| CPC G06F 21/567 (2013.01) [G06F 2221/033 (2013.01)] | 4 Claims |
|
1. An Internet of Things (IoT) device comprising:
a user application module;
an operating system (OS) application programming interface (API) module;
a kernel API module;
a file system driver module;
a file filter driver module; and
a network filter driver module,
wherein the file filter driver module and the network filter driver module are provided in a kernel level of the IoT device,
wherein, in response to the user application module generating a file-write event upon receiving an external file, the OS API module calls the kernel API module such that the file-write event is handled at the kernel level of the IoT device before the file is written to a disk of the IoT device, and
wherein the kernel API module transmits the file-write event to the file system driver module;
the file system driver module generates a write operation command, which includes the file, and transmits the write operation command to the file filter driver module;
the file filter driver module transmits the write operation command to the network filter driver module; and
the network filter driver module generates a packet including the write operation command and transmits the packet to a remote server computer, thereby allowing the IoT device to use resources of the server computer for detecting malware.
|