Controlling Virus Infections in Internet and Web Servers- A TRIZ based analysis

Author: Umakant Mishra

Abstract:

The viruses not only infect the stand-alone machines or client machines but also infect the web servers. When the web servers are infected with viruses, they disseminate infected content and thereby infect the client computers. The conventional anti-virus programs can run only on one machine. There is no way that an anti-virus in the client machine can determine whether the content of a website is virus safe or not. Hence, different methods are implemented to prevent the client computer from being infected by the infected content of a web server.

One proposed efficient method is to get scanned by the search engines and display the reliability of the content along with the search results (Patent 6721721). Looking at the reliability status in the search results, the user knows which web pages are reliable and which web pages are not reliable. Similarly, another proposed efficient method is to use a certificate server to certify the content of the web servers. This also helps users to know which content is virus-scanned (and hence reliable) and which content is not (Patent 7107618).

Keywords: computer virus, anti-virus, anti-virus software, computer vulnerability, computer security, anti-virus design, anti-virus development, virus scanning, virus infection, virus detection, signature scanning, integrity checking, heuristic scanning, emulation, activity monitoring, generic scanning, network scanning, server scanning,

Mishra, Umakant, Controlling Virus Infections in Internet and Web Servers- A TRIZ Based Analysis (June 1, 2012). Available at SSRN: http://ssrn.com/abstract=2071960 or http://dx.doi.org/10.2139/ssrn.2071960

http://papers.ssrn.com/abstract=2071960 

http://works.bepress.com/umakant_mishra/89

https://www.researchgate.net/publication/255726433_Controlling_Virus_Infections_in_Internet_and_Web_Servers-_A_TRIZ_Based_Analysis

Inventions on Generic Detection of Computer Viruses- A TRIZ based analysis

Author: Umakant Mishra

Abstract:

The conventional methods of signature scanning and heuristic testing depend on prior knowledge of individual virus signatures and virus behaviors. Hence these methods are capable of detecting only the known viruses or viruses behaving in known ways. Hence, these methods cannot detect the viruses unless they are created, released and infected the innocent users. This situation creates the need for generic detectors that can detect even the new and unknown viruses.

The generic scanning methods, in contrast, don’t depend on individual virus signatures or behaviors. Hence they are better applicable to detect the new and unknown viruses and viruses of new and unknown behavior. The other advantage of generic methods is that they don’t require updating of virus databases periodically. The popular generic methods include integrity checking and heuristic scanning. Integrity checking may include verification of program size, verification of checksum, verification of revision information, verification of disk address, verification of object program and others. 

However, generic methods are not easy to implement. It is difficult to analyze a large number of features of the viruses to build virus classifiers in order to determine an executable data whether “infected” or “not-infected”. Besides, this method is not so guaranteed as signature scanning. Hence, there is possibility of many viruses escaping through this method of detection. There are continuous efforts to make the generic methods more accurate and reduce the number of false negatives and false positives.

Keywords: computer virus, anti-virus, anti-virus software, computer vulnerability, computer security, anti-virus design, anti-virus development, inoculation, virus scanning, virus detection, signature scanning, integrity checking, heuristic scanning, generic scanning, behavior monitoring, resident scanning,

Mishra, Umakant, Inventions on Generic Detection of Computer Viruses- A TRIZ Based Analysis (June 1, 2012). Available at SSRN: http://ssrn.com/abstract=2071922 or http://dx.doi.org/10.2139/ssrn.2071922

http://papers.ssrn.com/abstract=2071922

http://works.bepress.com/umakant_mishra/88

https://www.researchgate.net/publication/255726429_Inventions_on_Generic_Detection_of_Computer_Viruses-_A_TRIZ_Based_Analysis