Symantec Patents Multiple File Area Virus Scanning 226
DigitumDei writes "Symantec announced on Wednesday that it has aquired a new patent (United States Patent - 6,851,057) titled "Data driven detection of viruses". Symantec has declined to comment on whether it will pursue litigation. Symantec's director of intellectual property Michael Schallop stated : 'We don't generally discuss how we will leverage this patent against competitors or others,'." From the article: "[The patent] could refer to any technology that allows antivirus researchers or antivirus products to use scripting to determine, dynamically, where in a file to scan and detect threats. It could also include the use of Javascript or other common scripting languages to direct antivirus scanning..."
Oxymoron (Score:4, Insightful)
Re:Oxymoron (Score:4, Funny)
Re:Oxymoron (Score:2)
I assume you were being facetious, because that's definitely not insightful.
More patent problems (Score:4, Interesting)
Companies just amass huge patent libraries. Hm... there should really be an exponential cost increase with each patent the company owns. That would prevent big companies from getting thousands and thousands of useless unenforcable patents.
Re:More patent problems (Score:2, Informative)
Um, despite /. hyperbole, a lot of patents do get completely rejected until the prosecution runs out. Even if they are granted, the claims tend to get whittled down a lot during prosecution.
As for small developers, it is possible to file under "small entity" status, which is cheaper. The most expensive part of getting a patent is the fees for the patent attorneys.
'Leverage' why not just say 'use' ? (Score:3, Insightful)
Re:'Leverage' why not just say 'use' ? (Score:2)
Re:More patent problems (Score:3, Insightful)
Talk about unenforceable laws..
Re:More patent problems (Score:2)
For many engineers, there's a certain prestige in being able to say that they successfully submitted a patent. Not forgetting that additional bit of job security if layoffs might be in the near future.
Re:More patent problems (Score:2, Insightful)
LOL! I wrote some patents, and during layoffs, I was among the first to go - in many government contracting shops, writing patents is expressly an overhead (non-billable) activity, and when the bean counters review the quarterly billability, anyone writing patents comes out on the bottom!
Don't think for an instant that just because you have a good idea, the company thinks its worth (its) money to stake a claim.
Re:More patent problems (Score:5, Insightful)
Re:More patent problems (Score:2)
they patented tons of extremely novel research and never brought any of it to the market.
Re:More patent problems (Score:2)
Then institute some kind of system which allows the patents to compete with each other based on a merit ranking (maybe auctions to determine how much companies think the patents are worth?) - patents which get bumped out of the valid slots become public domain.
Obviousness & prior art would still invalidate patents (and would therefore make them worthless).
Re:More patent problems (Score:2, Insightful)
Bull! If we were to abolish the patent system today how many PRODUCTS (notice my word there) would not be made because of it? I am willing to bet very few. If it is an item that is useful then cloners would insure it stayed around. Patents are only used as a weapon and do nothing for "promoting the progress of science and t
Re:More patent problems (Score:2)
Somehow I think $20 per extra patent isn't exactly going to discourage them.
Re:More patent problems (Score:4, Funny)
So, if the first patent costs $20, and each patent after that costs twice as much as the previous one, Symantec is going to go banckrupt after the 29th patent - which will cost about 5 billion dollars (the previous one costs 2 billion dollars, so 6 in total > 5).
Geometric growth. Gotta love it or hate it :).
Re:More patent problems (Score:2)
Not granted to everyone, but almost (Score:2)
The biggest factor in gaining a patent is to use a nice sound bitey/buzz-wordy title to dress up the obvious. (eg. "data driven" vs "scripting" or "parameters").
That gets you the patent (more or less), but you still have to defend the patent on its substance.
These days, some of a patent's value is in using it to make a news release and create stock buzz as per SCO. If that's the case then any patent is fine even if it is bullshit.
Please... (Score:4, Informative)
Re:Please... (Score:3, Interesting)
Kill kill kill.
