Scheduling malware signature updates in relation to threat awareness and environmental safety
First Claim
Patent Images
1. A computer-implemented method of retrieving a set of malware signatures comprising:
- receiving, at a client, client safety scores from a set of peer clients associated with the client, a client safety score for a peer client having a value indicating a mode of operation associated with the peer client, the value normalized as a ratio of a number of malware threat detections on the peer client to a number of software applications found on the peer client;
calculating, by the client, an environmental safety score associated with the client based, at least in part, on the client safety scores received from the set of peer clients, wherein the environmental safety score indicates a likelihood that the client is exposed to malware threats;
identifying a plurality of different time intervals respectively associated with a plurality of different environmental safety scores;
selecting a time interval of the plurality of different time intervals associated with the calculated environmental safety score;
retrieving a set of malware signatures from a server at a time determined responsive to the environmental safety score and the selected time interval; and
storing the set of malware signatures.
5 Assignments
0 Petitions
Accused Products
Abstract
Information is received from a set of peer clients associated with a client, the information indicating likelihoods of peer client exposure to malware threats. An environmental safety score associated with the client is determined based, at least in part, on the information received from the set of peer clients, wherein the environmental safety score indicates a likelihood that the client is exposed to malware threats. A set of malware signatures is retrieved from the server at a time determined responsive to the environmental safety score and stored.
-
Citations
16 Claims
-
1. A computer-implemented method of retrieving a set of malware signatures comprising:
-
receiving, at a client, client safety scores from a set of peer clients associated with the client, a client safety score for a peer client having a value indicating a mode of operation associated with the peer client, the value normalized as a ratio of a number of malware threat detections on the peer client to a number of software applications found on the peer client; calculating, by the client, an environmental safety score associated with the client based, at least in part, on the client safety scores received from the set of peer clients, wherein the environmental safety score indicates a likelihood that the client is exposed to malware threats; identifying a plurality of different time intervals respectively associated with a plurality of different environmental safety scores; selecting a time interval of the plurality of different time intervals associated with the calculated environmental safety score; retrieving a set of malware signatures from a server at a time determined responsive to the environmental safety score and the selected time interval; and storing the set of malware signatures. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A non-transitory computer-readable storage medium encoded with executable computer program code for retrieving a set of malware signatures, the program code comprising program code for:
-
receiving, at a client, client safety scores from a set of peer clients associated with the client, a client safety score for a peer client having a value indicating a mode of operation associated with the peer client, the value normalized as a ratio of a number of malware threat detections on the peer client to a number of software applications found on the peer client; calculating, by the client, an environmental safety score associated with the client based, at least in part, on the client safety scores received from the set of peer clients, wherein the environmental safety score indicates a likelihood that the client is exposed to malware threats; identifying a plurality of different time intervals respectively associated with a plurality of different environmental safety scores; selecting a time interval of the plurality of different time intervals associated with the calculated environmental safety score associated with the client; retrieving a set of malware signatures from a server at a time determined responsive to the environmental safety score and the selected time interval; and storing the set of malware signatures. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A computer system for retrieving a set of malware signatures, the system comprising:
-
a processor for executing computer program code; and a computer-readable storage medium encoded with executable computer program code comprising; a peer reporting module adapted to receive, at a client, client safety scores from a set of peer clients associated with the client, a client safety score for a peer client having a value indicating a mode of operation associated with the peer client, the value normalized as a ratio of a number of malware threat detections on the peer client to a number of software applications found on the peer client; an environmental score module adapted to calculate, by the client, an environmental safety score associated with the client based, at least in part, on the client safety scores received from the set of peer clients, wherein the environmental safety score indicates a likelihood that the client is exposed to malware threats; a signature update module adapted to; identify a plurality of different time intervals respectively associated with a plurality of different environmental safety scores; select a time interval of the plurality of different time intervals associated with the calculated environmental safety score associated with the client; retrieve a set of malware signatures from a server at a time determined responsive to the environmental safety score and the selected time interval; and store the set of malware signatures. - View Dependent Claims (15, 16)
-
Specification