-
公开(公告)号:US09043919B2
公开(公告)日:2015-05-26
申请号:US13484132
申请日:2012-05-30
CPC分类号: G06F21/10 , G06F11/3409 , G06F11/3452 , G06F21/562 , G06F21/564 , G06F2201/81 , G06F2201/865 , G06F2201/88 , G06F2213/0038 , G06Q30/0185
摘要: A crawler program collects and stores application programs including application binaries and associated metadata from any number of sources such as official application marketplaces and alternative application marketplaces. An analysis including comparisons and correlations are performed among the collected data in order to detect and warn users about pirated or maliciously modified applications.
摘要翻译: 爬虫程序收集并存储包括应用程序二进制程序和相关元数据在内的应用程序,包括任何数量的来源,如官方应用程序市场和替代应用程序市场。 在收集的数据之间执行包括比较和相关性的分析,以便检测和警告用户盗版或恶意修改的应用程序。
-
公开(公告)号:US08984628B2
公开(公告)日:2015-03-17
申请号:US13033025
申请日:2011-02-23
申请人: Kevin Patrick Mahaffey , David Golombek , David Luke Richardson , Timothy Micheal Wyatt , James David Burgess , John G. Hering
发明人: Kevin Patrick Mahaffey , David Golombek , David Luke Richardson , Timothy Micheal Wyatt , James David Burgess , John G. Hering
CPC分类号: G06F21/562 , G06F21/564 , G06F2221/034 , H04L63/1416 , H04W12/10 , H04W12/12
摘要: A system and method identifies mobile applications that can have an adverse effect on a mobile device or mobile network. In an implementation, a server monitors behavioral data relating to a mobile application and applies a model to determine if the application has an adverse effect or has the potential to cause an adverse effect on a mobile device or a network the mobile device may connect to. A mobile device may monitor behavioral data, apply a model to the data, and transmit a disposition to the server. The server may aggregate behavioral data or disposition information from multiple devices. The server may transmit or make available the disposition information to a subscriber through a web interface, API, email, or other mechanism. After identifying that an application may have an adverse effect, the server may enact corrective actions, such as generating device or network configuration data.
摘要翻译: 系统和方法识别可能对移动设备或移动网络产生不利影响的移动应用。 在实现中,服务器监视与移动应用有关的行为数据,并应用模型来确定应用是否具有不利影响,或者有可能对移动设备或移动设备可能连接的网络造成不利影响。 移动设备可以监视行为数据,将模型应用于数据,并将配置发送到服务器。 服务器可以聚合来自多个设备的行为数据或处理信息。 服务器可以通过web界面,API,电子邮件或其他机制向用户发送或提供配置信息。 在识别出应用程序可能产生不利影响之后,服务器可能会采取纠正措施,例如生成设备或网络配置数据。
-
公开(公告)号:US08788881B2
公开(公告)日:2014-07-22
申请号:US13212055
申请日:2011-08-17
IPC分类号: G06F11/00
CPC分类号: G06Q20/3224 , G06Q20/401 , H04W4/00 , H04W4/02 , H04W4/12 , H04W4/60
摘要: Pushing data to mobile devices can be problematic because mobile platforms may support a number push services, each of which have different cost and reliability characteristics. The problem of being able to push data to multiple different types of mobile devices from a single server is solved by a push service aggregator supporting multiple push services. Upon receiving a push request, one or more push services are selected for pushing data to a client. The selection may be based on a delivery profile included with the push request, information about the client, past performance of the push services, current status of the push services, or combinations of these. The status of the push may be tracked and monitored so as to retry in the case of non-delivery.
摘要翻译: 将数据推送到移动设备可能是有问题的,因为移动平台可以支持数字推送服务,每个服务具有不同的成本和可靠性特征。 能够从单个服务器将数据推送到多种不同类型的移动设备的问题由支持多个推送服务的推送服务聚合器解决。 在接收到推送请求时,选择一个或多个推送服务来将数据推送到客户端。 选择可以基于推送请求中包括的传送简档,关于客户端的信息,推送服务的过去性能,推送服务的当前状态或这些的组合。 可以跟踪和监视推送的状态,以便在不送货的情况下重试。
-
公开(公告)号:US08381303B2
公开(公告)日:2013-02-19
申请号:US13333654
申请日:2011-12-21
CPC分类号: G06F21/562 , G06F21/564 , G06F2221/034 , H04W12/08
摘要: The present invention is a system and method for detecting and preventing attacks and malware on mobile devices such as a cell phones, smartphones or PDAs, which are significantly limited in power consumption, computational power, and memory. The invention enables mobile devices to analyze network data, executable data files, and non-executable data files in order to detect and prevent both known and unknown attacks and malware over vectors that are not typically protected by desktop and server security systems. Security analysis is performed by a combination of “known good,” “known bad,” and decision components. The invention identifies known good executables and/or known characteristics of network data or data files that must be present in order for the data to be considered good. Furthermore, known good and known bad identifier databases may be stored on a server which may be queried by a mobile device.
