System and method for detection of malware and management of malware-related information

摘要

Disclosed are systems and methods for centralized detection and management of malware-related information for use by different security applications. In one example, the centralized security management system comprises a central knowledge database of security information, such as information about various types of malware and other security threats. The system further includes an interpreter module that provides a plurality of customized Extensible Markup Language (XML) interfaces for receiving and parsing information queries from remote security applications developed by different vendors. The system further includes a plurality of local and remote analytical modules (engines) that analyze information queries from the security applications using malware-related information contained in the central knowledge database.