On December 18, 2020, Huawei applied for a patent related to malicious level detection technology. The patent was passed on April 20, 2021, and its publication number in China is CN112689835A. This latest information was created by the enterprise inspection application.
Malicious:
Malware is also called “malware” and can be classified in several ways to distinguish unique types of malware from each other.
Malicious detection work:
The use of automated tools that can be used for vulnerability scanning, intrusion detection, malware protection, and event monitoring are signature-based, which means they can compare observed network traffic, data flow, computing operations, and system patterns of known malicious activity respond to work.
Join us on Telegram
Patent details: Malicious application detection method
This patent describes the detection method, equipment, and storage medium of malicious applications. Application detection methods include: obtaining the initial information of the operating system, obtaining the comparison result.
1. Obtain the operating information of the operating system: compare the legal application information with the application information to be detected, or compare the configuration information of the initial state with the configuration information of the operating state.
2. Obtain the comparison result: If the comparison result is different, it is determined that the application to be detected on the operating system is a malicious application.
This method compares the configuration information of the operating system in the initial state and the running state. In addition, the legal application information of the software system is compared with the information of the application to be checked. Thereby detecting the security of the application and evaluating the application to be checked.
Detecting the malicious level of an application can save a lot of computing and storage resources, improve detection efficiency, and detect malicious language applications that have changed code or use code obfuscation and addition techniques, thereby improving the accuracy of detection results.
(Via)