1. This is an obvious (ok, advanced,optimized ) method to scan for virusses. More or less they create a kind of vm to simulate if a program behaves like a virus.
2. creating an virtual environment/sandbox to see how a virus behaves is nothing new.
This kind of patent decription is not enough to recreate the system. That is what i understood for patents. By revealing the details of your invention it allows for othe
Re:Please... (Score:2)
While I am against software patents, &c., I must remind you that patents can take a very long time to grant. It is possible that Symantec came up with this idea and implemented it before it was obvious, and that they are only being granted the patent now.
Re:Please... (Score:2)
Awesome! (Score:5, Funny)
Re:Awesome! (Score:5, Insightful)
Re:Awesome! (Score:2)
Except that software cannot be 'invented' - it's developped.
Re:Awesome! (Score:5, Insightful)
Re:Awesome! (Score:2)
What about case study? We have had patents for what, 200 years? Surely examples can be produced for both the positive and negative aspects of patents. Let's here them.
I'll start out. This is a story I've heard, and I don't have a significant amount of time to research it. From what I understand, George Eastman of Eastman Kodak used the patent system to lock up the photography industry for many, many years. He would wa
Re:Awesome! (Score:2)
Re:Awesome! (Score:3, Interesting)
Only in post-revolution France could an invention be given "free to all the world" and its inventor rewarded with a lifelong pension from the government.
I vote we get rid of patents and do this.
Re:Awesome! (Score:2)
No, patents prevent competition. Supposedly, this will encourage innovation by making it easy for people to make money using the idea in the patent, but that is not the direct or necessary effect of patents.
Since the _only_ valid societal rationale for patents to exist is to promote the public good, it would be a LOT more simple & straightforward to promote innovation if society col
Re:Awesome! (Score:4, Interesting)
If you mean that patents prevent your competitors from using your invention without having to bear the costs of inventing a competing technology themselves, then, yes. But company X making profit off of their own invention means that company Y will need to innovate and compete by arriving at a better way to solve the problem (and thus win back those customers). Patents encourage the creative innovation of competing (and superior) patentable products/concepts/practices.
Since the _only_ valid societal rationale for patents to exist is to promote the public good
Really? I would think that being able to benefit from your labor and creativity is a strong incentive. Strong enough that the person who does it best gets rewarded accordingly, and only indirectly (though substantially) does the public benefit. The public benefit is frosting on the cake. Protection of an individual's claim to their own work is the heart of it.
it would be a LOT more simple & straightforward to promote innovation if society collectively paid a lot of smart people to create useful ideas
Excellent idea, Citizen Comrade! Why, in countries where that's been the practice, we see fantastic displays of innovation in the areas of stealing IP and technologies from those private innovators elsewhere that are actually getting it done faster, better, and with better-paid people in a higher standard of living. I'm sure some of the community-based researchers in North Korea, or perhaps the ones that prospered so well in the Sovier Union, would disagree with me, me being a clueless Yankee and all.
The anti-competitive effect of patents just turns out to be prone to abuse
Though I'd say that the abuse of the best and brightest people in any collective setting is a much more pervasive problem. In any academic, or even private "team"-based setting where a group of people are tasked with a complex goal, some small percentage of brighter bulbs will always be the people doing the heavy lifting and the creative thinking that actually moves the project forward. The only way not to burn people like that out is a merit-based system that rewards and encourages going the extra mile on (say) research and development. Your system would work fine, as long as the minority of the research communinity that actually innovates gets some sort of reward (and knows they will be getting some sort of reward) for their unique innovations. Oh, wait, that's called a patent and the right to use it.
Re:Awesome! (Score:2, Insightful)
Regardless:
Did patents encourage the "invention" of UNIX, VMS, CP/M, QDOS, BEOS etc? NO!
You're missing the point (mostly, of my comments on the post to which I was replying, which was proposing collective/communal R&D funded by the public in lieu of private enterprise). Personal ambition to see a better solution (whether out of a Linus-Torvalds-st
Re:Awesome! (Score:2)
Rediculous (Score:5, Insightful)
They need to reform the patent law before it gets even more out of hand than it already is... Up next: a patent for "any process whereas pages of paper are bound together.."
