公开(公告)号：US08726392B1

公开(公告)日：2014-05-13

申请号：US13434416

申请日：2012-03-29

申请人： Bruce McCorkendale ,  Xue Feng Tian ,  Sheng Gong ,  Xiaole Zhu ,  Jun Mao ,  Qingchun Meng ,  Ge Hua Huang ,  Wei Guo Eric Hu

发明人： Bruce McCorkendale ,  Xue Feng Tian ,  Sheng Gong ,  Xiaole Zhu ,  Jun Mao ,  Qingchun Meng ,  Ge Hua Huang ,  Wei Guo Eric Hu

IPC分类号： G06F12/14 ,  G06F11/00 ,  G06F12/16 ,  G08B23/00 ,  G06F11/30

CPC分类号： G06F21/52 ,  G06F11/3604 ,  G06F21/56 ,  G06F21/563 ,  G06F21/60

摘要： A computer-implemented method for combining static and dynamic code analysis may include 1) identifying executable code that is to be analyzed to determine whether the executable code is capable of leaking sensitive data, 2) performing a static analysis of the executable code to identify one or more objects which the executable code may use to transfer sensitive data, the static analysis being performed by analyzing the executable code without executing the executable code, 3) using a result of the static analysis to tune a dynamic analysis to track the one or more objects identified during the static analysis, and 4) performing the dynamic analysis by, while the executable code is being executed, tracking the one or more objects identified during the static analysis to determine whether the executable code leaks sensitive data via the one or more objects. Various other methods, systems, and computer-readable media are also disclosed.

摘要翻译： 用于组合静态和动态代码分析的计算机实现的方法可以包括1）识别待分析的可执行代码以确定可执行代码是否能够泄漏敏感数据，2）执行可执行代码的静态分析以识别一个 或更多的可执行代码可用于传送敏感数据的对象，通过分析可执行代码而不执行可执行代码来执行静态分析; 3）使用静态分析的结果来调整动态分析以跟踪一个或多个 在静态分析期间识别的对象，以及4）在执行可执行代码的同时执行动态分析，跟踪在静态分析期间识别的一个或多个对象，以确定可执行代码是否经由一个或多个对象泄漏敏感数据 。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US08726386B1

公开(公告)日：2014-05-13

申请号：US13422702

申请日：2012-03-16

申请人： Bruce McCorkendale ,  Xue Feng Tian ,  Sheng Gong ,  Xiaole Zhu ,  Jun Mao ,  Qingchun Meng ,  Guilin Hu ,  Ge Hua Huang

发明人： Bruce McCorkendale ,  Xue Feng Tian ,  Sheng Gong ,  Xiaole Zhu ,  Jun Mao ,  Qingchun Meng ,  Guilin Hu ,  Ge Hua Huang

IPC分类号： G06F11/00

CPC分类号： G06F21/629 ,  G06F21/554 ,  H04W12/12

摘要： A computer-implemented method for detecting malware may include 1) identifying an application configured to use a permission on a mobile computing platform, the permission enabling the application to access a feature of the mobile computing platform, 2) determining that the application is configured to use the permission while executing as a background application on the mobile computing platform, 3) determining that the use of the permission is suspect based on the application being configured to use the permission while executing as the background application, and 4) performing a remediation action in response to determining that the use of the permission is suspect. Various other methods, systems, and computer-readable media are also disclosed.

摘要翻译： 用于检测恶意软件的计算机实现的方法可以包括：1）识别配置为在移动计算平台上使用许可的应用，允许应用访问移动计算平台的特征的许可，2）确定应用被配置为 在所述移动计算平台上作为后台应用程序执行时，使用所述权限; 3）根据所述应用被配置为在执行所述后台应用时使用所述权限，确定所述权限的使用是可疑的，以及4）执行修复动作 以确定使用权限是可疑的。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US08869305B1

公开(公告)日：2014-10-21

申请号：US13240929

申请日：2011-09-22

申请人： Ge Hua Huang

发明人： Ge Hua Huang

IPC分类号： G06F21/00 ,  H04L29/06 ,  G06F21/62 ,  G06F21/60

CPC分类号： H04L63/107 ,  G06F21/31 ,  G06F21/604 ,  G06F21/6245 ,  G06F2221/2111 ,  H04L63/083

摘要： A computer-implemented method may include maintaining a set of password-protection policies configured to prevent unauthorized access to a mobile device at different physical locations. The computer-implemented method may also include identifying a current physical location of the mobile device and searching a database that stores the set of password-protection policies for a particular password-protection policy that corresponds to the current physical location of the mobile device. The computer-implemented method may further include identifying, based on the search of the database, the particular password-protection policy that corresponds to the current physical location of the mobile device and then implementing the particular password-protection policy on the mobile device in response to the identification of the particular password-protection policy. Various other methods, systems, and computer-readable media are also disclosed.

摘要翻译： 计算机实现的方法可以包括维护一组密码保护策略，其被配置为防止在不同物理位置的未经授权的访问移动设备。 计算机实现的方法还可以包括识别移动设备的当前物理位置并搜索存储针对对应于移动设备的当前物理位置的特定密码保护策略的一组密码保护策略的数据库。 计算机实现的方法还可以包括基于对数据库的搜索来识别对应于移动设备的当前物理位置的特定密码保护策略，然后响应于在移动设备上实现特定的密码保护策略 以识别特定的密码保护政策。 还公开了各种其它方法，系统和计算机可读介质。