Technology
Huawei released new malicious detection method and device to recognize app malicious level
On December 18, 2020, Huawei has applied for the patent related to malicious level detection technology, which was passed on April 20, 2021, with publication number CN112689835A in China. This latest information was founded by the Enterprise check app.
Malicious:
Malware is also known as “malicious software” can be classified in several ways in order to distinguish the unique types of malware from each other.
Malicious detection work:
Using the automated tools available for vulnerability scanning, intrusion detection, malware prevention, and event monitoring are signature-based, meaning they work by comparing observed network traffic, data flow, computing actions, and system responses to known patterns of malicious activity
Patent details: Malicious Application Detection Method
The patent describes the malicious application detection method, device, and storage medium. The application detection method includes: Obtaining the initial information of the operating system, get the comparison result,
1. Obtaining the operating information of the operating system: Comparing the legal application information with the application information to be detected, or comparing the configuration information in the initial state with the configuration information in the running state.
2. Get the comparison result: if the comparison results are not the same, determine that the application to be detected on the operating system is a malicious application.
The method compares the configuration information of the operating system in the initial state and in the running state. Also, compares the legal application information of the software system with the information of the application to be inspected. So as to detect the safety of the application and evaluate the application to be inspected.
Detecting the malicious level of an application can save a lot of computing and storage resources, improve detection efficiency, and detect malicious language applications that have changed code or use code obfuscation and addition techniques, which can improve the accuracy of the detection results
[Source: ithome]