摘要翻译: 本发明是用于检测和防止在诸如蜂窝电话,智能电话或PDA的移动设备上的攻击和恶意软件的系统和方法,其在功耗,计算能力和存储器中受到显着限制。 本发明使得移动设备能够分析网络数据,可执行数据文件和不可执行数据文件,以便在通常不受桌面和服务器安全系统保护的向量上检测和防止已知和未知的攻击和恶意软件。 安全性分析由已知的良好,已知的不良和决定组件的组合来执行。 本发明识别为了使数据被认为是好的,必须存在的网络数据或数据文件的已知的良好可执行文件和/或已知特性。 此外,已知的良好和已知的不良标识符数据库可以存储在可由移动设备查询的服务器上。
-
公开(公告)号:US20110047597A1
公开(公告)日:2011-02-24
申请号:US12868672
申请日:2010-08-25
申请人: Kevin Patrick Mahaffey , David Golombek , Daniel Lee Evans , David Luke Richardson , Timothy Micheal Wyatt , James David Burgess , Anthony McKay Lineberry , Kyle Barton
发明人: Kevin Patrick Mahaffey , David Golombek , Daniel Lee Evans , David Luke Richardson , Timothy Micheal Wyatt , James David Burgess , Anthony McKay Lineberry , Kyle Barton
CPC分类号: H04L63/10 , G06F11/3409 , G06F21/564 , H04L63/08 , H04L67/32 , H04L67/42
摘要: Disclosed herein is a system and method for efficiently gathering information about applications for mobile communication devices (e.g., smartphones, netbooks, and tablets). This disclosure is also directed to a server producing assessments for applications by analyzing data from multiple sources. To gather information, a device sends information about an application to a server, which stores some or all of the information and may request additional information, if necessary. The server collects information from many devices, including devices that have varied configurations and different operating systems, by only collecting the appropriate information from each device. The server gathers the appropriate data to perform in-depth, granular mobile application analysis while minimizing overhead on devices, wireless networks, and the server. The server may collect portions of data from multiple devices, combining them on the server to produce an assessment for an application.
摘要翻译: 本文公开了一种用于有效地收集关于移动通信设备(例如,智能电话,上网本和平板电脑)的应用的信息的系统和方法。 本公开还涉及通过分析来自多个源的数据来产生应用的评估的服务器。 为了收集信息,设备将有关应用程序的信息发送到服务器,服务器存储部分或全部信息,如有必要,可以请求附加信息。 服务器通过从每个设备收集适当的信息,从许多设备收集信息,包括具有不同配置和不同操作系统的设备。 服务器收集适当的数据以执行深入细粒度的移动应用程序分析,同时最大限度地减少设备,无线网络和服务器的开销。 服务器可以收集来自多个设备的部分数据,将它们组合在服务器上以产生应用的评估。
-
公开(公告)号:US08544095B2
公开(公告)日:2013-09-24
申请号:US13460549
申请日:2012-04-30
申请人: Kevin Patrick Mahaffey , James David Burgess , David Golombek , Timothy Micheal Wyatt , Anthony McKay Lineberry , Kyle Barton , Daniel Lee Evans , David Luke Richardson , Ariel Salomon
发明人: Kevin Patrick Mahaffey , James David Burgess , David Golombek , Timothy Micheal Wyatt , Anthony McKay Lineberry , Kyle Barton , Daniel Lee Evans , David Luke Richardson , Ariel Salomon
CPC分类号: H04L63/1441 , G06F21/56 , G06F21/564 , G06F21/57 , H04L63/1433 , H04L63/20
摘要: To prevent malware, spyware and other undesirable applications from affecting mobile communication devices (e.g., smartphones, netbooks, and tablets), a device uses a server to assist in identifying and removing undesirable applications. When scanning an application, a device transmits information about the application to a server for analysis. The server receives the information, produces a categorization assessment and can provide a categorization re-assessment, and transmits the assessment to the device. By performing analysis on a server, a device can reduce its battery and performance cost of protecting against undesirable applications. The server transmits notifications to devices that have installed applications that are discovered to be undesirable. The server receives data about applications from many devices, using the combined data to minimize false positives and provide comprehensive protection against known and unknown threats. The server can accumulate this data and perform a categorization re-assessment of a data object previously assessed.
