Methods, software and apparatus for detecting and neutralizing viruses from computer systems and networks
First Claim
1. In a computer network environment comprising a gateway device operatively coupled to and between at least one client computer and a data communications network having an originating computer, a method for detecting and neutralizing an electronic virus directed to the gateway device comprises:
- a) upon receiving a request from at least one client computer by the gateway device, issuing a request for a data stream or plurality of data packets from the public data communications network;
b) receiving the requested data stream or plurality of data packets at the gateway device;
c) temporarily storing and scanning the data stream or plurality of data packets for at least one virus or indicator of malicious content;
d) notifying at least one client computer that a virus or indicator of malicious content has been detected;
e) presenting the notified client computer with a plurality of virus handling action options for selection by the operator thereof; and
f) one of performing the selected virus handling action option, randomly selecting one of the plurality of virus handling action options or doing nothing.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods, software or computer programs, and apparatus for detecting viruses and mitigating their harm to computers communicating through a gateway node to another network are disclosed. Upon detection of a virus in an incoming data stream or plurality of data packets directed to a gateway device or node, the data requesting recipient is notified and provided with a plurality of pre-defined virus handling action options. If the recipient, or designated proxy, fails to select an action option, then a random selection is made. If a selection is made, then that selection, to the exclusion of other action options, is carried out. Thus, the recipient is empowered to dynamically select, as circumstances dictate and without future prejudice, the appropriate response upon detection of a particular virus. Action options may include data encryption and forwarding with recipient notification, or where email is the vector, attachment removal and location link insertion may be used. Software embodiments of the invention provide the machine readable instructions to carry out the methods according to the invention.
-
Citations
15 Claims
-
1. In a computer network environment comprising a gateway device operatively coupled to and between at least one client computer and a data communications network having an originating computer, a method for detecting and neutralizing an electronic virus directed to the gateway device comprises:
-
a) upon receiving a request from at least one client computer by the gateway device, issuing a request for a data stream or plurality of data packets from the public data communications network; b) receiving the requested data stream or plurality of data packets at the gateway device; c) temporarily storing and scanning the data stream or plurality of data packets for at least one virus or indicator of malicious content; d) notifying at least one client computer that a virus or indicator of malicious content has been detected; e) presenting the notified client computer with a plurality of virus handling action options for selection by the operator thereof; and f) one of performing the selected virus handling action option, randomly selecting one of the plurality of virus handling action options or doing nothing. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
Specification