Re:Rediculous (Score:2)
The will only happen when dubious software patents becomes a liability to the PTO, which means that we need to start suing it as soon a any patent that was used to kill off, sue out of existence, etc... a company is found invalid.
Obvious (Score:5, Interesting)
Re:Obvious (Score:3, Insightful)
"Finding out whether a file is infected by a virus is a case of looking at the file and seeing if that virus signature is present in the file. This is likely to be done by a program as its easier. These chunks of virus code will live in different places dependent on the type of file being effected. This is all obvious. Surely this patent isn't worth a damn as it can be challenged as such."
Not quite. They are not patenting the idea of the anti-virus. They are patenting the idea of an anti-virus written
Re:Obvious (Score:2)
It is not. (Score:5, Insightful)
A)Protect your business model.
B)Ensure you can "pay back your investors for a long shot" This patent is bullshit, it's like EA, just eliminate all competition, then what incentive is there to change or improve? None, slap 2006 on it and ship it. I want a patent on "Exchanging Oxygen for Carbon Dioxide utilizing organic muscle structures", and sue everyone who breathes.
Re:It is not. (Score:3, Insightful)
Re:It is not. (Score:2)
Re:It is not. (Score:2)
Not sure I see why. Sure you can write viruses for any OS, but that doesn't change the fact the Microsoft time after time opted for ease of use or sloppy programming over security, creating an environment that nurtures virus writers rather than discourages them. They were also years late in even starting to deal with the problem, and in fact are just now really started
Re:It is not. (Score:2)
You could argue that, but it would be false. 1981 was the first Virus in the wild, on an Apple II. But an Apple II is not a Mac.
Patent (Score:5, Interesting)
Re:Patent (Score:2)
I have to disagree with you here. I don't think anyone should be allowed to "own" an idea. And apparently I'm in good company [cmu.edu].
Re:Patent (Score:2)
It is very interesting, to me, that Jefferson puts the ownership of the products of the mind on the same level (rights-wise) as ownership of physical property (he uses land as an example). In other words, he thinks the right to own land is no more (or less) inherent th
Re:Patent (Score:2)
(I'm hoping here, that you merely didn't read my (grandparent) post very closely, and aren't deliberately misinterpreting it.)
Re:Patent (Score:2)
They don't discuss?? (Score:2)
Wow, no kidding.. I wonder if it has anything to do with not wanting to say "we intend to use this patent whenever we feel an antivirus competitor is becoming more successful than us, or when we need some money badly".
next we know viruses are patented (Score:4, Interesting)
Spammers are suing those who filter their crap away, next thing we know virus authors are suing anti-virus vendors... it is truely a brave new world.
Re:next we know viruses are patented (Score:3, Funny)
That's something I'd like to see. Symantec execs being escorted to jail for "Virus Piracy"
Re:next we know viruses are patented (Score:2)
That's a good point, so what if we do it with spyware instead. Write some very annoying spyware, which is perfectly legal, and copyright the whole thing. Then take the anti-spyware vendors (who are often the same people as the anti-virus vendors) to court for violating the copyright under the DMCA.
My previous post wasn't intended as a troll, I was (and am) completely serious. One of the great things about this country is the
OMG Virus (Score:3, Funny)
i dont get it (Score:4, Insightful)
how else are you going to detect them?
i don't get it (Score:2)
1.) the term "dynamically" covers quite a lot, doesn't it? that ranges from "reading from the virus database at runtime" to "incredible advanced AI"
2.) so, will this patent cover all embedded scripting languages in virus scanner software?
maybe this is a novel concept and worth protecting (although i doubt it), but all in all i am very critical of patents threatening to push obvious solutions into illegality! "obvious"
They're to late (Score:2)
I mean seriously scanning for virus useing a signature data base; who hasn't had this idea?
