions on the computer system to locate and remove the malware hiding the network traffic.

Public/Granted literature

US20160173512A1 ROOTKIT DETECTION BY USING HARDWARE RESOURCES TO DETECT INCONSISTENCIES IN NETWORK TRAFFIC Public/Granted day:2016-06-16

Information query

Espacenet