Erkennungsmuster
English translation: virus pattern
| GLOSSARY ENTRY (DERIVED FROM QUESTION BELOW) | ||||||
|---|---|---|---|---|---|---|
|
| 14:41 Sep 3, 2009 |
| German to English translations [PRO] Tech/Engineering - Computers: Software | |||||||
|---|---|---|---|---|---|---|---|
|
| ||||||
|  Selected response from: Alison MacG United Kingdom Local time: 02:42 | ||||||
Grading comment
| |||||||
| Summary of answers provided | ||||
|---|---|---|---|---|
| 3 +4 | virus detection algorithm |
| ||
| 4 +1 | matching pattern |
| ||
| 4 | recognition sample |
| ||
| 3 | pattern recognition |
| ||
| 2 | virus pattern |
|
| Discussion entries: 2 | |
|---|---|
Answers
7 mins confidence: 
recognition sample Explanation: which I found confirmed by Google entries -------------------------------------------------- Note added at 8 Min. (2009-09-03 14:50:06 GMT) -------------------------------------------------- The advanced recognition sample demonstrates advanced features of the Microsoft Tablet PC Automation application programming interface (API) used for ... msdn.microsoft.com/en-us/library/ms839542.aspx |
| |
| Login to enter a peer comment (or grade) | ||
9 mins confidence:
pattern recognition Explanation: Executable packing is the most common technique used by computer virus writers to obfuscate malicious code and evade detection by anti-virus software. Universal unpackers have been proposed that can detect and extract encrypted code from packed executables, therefore potentially revealing hidden viruses that can then be detected by traditional signature-based anti-virus software. However, universal unpackers are computationally expensive and scanning large collections of executables looking for virus infections may take several hours or even days. In this paper we apply pattern recognition techniques for fast detection of packed executables. The objective is to efficiently and accurately distinguish between packed and non-packed executables, so that only executables detected as packed will be sent to an universal unpacker, thus saving a significant amount of processing time. We show that our system achieves very high detection accuracy of packed executables with a low average processing time. Reference: http://www.sciencedirect.com/science?_ob=ArticleURL&_udi=B6V... |
| |
| Login to enter a peer comment (or grade) | ||
11 mins confidence: peer agreement (net): +1
peer agreement (net): +1matching pattern Explanation: . -------------------------------------------------- Note added at 13 mins (2009-09-03 14:55:37 GMT) -------------------------------------------------- http://www.informit.com/guides/content.aspx?g=security&seqNu... Another problem with ***pattern matching*** is that with a little less than 400,000 viruses out there, a scanner runs into a resource limitation. Each of those 400k viruses has a ***matching pattern***, which must be compared to each file on the system. Since the typical system has several hundred to several thousand executables in memory, this can be a very processor intense task. -------------------------------------------------- Note added at 19 mins (2009-09-03 15:01:05 GMT) -------------------------------------------------- http://ieeexplore.ieee.org/xpl/freeabs_all.jsp?arnumber=4498... A Fast ***Pattern Matching*** Algorithm for Anti-virus Applications nti-virus applications play an important role in today's Internet communication security. Virus scanning is usually performed on email, Web and file transfer traffic flows at intranet security gateways. The performance of popular anti-virus applications relies on the pattern matching algorithms implemented in these security devices. The growth of network bandwidth and the increase of virus signatures call for high speed and scalable pattern matching algorithms. Motivated by several observations of a real-life virus signature database from Clam-AV, a popular antivirus application, a fast ***pattern matching*** algorithm named MRSI is proposed in this paper. Compared to the current algorithm implemented in Clam-AV, MRSI achieved an 80%~100% faster virus scanning speed without excessive memory usages. -------------------------------------------------- Note added at 24 mins (2009-09-03 15:06:52 GMT) -------------------------------------------------- http://www.avinti.com/downloads/isolation-server-whitepaper.... Virus Signature Systems — Window of Vulnerability Outbreak viruses spread rapidly because no ******matching pattern****** exists Traditional virus scanning systems rely on a database of known virus signatures and cannot detect new or unknown viruses. To protect their systems, network and security administrators must constantly verify that virus signature files are updated. "Outbreak" or "day-zero" viruses infiltrate and infect networks immediately because no matching pattern exists for them in signature databases. These viruses use their anonymity to replicate rapidly and infect hundreds of thousands of machines. Even when using ***pattern-matching*** antivirus systems that automatically search for and update virus definitions ("real-time" pattern scanning), networks are vulnerable to new outbreak viruses. -------------------------------------------------- Note added at 29 mins (2009-09-03 15:11:38 GMT) -------------------------------------------------- http://www.derkeiler.com/Newsgroups/microsoft.public.win2000... Re: Norton AntiVirus Version Number Deception? Trend Micro has a great free stand alone tool > called >> Sysclean that finds and removes a LOT of common malwares. You don't > have to >> install it. Just download it and the ****matching pattern*** file to a > common >> folder to run from. I hope it helps! |
| |
| Login to enter a peer comment (or grade) | ||
34 mins confidence: peer agreement (net): +4
peer agreement (net): +4virus detection algorithm Explanation: ... due to the installed virus scanner's outdated detection algorithms ... |
| |
