Patents Assigned to Symantec
  • Patent number: 8065730
    Abstract: A computer includes a file system that supports virtualization. A scanning module identifies a file to be scanned for malware and a virtualized file detection module determines whether the file is virtualized. A file retrieval module locates a virtualized version of the file if the file is determined to be virtualized, and a malware detection module determines whether the virtualized version of the file contains malware. If malware is found, the malware detection module takes remedial action to address any security threat posed by the malware.
    Type: Grant
    Filed: March 31, 2008
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventors: William E. Sobel, Mark K. Kennedy, Adam L. Glick
  • Patent number: 8065278
    Abstract: The present invention provides a mechanism to selectively restore portions of a monolithically backed up database, while maintaining hierarchical relationships and other metadata relationships of the restored portions of the database. Embodiments of the present invention provide a method, system and computer-readable storage medium that provides for receiving a request to restore a selected object from among a plurality of backed up objects in a database backup, locating information associated with the selected object in the database backup, and restoring the object-to-restore using the information associated with the selected object in a target area. Database table metadata is gathered from the backed up database at the time the backup was created in order to locate the information associated with the selected object.
    Type: Grant
    Filed: September 30, 2008
    Date of Patent: November 22, 2011
    Assignee: Symantec Operating Corporation
    Inventors: Louis Beatty, Steven R. DeVos, Deepak Saraf
  • Patent number: 8065561
    Abstract: A method and apparatus for automating device recovery using device configuration information is described. In one embodiment, a method for restoring a configuration of a source device includes accessing device configuration information from memory associated with a plurality of devices to identify using at least one processor a configuration associated with a source device of the plurality of devices, determining using at least one processor a common configuration between the configuration associated with the source device and a configuration associated with a target device and applying, using the at least one processor, the common configuration to the target device.
    Type: Grant
    Filed: March 31, 2009
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventors: Amol Manohar Vaikar, Adhir Prabhakar Potdar
  • Patent number: 8065560
    Abstract: A method and apparatus for achieving high availability for applications and optimizing power consumption within a datacenter is provided. In one embodiment, a method for providing high availability and optimizing power consumption within a datacenter comprises upon execution of an application at a target node amongst a plurality of nodes in a datacenter, selecting a failover target node amongst the plurality of nodes for the application, and reserving a failover capacity of at least one resource of the selected failover target node.
    Type: Grant
    Filed: March 3, 2009
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventor: Roshni Jaywantsingh Patil
  • Patent number: 8065567
    Abstract: A computer-implemented method for recording behavioral information of an unverified component is described. Interactions between a first process and an unverified component loaded in the first process are monitored. A fault is detected from the monitored interactions. Information associated with an event is sent to a proxy module loaded in a second process. The execution of the event in the second process is verified. Information associated with the behavior of the unverified component during the execution of the event is recorded.
    Type: Grant
    Filed: March 3, 2009
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventors: Matthew Conover, Tzi-cker Chiueh
  • Patent number: 8065179
    Abstract: A method and apparatus for providing a utility based revenue stream for a security software subscription at a client computer is provided. In one embodiment, the method for providing a utility based revenue stream for a security software subscription at a client computer comprises analyzing a security activity log based on a utility metric to produce an analysis result and determining a value for the security software subscription based on the analysis result.
    Type: Grant
    Filed: September 15, 2008
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventor: Neeran Mohan Karnik
  • Patent number: 8065272
    Abstract: A computer-implemented method for tracking changes to a volume is disclosed. The method may comprise: 1) identifying a first snapshot of a volume, 2) identifying a window within which the first snapshot was created, the window beginning with a first point known to have occurred before the first snapshot and ending with a second point known to have occurred after the first snapshot, 3) identifying at least one change to the volume that occurred within the window, and 4) associating the at least one change that occurred within the window with both the first snapshot and a second snapshot created after the first snapshot. Corresponding systems and computer-readable media are also disclosed.
    Type: Grant
    Filed: June 30, 2008
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventor: Russell R. Stringham
  • Patent number: 8065734
    Abstract: A method includes creating an intercept function for a tracked Dynamic Link Library (DLL) function of a Dynamic Link Library (DLL) being loaded into a suspicious module. Further, the import address table entry for the tracked DLL function is replaced with the respective address of the intercept function. In this manner, a call from the suspicious module to the tracked DLL function is intercepted by the intercept function. The suspicious module is associated with the thread presently executing and the call is passed to the tracked DLL function. Accordingly, any actions associated with the thread are attributed to the suspicious module instead of to a process containing the suspicious module.