摘要翻译: 为了防止恶意软件,间谍软件和其他不期望的应用程序影响移动通信设备(例如智能手机,上网本和平板电脑),设备使用服务器来帮助识别和删除不期望的应用程序。 扫描应用程序时,设备将有关应用程序的信息发送到服务器进行分析。 服务器接收信息,产生分类评估,并提供分类重新评估,并将评估传送到设备。 通过在服务器上执行分析,设备可以减少其电池和性能成本,以防止不期望的应用。 服务器向已安装被发现不合需要的应用程序的设备发送通知。 服务器从许多设备接收有关应用程序的数据,使用组合数据来最小化误报,并提供针对已知和未知威胁的全面保护。 服务器可以累积此数据,并对先前评估的数据对象进行分类重新评估。
-
7.发明申请SYSTEM AND METHOD FOR SERVER-COUPLED APPLICATION RE-ANALYSIS TO OBTAIN CHARACTERIZATION ASSESSMENT 有权用于服务器耦合应用的系统和方法重新分析以获得特征评估公开(公告)号:US20130117846A1
公开(公告)日:2013-05-09
申请号:US13461054
申请日:2012-05-01
申请人: Kevin Patrick Mahaffey , James David Burgess , David Golombek , Timothy Micheal Wyatt , Anthony McKay Lineberry , Kyle Barton , Daniel Lee Evans , David Luke Richardson , Ariel Salomon
发明人: Kevin Patrick Mahaffey , James David Burgess , David Golombek , Timothy Micheal Wyatt , Anthony McKay Lineberry , Kyle Barton , Daniel Lee Evans , David Luke Richardson , Ariel Salomon
IPC分类号: G06F21/57
CPC分类号: H04L63/1441 , G06F21/56 , G06F21/564 , G06F21/57 , H04L63/1433 , H04L63/20
摘要: This disclosure is directed to a system and method for preventing malware, spyware and other undesirable applications from affecting mobile communication devices (e.g., smartphones, netbooks, and tablets). A mobile communication device uses a server to assist in identifying and removing undesirable applications. When scanning an application, a device transmits information about the application to a server for analysis. The server receives the information, produces a characterization assessment and can also provide a characterization re-assessment for the application, or data object, and transmits the assessment to the device. By performing analysis on a server, the invention allows a device to reduce the battery and performance cost of protecting against undesirable applications. The servers transmits notifications to devices that have installed applications that are discovered to be undesirable. The server receives data about applications from many devices, using the combined data to minimize false positives and provide comprehensive protection against known and unknown threats. The server can accumulate this data and then perform a characterization re-assessment of a data object it has previously assessed.
摘要翻译: 本公开涉及用于防止恶意软件,间谍软件和其他不期望的应用影响移动通信设备(例如,智能电话,上网本和平板电脑)的系统和方法。 移动通信设备使用服务器来帮助识别和去除不期望的应用。 扫描应用程序时,设备将有关应用程序的信息发送到服务器进行分析。 服务器接收信息,产生特征评估,还可以为应用程序或数据对象提供特征重新评估,并将评估传递给设备。 通过对服务器进行分析,本发明允许设备减少电池和性能成本,以防止不期望的应用。 服务器向已安装被发现不合需要的应用程序的设备发送通知。 服务器从许多设备接收有关应用程序的数据,使用组合数据来最小化误报,并提供针对已知和未知威胁的全面保护。 服务器可以累积这些数据,然后对之前评估的数据对象进行表征重新评估。
-
公开(公告)号:US20120324568A1
公开(公告)日:2012-12-20
申请号:US13160382
申请日:2011-06-14
申请人: Timothy Micheal Wyatt , David Luke Richardson , Jonathan Pantera Grubb , Kevin Patrick Mahaffey , Anbu Anbalagapandian
发明人: Timothy Micheal Wyatt , David Luke Richardson , Jonathan Pantera Grubb , Kevin Patrick Mahaffey , Anbu Anbalagapandian
CPC分类号: G06F21/51 , G06F2221/2101 , H04L63/101 , H04L63/145 , H04L63/1483 , H04W12/1208
摘要: On a mobile communications device, visiting a link from a messaging application or web browser may result in an undesired action, such as visiting a phishing site, downloading malware, causing unwanted charges, using too much battery, or the device being exploited. In an implementation, a mobile application intercepts a request including an identifier associated with an action to be performed by another application on the device and evaluates the identifier to determine when the request should be permitted, blocked, or conditionally permitted. The client may use local data or make a request to a server to evaluate the identifier. In an implementation, server communications are optimized to minimize latency by caching evaluation results on the device, proactively priming the device's DNS cache, optimizing when DNS lookups are performed, and adapting evaluation policy based on factors such as the source of the request, and the currently active network connection.
