发明授权
US08429734B2 Method for detecting DNS redirects or fraudulent local certificates for SSL sites in pharming/phishing schemes by remote validation and using a credential manager and recorded certificate attributes
有权
通过远程验证和使用凭证管理器和记录的证书属性来检测PHP /网络钓鱼方案中的SSL站点的DNS重定向或欺诈性本地证书的方法
- 专利标题: Method for detecting DNS redirects or fraudulent local certificates for SSL sites in pharming/phishing schemes by remote validation and using a credential manager and recorded certificate attributes
- 专利标题(中): 通过远程验证和使用凭证管理器和记录的证书属性来检测PHP /网络钓鱼方案中的SSL站点的DNS重定向或欺诈性本地证书的方法
-
申请号: US11831843申请日: 2007-07-31
-
公开(公告)号: US08429734B2公开(公告)日: 2013-04-23
- 发明人: Paul Agbabian , William E. Sobel , Bruce McCorkendale
- 申请人: Paul Agbabian , William E. Sobel , Bruce McCorkendale
- 申请人地址: US CA Mountain View
- 专利权人: Symantec Corporation
- 当前专利权人: Symantec Corporation
- 当前专利权人地址: US CA Mountain View
- 代理机构: McKay and Hodgson, LLP
- 代理商 Serge J. Hodgson; Sean P. Lewis
- 主分类号: G06F21/00
- IPC分类号: G06F21/00
摘要:
Certificate information associated with a received certificate, such as a Secure Sockets Layer (SSL) certificate is stored in a trusted local cache and/or in one or more remote trusted sources, such as a single remote trusted source and/or a trusted peer network. When a site certificate is received on a host computer system, certificate information associated with the received site certificate is obtained and compared with the stored certificate information to determine whether or not the site certificate indicates malicious activity, such as a malicious DNS redirection or a fraudulent local certificate. When a site certificate is not found indicative of malicious activity, the site certificate is released. Alternatively, when a site certificates is found indicative of malicious activity protective action is taken. In some embodiments, a user's log-in credentials are automatically obtained from a trusted local cache and automatically submitted to a web site.
公开/授权文献
信息查询