    Type: Grant
    Filed: March 6, 2008
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventor: Mark Kennedy
  • Patent number: 8065520
    Abstract: An embodiment of the invention includes a secure server. A user at a terminal, communicatively coupled to the secure server by a secure link, can obtain web pages from web sites in a network, in encrypted form, via the secure link. Addresses associated with the web pages are altered to make it appear as if the web pages come from the secure server rather than from the web sites. Spoofing units may be used as alternative access points to the secure server, with the secure server sending the requested web pages directly to the terminal. In general, address rewriting and other manipulation can be performed on the requested web pages, such that the true sources of the web pages are disguised and such that subsequent communications from the terminal are directed to the secure server and/or spoofing unit, rather than to the true source of the web pages. Components of the user's privacy may be sold, or advertisements may be provided, in exchange for protection of the user's identity.
    Type: Grant
    Filed: February 27, 2009
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventors: Stephen Dao Hui Hsu, James Noshir Hormuzdiar, Jon A Chun
  • Patent number: 8065489
    Abstract: Method and apparatus for managing concurrent access among computers to a bitmap stored on disk storage. In some examples, a command is received from a requesting computer of the computers, the command indicating that one or more bits in the bitmap are to be cleared. The bitmap as stored on the disk storage is updated responsive to the command to clear the one or more bits in the bitmap. Synchronization data associated with the bitmap is stored. The synchronization data is configured to distinguish between a current generation and a previous generation of the bitmap, and to specify an action to be performed in response to receiving a subsequent command for accessing the bitmap if the subsequent command identifies a previous generation.
    Type: Grant
    Filed: March 31, 2009
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventor: Roger John Cummings
  • Patent number: 8065699
    Abstract: A method of (and associated system and computer program product for) providing a rating for an event. A user submits feedback data using an interface provided on a user terminal, the feedback data related to the event. A user submitting feedback data may have a member user weighting, preferably obtained from one or more other member users, or may be initially allocated as a default weighting. The rating for the event is determined at least partially based on the feedback data, and may also be based on the member user weighting of the member user who submitted the feedback data. The rating may be determined or adjusted by feedback data and respective member user weightings received from other member users. An event may be a broadcast, concert, exhibition, tour, show, movie, competition, party, and/or function.
    Type: Grant
    Filed: June 15, 2007
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventors: Rolf Repasi, Simon Clausen
  • Patent number: 8065739
    Abstract: A method and apparatus for detecting policy violations in information content containing data in a character-based language is described. In one embodiment, the method includes identifying a policy for protecting source data having a tabular format. The source data contains one or more data fragments in the character-based language. The method further includes receiving information content having at least a portion in the character-based language, and determining whether any part of the information content, including the portion in the character-based language, violates the policy.
    Type: Grant
    Filed: March 28, 2008
    Date of Patent: November 22, 2011
    Assignee: Symantec Corporation
    Inventors: Oskar Bruening, Vitali Fridman
  • Publication number: 20110282834
    Abstract: A method for implementing continuous data replication in a distributed computer system. The method includes receiving a forwarded data object write I/O from a data server. The method further includes examining attribute information of the data object to determine a consistency group for the data object. A replication policy is examined in view of the consistency group of the data object to determine a destination redundancy server. The data object write I/O is forwarded to the destination redundancy server for storage. An acknowledgment is then sent to the data server upon storage of the data object in the destination redundancy server.
    Type: Application
    Filed: May 17, 2010
    Publication date: November 17, 2011
    Applicant: SYMANTEC CORPORATION
    Inventors: Samir Desai, Niranjan Pendharkar
  • Publication number: 20110282917
    Abstract: Embodiments of the present invention are directed to a method and system for managing resources. The method includes receiving a request, within an electronic system, which corresponds to an object of a file system and accessing a local data structure. The data structure comprises information corresponding to a plurality of inode numbers. The method further includes performing the request and updating the local data structure based on the request. The updating of the local data structure is independent of a plurality of data structures of a cluster of servers.
    Type: Application
    Filed: May 17, 2010
    Publication date: November 17, 2011
    Applicant: SYMANTEC CORPORATION
    Inventors: Samir Desai, Kedar Patwardhan
  • Publication number: 20110282830
    Abstract: In general, a block of data in a data file is stored in a multi-tier storage system. The block of data includes multiple rows and multiple entry values per row, including values for a particular entry. The values of the particular entry in the data block can be used to determine whether to move the data block to a different tier of a multi-tier storage system. The block of data can then either be relocated in a different tier or kept in the current tier.
