SECURING ANTI-VIRUS SOFTWARE WITH VIRTUALIZATION
First Claim
1. A secured anti-virus system, comprising:
- a first virtual machine that supports an anti-virus scanning component; and
a second virtual machine that supports a user environment, the second virtual machine interdepending upon the first virtual machine such that the anti-virus component securely protects the integrity of the user environment.
2 Assignments
0 Petitions
Accused Products
Abstract
The subject disclosure relates to systems and methods that secure anti-virus software through virtualization. Anti-virus systems can be maintained separate from user applications and operating system through virtualization. The user applications and operating system run in a guest virtual machine while anti-virus systems are isolated in a secure virtual machine. The virtual machines are partially interdependent such that the anti-virus systems can monitor user applications and operating systems while the anti-virus systems remain free from possible malicious attack originating from a user environment. Further, the anti-virus system is secured against zero-day attacks so that detection and recovery may occur post zero-day.
458 Citations
20 Claims
-
1. A secured anti-virus system, comprising:
-
a first virtual machine that supports an anti-virus scanning component; and a second virtual machine that supports a user environment, the second virtual machine interdepending upon the first virtual machine such that the anti-virus component securely protects the integrity of the user environment. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for detecting malware, comprising:
-
forking a virtual machine that supports a user environment; sending a shutdown command to a forked copy of the virtual machine; and monitoring write operations to disk to detect malware components. - View Dependent Claims (17, 18)
-
-
19. A computer readable medium having stored thereon computer readable instruction to carry out the steps of method 16.
-
20. A system for safeguarding anti-virus software integrity, comprising:
-
means for isolating user applications in a first virtualized environment; means for supporting an anti-virus scanning component in a second virtualized environment; and means for enabling the anti-virus scanning component to verify soundness of the user applications.
-
Specification