They've got to do something... (Score:4, Insightful)
Re:They've got to do something... (Score:2)
Yeah but... (Score:2)
Claim by Claim analysis? (Score:5, Informative)
Could someone give better summary claim by claim?
I'll provide the claims here to give a starting point. Let's try to actually see what's getting patented here and whether or not it really is novel.
Closed source protects against this? (Score:4, Interesting)
While we are ranting ..... (Score:2)
Re:While we are ranting ..... (Score:3, Informative)
I would reccomend Avast! antivirus [avast.com] - uses a fraction of the resources of NAV200x, and works quite better too, IMHO. The difference in performance after replacing NAV for A! on my mother's PC was ridiculous.
Not only that, registration is free for personal use.
Re:While we are ranting ..... (Score:2)
Re:While we are ranting ..... (Score:2)
This was mainly done to target Microsoft (Score:3, Interesting)
I wouldn't be surprised if Symantec refuses to allow Microsoft to obtain a license to the patent no matter how much money Micrsoft offers. One might hope tactics like this would convince businesses that software patents are a bad idea, but what they are more likely going to do is make businesses do more of the same so they can have simmilar dominance over this or that market segment.
Hell, this is even a really good reason to outsource software development to foreign coders. They aren't encumbered by software patents, and if you're only using the generated code internally, it's a lot harder to prove patent violations.
So if I patent virus... (Score:2, Interesting)
-- This Sig has been scanned and is virus free!
Re:So if I patent virus... (Score:2)
Re:So if I patent virus... (Score:2)
The era of the antivirus is almost over (Score:3, Interesting)
It's only a matter of time until Microsoft builds basic antivirus functionality into Windows, which along with better design would run a lot of security companies out of business.
hmm.. (Score:3, Funny)
Lots of prior art on this patent (Score:5, Informative)
First, the person who wrote the text should be shot... it's worded to be as confusing as possible, so that even an expert in the field can't readily tell what is being covered in the patent.
Next, from what I can tell, the patent seems to cover 3 main points (in various flavors, to come up with their 20 points): All of these points were done years ago. The first two points were "state of the art" as of 1990. The product I worked on (name withheld for various reasons. Sorry about that...) was, at the time, unlike the other virus scanners out there. It used "precision scanning" in which the nature of the virus being scanned for was taken into account, and was scanned for ONLY AT THE LOCATION AT WHICH THE INFECTION WOULD OCCUR. This was a major differentiation from the "bulk scanners" (i.e. run the entire file through a string filter that contains all virus signatures, and see if there are any matches. As a trivia note, "bulk scanners" are why all anti-virus scanners use encrypted (in some trivial way) virus signatures -- so that a virus scanner would not be identified as an infected file by another virus scanner, or even by itself!) that all other major anti-virus vendors used.
Also, the virus scanner I wrote included a scripting language so that users could add their own virus scan and remove definitions.
As for emulating a virus target and seeing if the virus "bites", that is also old hat. While a commercial product was never introduced, a lab prototype was publically demonstrated in 1996, in which files under examination were interpreted in a virtual 80x86 environment, including OS and file system, both to see if they did anything suspicious, and to see if they "tagged along" on "provocative" system calls.
And, yes, I still have my old code sitting around. It would be a pity if someone suddenly showed it to Symantec or the patent office...
Re:Lots of prior art on this patent (Score:4, Informative)
I bet a large software company in Redmond that wants to get into the antivirus market would love to put up a bounty for this if they knew it would pay off. The bonus would be that open source and free scanners woudl not face patent persecution thanks to such work, no matter who it was that took on this patent.
Re:Lots of prior art on this patent (Score:2)
As well as the so-called 'examiners' that granted it.
Re:Lots of prior art on this patent (Score:2)
Relevant Buffy quote (Score:2)
Buffy: Wouldn't it be cool if I did!