    Type: Application
    Filed: May 13, 2010
    Publication date: November 17, 2011
    Applicant: SYMANTEC CORPORATION
    Inventors: Raghupathi Malige, Meher Shah, Tillmann Reusse, Gautham Ravi
  • Patent number: 8060481
    Abstract: A method and mechanism for managing a time-indexed block map in a file system configured to store multiple versions of file data. A file system includes inodes or other structures corresponding to files in the system. Responsive to creating a file, one or more blocks are allocated for use in storing the file data. A block map is maintained for the file and is updated to include an identification of the blocks storing the file data and a timestamp corresponding to the stored data. In response to creating a file, data corresponding block map is maintained. In addition, a new entry is created in the block map which identifies the newly allocated blocks. Further, an entry of the block map is updated to (i) identify the particular blocks to which the write was directed and (ii) include a timestamp corresponding to the time of the write.
    Type: Grant
    Filed: May 23, 2006
    Date of Patent: November 15, 2011
    Assignee: Symantec Operating Corporation
    Inventors: Craig K. Harmer, John A. Colgrove, Peter Vajgel, Milind Borate, Bhimsen Bhanjois
  • Patent number: 8060577
    Abstract: A method and apparatus for employing user input to classify unknown files whereby when a given unknown/unclassified file is downloaded and/or activated on a given computer system associated with a given user, the given user is asked to provide input regarding the legitimacy of the given unknown/unclassified file. The classification of the given unknown/unclassified file is then determined via one or more sources other than the given user's input. The accuracy of the given user's input regarding the legitimacy of the given unknown/unclassified file is then determined and used to calculate, and/or transform, a reliability score that is then associated with the given user. A given user's reliability score is then used to determine the given user's eligibility to provide further input regarding the legitimacy of other unknown/unclassified files, and/or to determine a value to be place on, or otherwise filter, future input from the given user regarding the legitimacy of other unknown/unclassified files.
    Type: Grant
    Filed: June 25, 2009
    Date of Patent: November 15, 2011
    Assignee: Symantec Corporation
    Inventor: Robert James Conrad
  • Patent number: 8060703
    Abstract: Techniques for allocating/reducing storage required for one or more virtual machines are disclosed. In one particular exemplary embodiment, the techniques may be realized as a method for allocating storage for one or more virtual machines. The method may comprise providing one or more virtual machines. The method may also comprise creating one or more master images containing one or more commonly used blocks. The method may also comprise creating one or more Copy on Write volumes, where each Copy on Write volume may be associated with at least one of the one or more virtual machines and at least one of the one or more master images, and wherein updated blocks may be stored in at least one of the one or more Copy on Write volumes, thereby reducing storage required for one or more virtual machines.
    Type: Grant
    Filed: March 30, 2007
    Date of Patent: November 15, 2011
    Assignee: Symantec Corporation
    Inventors: Komal Desai, Jonathan Purcell, Bruce Montague, Viswesvaran Janakiraman, Douglas Fallstrom, Rajeev Bharadhwaj
  • Patent number: 8060734
    Abstract: An exemplary method for providing recommendations to improve boot performance based on community data is disclosed. In one embodiment, such a method may comprise: 1) identifying at least one startup item on a computing device that is scheduled to run at boot time, 2) requesting startup-recommendation information for the startup item from a server, 3) receiving the startup-recommendation information for the startup item from the server, the startup-recommendation information being based on data gathered from a community of users, and then 4) presenting the startup-recommendation information for the startup item to a user. Corresponding systems and computer-readable media are also disclosed.
    Type: Grant
    Filed: October 13, 2008
    Date of Patent: November 15, 2011
    Assignee: Symantec Corporation
    Inventors: Keith Newstadt, Mark Kennedy, Matt Boucher
  • Patent number: 8060940
    Abstract: A computer-implemented method for controlling access to data is. A request to access data is received. A determination is made that an access-control policy of the data is satisfied. A virtualization layer is activated to allow access to the data after determining that the access-control policy is satisfied. Various other methods, systems, and computer-readable media are also disclosed.
    Type: Grant
    Filed: June 27, 2008
    Date of Patent: November 15, 2011
    Assignee: Symantec Corporation
    Inventors: Bruce McCorkendale, William E. Sobel