摘要翻译: 在移动通信设备上,访问消息传递应用程序或网络浏览器的链接可能导致不期望的操作,例如访问网络钓鱼站点,下载恶意软件,导致不必要的费用,使用太多的电池或被利用的设备。 在实现中,移动应用拦截包括与要由设备上的另一应用执行的动作相关联的标识符的请求,并且评估该标识符以确定何时应该允许,阻止或有条件地允许该请求。 客户端可以使用本地数据或向服务器发出请求来评估该标识符。 在实现中,服务器通信被优化以通过缓存设备上的评估结果来最小化等待时间,主动启动设备的DNS缓存,在执行DNS查找时进行优化,以及基于诸如请求源之类的因素来适应评估策略,以及 当前活动的网络连接。
-
公开(公告)号:US20110145920A1
公开(公告)日:2011-06-16
申请号:US13033025
申请日:2011-02-23
申请人: Kevin Patrick MAHAFFEY , David GOLOMBEK , David Luke RICHARDSON , Timothy Micheal WYATT , James David BURGESS , John G. Hering
发明人: Kevin Patrick MAHAFFEY , David GOLOMBEK , David Luke RICHARDSON , Timothy Micheal WYATT , James David BURGESS , John G. Hering
IPC分类号: G06F21/00
CPC分类号: G06F21/562 , G06F21/564 , G06F2221/034 , H04L63/1416 , H04W12/10 , H04W12/12
摘要: A system and method identifies mobile applications that can have an adverse effect on a mobile device or mobile network. In an implementation, a server monitors behavioral data relating to a mobile application and applies a model to determine if the application has an adverse effect or has the potential to cause an adverse effect on a mobile device or a network the mobile device may connect to. A mobile device may monitor behavioral data, apply a model to the data, and transmit a disposition to the server. The server may aggregate behavioral data or disposition information from multiple devices. The server may transmit or make available the disposition information to a subscriber through a web interface, API, email, or other mechanism. After identifying that an application may have an adverse effect, the server may enact corrective actions, such as generating device or network configuration data.
摘要翻译: 系统和方法识别可能对移动设备或移动网络产生不利影响的移动应用。 在实现中,服务器监视与移动应用有关的行为数据,并应用模型来确定应用是否具有不利影响,或者有可能对移动设备或移动设备可能连接到的网络造成不利影响。 移动设备可以监视行为数据,将模型应用于数据,并将配置发送到服务器。 服务器可以聚合来自多个设备的行为数据或处理信息。 服务器可以通过web界面,API,电子邮件或其他机制向用户发送或提供配置信息。 在识别出应用程序可能产生不利影响之后,服务器可能会采取纠正措施,例如生成设备或网络配置数据。
-
公开(公告)号:US20110047620A1
公开(公告)日:2011-02-24
申请号:US12868669
申请日:2010-08-25
申请人: Kevin Patrick Mahaffey , James David Burgess , David Golombek , Timothy Micheal Wyatt , Anthony McKay Lineberry , Kyle Barton , Daniel Lee Evans , David Luke Richardson , Ariel Salomon
发明人: Kevin Patrick Mahaffey , James David Burgess , David Golombek , Timothy Micheal Wyatt , Anthony McKay Lineberry , Kyle Barton , Daniel Lee Evans , David Luke Richardson , Ariel Salomon
IPC分类号: G06F11/00
CPC分类号: H04L63/1441 , G06F21/56 , G06F21/564 , G06F21/57 , H04L63/1433 , H04L63/20
摘要: This disclosure is directed to a system and method for preventing malware, spyware and other undesirable applications from affecting mobile communication devices (e.g., smartphones, netbooks, and tablets). A mobile communication device uses a server to assist in identifying and removing undesirable applications. When scanning an application, a device transmits information about the application to a server for analysis. The server receives the information, produces an assessment for the application, and transmits the assessment to the device. By performing analysis on a server, the invention allows a device to reduce the battery and performance cost of protecting against undesirable applications. The servers transmits notifications to devices that have installed applications that are discovered to be undesirable. The server receives data about applications from many devices, using the combined data to minimize false positives and provide comprehensive protection against known and unknown threats.
摘要翻译: 本公开涉及用于防止恶意软件,间谍软件和其他不期望的应用影响移动通信设备(例如,智能电话,上网本和平板电脑)的系统和方法。 移动通信设备使用服务器来帮助识别和去除不期望的应用。 扫描应用程序时,设备将有关应用程序的信息发送到服务器进行分析。 服务器接收信息,产生应用程序的评估,并将评估发送到设备。 通过对服务器进行分析,本发明允许设备减少电池和性能成本,以防止不期望的应用。 服务器向已安装被发现不合需要的应用程序的设备发送通知。 服务器从许多设备接收有关应用程序的数据,使用组合数据来最小化误报,并提供针对已知和未知威胁的全面保护。
-
-
-
-
-
-
-
-
-
搜索结果
30 条记录 (耗时 0.048 秒)