Wha? (Score:2)
Re:Wha? (Score:2)
(Dark Avenger's Mutating Engine)
Don't you think... (Score:3, Funny)
Very smooth... (Score:3, Insightful)
Mark My Words.... (Score:2)
Remind me again... (Score:2)
contented Linux user... who gets to enjoy all his CPU cycles... :)
Wrong icon (Score:2)
Symantec patents guarding your house (Score:2, Funny)
I see thier plan! (Score:2)
clever!
I know who I won't be buying my next virus tool from, currently I am using the 'common sense' virus scanner, it even detects viruses that no other system knows about, basically any bin file I don't trust!
hurrah.
Re:Good for Symantec (Score:3, Informative)
Exactly what part of this is 'non-obvious to a skilled practitioner'? I only dabble-part time in AV research and am certainly not a highly recognized researcher in the field, and it is still pretty darn obvious to me. Heck, I've written my own scripting engines around multiple anti-virus engines to scan files. First, I'm quite sure somebody's done this before Symantec, and secondly, it shouldn't even matter since this fails the non-obvious test.
What will it take to shake the USPTO awake
Re:Good for Symantec (Score:2)
Re:Good for Symantec (Score:2)
Anyway, the parent poster was just being sarcastic. People need to lighten up a bit.
RTFP (Score:4, Informative)
It's especially not a problem because working around it doesn't look hard at all. You can do everything they do in the patent, for example, ommitting any intermediary code (P-Code), and you apparently wouldn't be violating it.
For that matter; the patent's main application is for files with multiple entry points and scanning specifically for polymorphic viruses using a scripting engine capable of handling different pieces of code off to different analysis engines and passing things around.
Again, not exactly brilliant, but probably a reasonable patent; also because it's probably not hard to code around.
Re:RTFP (Score:4, Insightful)
I'm as big of a critic of the US patent process as anyone, but there are plenty of legitimate patents out there, and on the surface this appears to be one. If they try to enforce it in an overly-broad manner, shame on them, but the patent itself sounds legit.
Re:RTFP (Score:3)
That's all I need to know. Grant them the patent immediately.
For that matter; the patent's main application is for files with multiple entry points and scanning specifically for polymorphic viruses using a scripting engine capable of handling different pieces of code off to differe
I disagree (Score:4, Insightful)
I presume the other virus programs already use IF and LOOP tokens to handle polymorphism of virus's because polymorphism is already detected by other companies products.
What interests me, is that if this was a patent for a Spinning Jenny we would *know* if there is prior art from looking at the previous machines and I wouldn't have to 'presume' anything.
But because this is software we have to guess whether other companies use programming constructs like IF and LOOP in their virus definition files that would qualify as the use of P-Code in virus detectors.
I also wonder if they need the patent to protect that idea, if they don't document the virus file format who would know?
Seems to me if they didn't disclose it and it was a real invention then they would have plenty of opportunity to make money from it.
Its like patents are being used as a fight mechanism..... and Symantic has hit out with a left patent hook, meanwhile McAfee strikes with a sneaky undercut design patent.....
rather than a mechanism to reward invention.
Re:Good for Symantec (Score:2)
Re:Good for Symantec (Score:2)
http://en.wikipedia.org/wiki/List_of_Symantec_a
Gobble, gobble. And the patents are part of each deal. Symantec (like most tech companies) also has an aggressive internal patent search process.
Re:My Patent (Score:2, Funny)
Re:My Patent (Score:2)
Re:My Patent (Score:2)
Yep, and people who point it out get modded "offtopic". They give mod points to anyone, regardless of intelligence. (I expect a "flamebait" mod for this, though it is factually correct and not worded to insult)
Re:evil, again (Score:3, Informative)
Re:Why now? (Score:2)
Re:So let me get this straight... (Score:2)
The problem with a lot of software patents is they patent results, not a process. If you look historically at the patent process, they are to patent 'mechanisms and processes', not results. When you patent a result, you stifle innovation. When you simply patent a process, you encourage innovation because other people have to find new methods to obtain a result.
This is how I would modify the patent system, actually: en