ACTIVE DISABLEMENT OF MALICIOUS CODE IN ASSOCIATION WITH THE PROVISION OF ON-LINE FINANCIAL SERVICES

US 20050137980A1
Filed: 12/17/2003
Published: 06/23/2005
Est. Priority Date: 12/17/2003
Status: Abandoned Application

First Claim

Patent Images

1. A method of disabling malicious code residing on a customer computer system in association with providing on-line financial services to a customer through a network, the method comprising:

authenticating the customer for the on-line financial services;

presenting to the customer an option to perform a scan of the customer computer system for the malicious code;

executing, at least in part by activation over the network and upon receiving from the customer a selection of the option to perform the scan, computer program instructions for performing the scan, the computer program instructions being directed to detection and disablement of the malicious code; and

providing the on-line financial services to the customer.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Active disablement of malicious code in association with the provision of on-line financial services. The invention provides for the active detection and disablement of malicious code residing on a customer computer system used for conducting on-line financial transactions. Computer programs residing on a server of a financial institution, such as a bank, direct the download and execution of scanning software by the customer. The scanning is performed as an integral part of the on-line financial transaction process. Computer program instructions for scanning the customer computer system are activated over the network, in some embodiments, through the use of ActiveX controls.

Citations

30 Claims

1. A method of disabling malicious code residing on a customer computer system in association with providing on-line financial services to a customer through a network, the method comprising:
- authenticating the customer for the on-line financial services;
  
  presenting to the customer an option to perform a scan of the customer computer system for the malicious code;
  
  executing, at least in part by activation over the network and upon receiving from the customer a selection of the option to perform the scan, computer program instructions for performing the scan, the computer program instructions being directed to detection and disablement of the malicious code; and
  
  providing the on-line financial services to the customer.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein the executing of the computer program instructions further comprises downloading the computer program instructions to the customer computer system.
  - 3. The method of claim 2 wherein the executing of the computer program instructions is accomplished at least in part through the use of an ActiveX control.
  - 4. The method of claim 2 wherein the computer program instructions are operable to perform signature-based detection of the malicious code.
  - 5. The method of claim 2 wherein the computer program instructions are operable to perform integrity checking.
  - 6. The method of claim 2 wherein the computer program instructions are operable to perform non-integrity-based unknown malicious code detection.
  - 7. The method of claim 3 wherein the computer program instructions are operable to perform signature-based detection of the malicious code.
  - 8. The method of claim 3 wherein the computer program instructions are operable to perform integrity checking.
  - 9. The method of claim 3 wherein the computer program instructions are operable to perform non-integrity-based unknown malicious code detection.

10. Apparatus for disabling malicious code residing on a customer computer system in association with providing on-line financial services to a customer through a network, the apparatus comprising:
- means for authenticating the customer for the on-line financial services;
  
  means for executing, at least in part by activation over the network, computer program instructions for performing a scan for the malicious code, the computer program instructions being directed to detection and disablement of the malicious code; and
  
  means for providing the on-line financial services to the customer.
- View Dependent Claims (11, 12)
- - 11. The apparatus of claim 10 wherein the means for executing the computer program instructions further comprises means for downloading the computer program instructions to the customer computer system.
  - 12. The apparatus of claim 11 wherein the means for executing the computer program instructions further comprises an ActiveX control.

13. A computer program product for disabling malicious code residing on a customer computer system in association with providing on-line financial services to a customer through a network, the computer program product comprising a first computer program and a second computer program, the first computer program further comprising:
- instructions for authenticating the customer for the on-line financial services;
  
  instructions for presenting to the customer an option to perform a scan of the customer computer system for the malicious code;
  
  instructions for executing, at least in part through activation over the network and upon receiving from the customer a selection of the option to perform the scan, the second computer program for performing the scan, the second computer program being directed to detection and disablement of the malicious code; and
  
  instructions for providing the on-line financial services to the customer.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
- - 14. The computer program product of claim 13 wherein the instructions for executing the second computer program further comprise instructions for downloading the second computer program to the customer computer system.
  - 15. The computer program product of claim 14 wherein the instructions for executing the second computer program further comprise an ActiveX control.
  - 16. The computer program product of claim 14 wherein the second computer program is operable to perform signature-based detection of the malicious code.
  - 17. The computer program product of claim 14 wherein the second computer program is operable to perform integrity checking.
  - 18. The computer program product of claim 14 wherein the second computer program is operable to perform non-integrity-based unknown malicious code detection.
  - 19. The computer program product of claim 15 wherein the second computer program is operable to perform signature-based detection of the malicious code.
  - 20. The computer program product of claim 15 wherein the second computer program is operable to perform integrity checking.
  - 21. The computer program product of claim 15 wherein the second computer program is operable to perform non-integrity-based unknown malicious code detection.

22. An on-line financial system comprising:
- at least one network connection;
  
  an on-line financial transaction server operable to provide on-line financial services to customers; and
  
  a scanning server operatively connected to the at least one network connection and to the on-line financial transaction server, the scanning server operable to disable malicious code residing on a customer computer system in association with the providing of the on-line financial services, by executing, at the customer computer system, at least in part by activation over the network connection, computer program instructions directed to detection and disablement of the malicious code.
- View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30)
- - 23. The system of claim 22 wherein the scanning server further comprises the computer program instructions, and wherein the scanning server is further operable to download to computer program instructions to the customer computer system.
  - 24. The system of claim 23 wherein the scanning server further comprises an ActiveX wrapper and wherein the scanning server is further operable to execute the computer program instructions at the customer computer system using an ActiveX control.
  - 25. The system of claim 23 wherein the computer program instructions are operable to perform signature-based detection of the malicious code.
  - 26. The system of claim 23 wherein the computer program instructions are operable to perform integrity checking.
  - 27. The system of claim 23 wherein the computer program instructions are operable to perform non-integrity-based unknown malicious code detection.
  - 28. The system of claim 24 wherein the computer program instructions are operable to perform signature-based detection of the malicious code.
  - 29. The system of claim 24 wherein the computer program instructions are operable to perform integrity checking.
  - 30. The system of claim 24 wherein the computer program instructions are operable to perform non-integrity-based unknown malicious code detection.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Bank of America Corp.
Original Assignee
Bank of America Corp.
Inventors
MacLean, Rhonda, Hicks, Mack, Bullock, Marilyn S.

Application Number

US10/707,476
Publication Number

US 20050137980A1
Time in Patent Office

Days
Field of Search
US Class Current

705/44
CPC Class Codes

G06F 21/564   by virus signature recognition

G06F 21/565   by checking file integrity

G06F 21/566   Dynamic detection, i.e. det...

G06F 21/568   eliminating virus, restorin...

G06Q 20/40   Authorisation, e.g. identif...

G06Q 30/06   Buying, selling or leasing ...

ACTIVE DISABLEMENT OF MALICIOUS CODE IN ASSOCIATION WITH THE PROVISION OF ON-LINE FINANCIAL SERVICES

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

30 Claims

Specification

Solutions

Use Cases

Quick Links

ACTIVE DISABLEMENT OF MALICIOUS CODE IN ASSOCIATION WITH THE PROVISION OF ON-LINE FINANCIAL SERVICES

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

30 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links