SYSTEM AND METHOD OF MALWARE SAMPLE COLLECTION ON MOBILE NETWORKS
First Claim
Patent Images
1. A collection agent, comprising:
- a first network interface operably adapted for receiving a network data sample;
a protocol handler operably adapted to receive said network data sample from said first network interface and extract an executable code from said network data sample; and
a second network interface operably adapted for receiving said executable code from said protocol handler and for sending said executable code to a sample collection center.
15 Assignments
0 Petitions
Accused Products
Abstract
A collection agent monitors a mobile network for data samples containing executable code. The collection agent accepts executables and forwards them to a sample collection center for further analysis, reporting, or in some instances initiating one or more mitigating actions. Depending on the network protocol being monitored, the collection agent responds to connection attempts from nearby mobile devices.
-
Citations
20 Claims
-
1. A collection agent, comprising:
-
a first network interface operably adapted for receiving a network data sample;
a protocol handler operably adapted to receive said network data sample from said first network interface and extract an executable code from said network data sample; and
a second network interface operably adapted for receiving said executable code from said protocol handler and for sending said executable code to a sample collection center. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of detecting malware for use in a mobile environment, said method comprising:
-
monitoring a protocol for a sample containing executable code;
accepting said executable code;
verifying said executable code is executable on a mobile platform; and
sending said executable code to a sample collection center. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A wireless sample collection system, comprising:
-
means for monitoring a wireless network protocol for a sample containing executable code;
means for accepting said executable code; and
means for reporting said executable code to a network management system. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification