-
公开(公告)号:US08966620B2
公开(公告)日:2015-02-24
申请号:US12789250
申请日:2010-05-27
申请人: Douglas J. Hines , Mihai Costea , Yuxiang Xu , Harsh S. Dangayach , Krishna Vitaldevara , Eliot C. Gillum , Jason D. Walter , Aleksander R. Kolcz
发明人: Douglas J. Hines , Mihai Costea , Yuxiang Xu , Harsh S. Dangayach , Krishna Vitaldevara , Eliot C. Gillum , Jason D. Walter , Aleksander R. Kolcz
IPC分类号: G06F21/55
CPC分类号: G06F21/552
摘要: Campaign detection techniques are described. In implementations, a signature is computed for each of a plurality of emails to be communicated by a service provider to respective intended recipients. A determination is made that two or more of the plurality of emails is similar based on the respective signatures. Responsive to a finding that a number of similar emails exceeds a threshold, an indication is output that the similar emails have a likelihood of being involved in a spam campaign.
摘要翻译: 描述了运动检测技术。 在实现中,针对要由服务提供商传送到各个预期接收者的多个电子邮件中的每一个计算签名。 基于相应的签名确定多个电子邮件中的两个或多个是相似的。 响应于一些类似的电子邮件超过阈值的发现,输出了类似的电子邮件可能涉及垃圾邮件活动的指示。
-
公开(公告)号:US20110296524A1
公开(公告)日:2011-12-01
申请号:US12789250
申请日:2010-05-27
申请人: Douglas J. Hines , Mihai Costea , Yuxiang Xu , Harsh S. Dangayach , Krishna Vitaldevara , Eliot C. Gillum , Jason D. Walter , Aleksander R. Kolcz
发明人: Douglas J. Hines , Mihai Costea , Yuxiang Xu , Harsh S. Dangayach , Krishna Vitaldevara , Eliot C. Gillum , Jason D. Walter , Aleksander R. Kolcz
CPC分类号: G06F21/552
摘要: Campaign detection techniques are described. In implementations, a signature is computed for each of a plurality of emails to be communicated by a service provider to respective intended recipients. A determination is made that two or more of the plurality of emails is similar based on the respective signatures. Responsive to a finding that a number of similar emails exceeds a threshold, an indication is output that the similar emails have a likelihood of being involved in a spam campaign.
摘要翻译: 描述了运动检测技术。 在实现中,针对要由服务提供商传送到各个预期接收者的多个电子邮件中的每一个计算签名。 基于相应的签名确定多个电子邮件中的两个或多个是相似的。 响应于一些类似的电子邮件超过阈值的发现,输出了类似的电子邮件可能涉及垃圾邮件活动的指示。
-
公开(公告)号:US20130086180A1
公开(公告)日:2013-04-04
申请号:US13250664
申请日:2011-09-30
申请人: Paul M. Midgen , Vasantha K. Vemula , Krishna Vitaldevara , Jason D. Walter , Eliot C. Gillum , Mihai Costea , Douglas J. Hines , Wei Jiang , Malcolm H. Davis , Samuel J. L. Albert , Michael James Ahiakpor
发明人: Paul M. Midgen , Vasantha K. Vemula , Krishna Vitaldevara , Jason D. Walter , Eliot C. Gillum , Mihai Costea , Douglas J. Hines , Wei Jiang , Malcolm H. Davis , Samuel J. L. Albert , Michael James Ahiakpor
IPC分类号: G06F15/16
CPC分类号: H04L51/22 , G06F3/0482 , G06F3/04842 , G06F17/30601 , G06F17/30707 , G06Q10/107 , H04L51/14
摘要: Message management and classification techniques are described. In one or more implementations, a message received from a sender for delivery via a user account is examined to extract one or more features of the message. A determination is then made as to whether the message corresponds to one or more categories based on the extracted features, the categories usable to enable features to be applied to the message in a user interface.
摘要翻译: 描述消息管理和分类技术。 在一个或多个实现中,检查从发送者接收的用于经由用户帐户递送的消息以提取消息的一个或多个特征。 然后,基于所提取的特征,确定消息是否对应于一个或多个类别,可用于使特征能够应用于用户界面中的消息的类别。
-
公开(公告)号:US09292600B2
公开(公告)日:2016-03-22
申请号:US13250664
申请日:2011-09-30
申请人: Paul M. Midgen , Vasantha K. Vemula , Krishna Vitaldevara , Jason D. Walter , Eliot C. Gillum , Mihai Costea , Douglas J. Hines , Wei Jiang , Malcolm H. Davis , Samuel J. L. Albert , Michael James Ahiakpor
发明人: Paul M. Midgen , Vasantha K. Vemula , Krishna Vitaldevara , Jason D. Walter , Eliot C. Gillum , Mihai Costea , Douglas J. Hines , Wei Jiang , Malcolm H. Davis , Samuel J. L. Albert , Michael James Ahiakpor
CPC分类号: H04L51/22 , G06F3/0482 , G06F3/04842 , G06F17/30601 , G06F17/30707 , G06Q10/107 , H04L51/14
摘要: Message management and classification techniques are described. In one or more implementations, a message received from a sender for delivery via a user account is examined to extract one or more features of the message. A determination is then made as to whether the message corresponds to one or more categories based on the extracted features, the categories usable to enable features to be applied to the message in a user interface.
摘要翻译: 描述消息管理和分类技术。 在一个或多个实现中,检查从发送者接收的用于经由用户帐户递送的消息以提取消息的一个或多个特征。 然后,基于所提取的特征,确定消息是否对应于一个或多个类别,可用于使特征能够应用于用户界面中的消息的类别。
-
公开(公告)号:US20130185791A1
公开(公告)日:2013-07-18
申请号:US13350806
申请日:2012-01-15
申请人: Yinglian Xie , Fang Yu , Qifa Ke , Martin Abadi , Eliot C. Gillum , Krishna Vitaldevara , Jason D. Walter
发明人: Yinglian Xie , Fang Yu , Qifa Ke , Martin Abadi , Eliot C. Gillum , Krishna Vitaldevara , Jason D. Walter
IPC分类号: G06F21/00
CPC分类号: G06F21/316 , G06F21/33 , G06Q50/01
摘要: Trusted user accounts of an application provider are determined. Graphs, such as trees, are created with each node corresponding to a trusted account. Each of the nodes is associated with a vouching quota, or the nodes may share a vouching quota. Untrusted user accounts are determined. For each of these untrusted accounts, a trusted user account that has a social networking relationship is determined. If the node corresponding to the trusted user account has enough vouching quota to vouch for the untrusted user account, then the quota is debited, a node is added for the untrusted user account to the graph, and the untrusted user account is vouched for. If not, available vouching quota may be borrowed from other nodes in the graph.
摘要翻译: 确定应用程序提供程序的可信用户帐户。 使用与受信任帐户相对应的每个节点来创建诸如树之类的图形。 每个节点都与一个备份配额相关联,或者节点可以共享一个备份配额。 不信任的用户帐户被确定。 对于每个这些不受信任的帐户,确定具有社交网络关系的可信用户帐户。 如果与受信任用户帐户相对应的节点具有足够的备用配额来保证不受信任的用户帐户,则会将配额扣除,为图中不可信任的用户帐户添加一个节点,并为不受信任的用户帐户进行验证。 如果不是,可以从图中的其他节点借用可用的支票配额。
-
公开(公告)号:US20120246720A1
公开(公告)日:2012-09-27
申请号:US13070497
申请日:2011-03-24
申请人: Yinglian Xie , Fang Yu , Martin Abadi , Eliot C. Gillum , Junxian Huang , Zhuoqing Morley Mao , Jason D. Walter , Krishna Vitaldevara
发明人: Yinglian Xie , Fang Yu , Martin Abadi , Eliot C. Gillum , Junxian Huang , Zhuoqing Morley Mao , Jason D. Walter , Krishna Vitaldevara
IPC分类号: G06F21/00
CPC分类号: H04L63/145 , H04L51/12
摘要: Detection of user accounts associated with spammer attacks may be performed by constructing a social graph of email users. Biggest connected components (BCC) of the social graph may be used to identify legitimate user accounts, as the majority of the users in the biggest connected components are legitimate users. BCC users may be used to identify more legitimate users. Using degree-based detection techniques and PageRank based detection techniques, the hijacked user accounts and spammer user accounts may be identified. The users' email sending and receiving behaviors may also be examined, and the subgraph structure may be used to detect stealthy attackers. From the social graph analysis, legitimate user accounts, malicious user accounts, and compromised user accounts can be identified.
摘要翻译: 可以通过构建电子邮件用户的社交图来执行与垃圾邮件发送者攻击相关联的用户帐户的检测。 社交图的最大连接组件(BCC)可用于识别合法用户帐户,因为最大连接组件中的大多数用户是合法用户。 BCC用户可能用于识别更多的合法用户。 使用基于程度的检测技术和基于PageRank的检测技术,可以识别被劫持的用户帐户和垃圾邮件发送者用户帐户。 还可以检查用户的电子邮件发送和接收行为,并且子图结构可以用于检测隐身攻击者。 从社交图分析,可以识别合法用户帐户,恶意用户帐户和受影响的用户帐户。
-
公开(公告)号:US20120259929A1
公开(公告)日:2012-10-11
申请号:US13084132
申请日:2011-04-11
IPC分类号: G06F15/16
CPC分类号: H04L51/12
摘要: Geo-data spam filters are described. In one or more implementations, origin data and language data of a message are evaluated to establish a score for the message indicating a likelihood that the message is spam. The evaluation includes comparing the origin data and the language data to ranked lists indicating message origins and languages with which a respective message recipient interacts positively and ranked lists indicating message origins and languages with which the respective recipient interacts negatively. Interactions of the respective recipient with previously sent messages may be tracked to form these lists. Based on the score established by evaluating the origin data and the language data of the message, the message is filtered for delivery.
摘要翻译: 描述了地理数据垃圾邮件过滤器。 在一个或多个实现中,消息的原始数据和语言数据被评估以建立用于指示消息是垃圾邮件的可能性的消息的分数。 该评估包括将原始数据和语言数据与排列列表进行比较,所述排序列表指示相应消息收件人与其相互作用的消息来源和语言,以及指示相应接收者与其交互的消息起源和语言的排名列表。 可以跟踪相应接收者与先前发送的消息的交互以形成这些列表。 基于通过评估消息的原始数据和语言数据建立的分数,消息被过滤以便传送。
-
公开(公告)号:US08745738B2
公开(公告)日:2014-06-03
申请号:US13350806
申请日:2012-01-15
申请人: Yinglian Xie , Fang Yu , Qifa Ke , Martin Abadi , Eliot C. Gillum , Krishna Vitaldevara , Jason D. Walter
发明人: Yinglian Xie , Fang Yu , Qifa Ke , Martin Abadi , Eliot C. Gillum , Krishna Vitaldevara , Jason D. Walter
CPC分类号: G06F21/316 , G06F21/33 , G06Q50/01
摘要: Trusted user accounts of an application provider are determined. Graphs, such as trees, are created with each node corresponding to a trusted account. Each of the nodes is associated with a vouching quota, or the nodes may share a vouching quota. Untrusted user accounts are determined. For each of these untrusted accounts, a trusted user account that has a social networking relationship is determined. If the node corresponding to the trusted user account has enough vouching quota to vouch for the untrusted user account, then the quota is debited, a node is added for the untrusted user account to the graph, and the untrusted user account is vouched for. If not, available vouching quota may be borrowed from other nodes in the graph.
摘要翻译: 确定应用程序提供程序的可信用户帐户。 使用与受信任帐户相对应的每个节点来创建诸如树之类的图形。 每个节点都与一个备份配额相关联,或者节点可以共享一个备份配额。 不信任的用户帐户被确定。 对于每个这些不受信任的帐户,确定具有社交网络关系的可信用户帐户。 如果与受信任用户帐户相对应的节点具有足够的备用配额来保证不受信任的用户帐户,则会将配额扣除,为图中不可信任的用户帐户添加一个节点,并为不受信任的用户帐户进行验证。 如果不是,可以从图中的其他节点借用可用的支票配额。
-
公开(公告)号:US20110296003A1
公开(公告)日:2011-12-01
申请号:US12791777
申请日:2010-06-01
申请人: Robert L. McCann , Eliot C. Gillum , Krishna Vitaldevara , Jason D. Walter , Linda A. McColm , Ivan Osipkov
发明人: Robert L. McCann , Eliot C. Gillum , Krishna Vitaldevara , Jason D. Walter , Linda A. McColm , Ivan Osipkov
IPC分类号: G06F15/16
CPC分类号: G06F21/316 , G06F21/55 , H04L63/1416 , H04L63/168 , H04L67/22
摘要: User account behavior techniques are described. In implementations, a determination is made as to whether interaction with a service provider via a user account deviates from a model. The model is based on behavior that was previously observed as corresponding to the user account. Responsive to a determination that the interaction deviates from the model, the user account is flagged as being potentially compromised by a malicious party.
摘要翻译: 描述用户帐户行为技术。 在实现中,确定与服务提供商经由用户帐户的交互是否偏离模型。 该模型基于以前观察到的对应于用户帐户的行为。 响应于确定相互作用偏离模型,用户帐户被标记为被恶意方潜在地损害。
-
公开(公告)号:US08626856B2
公开(公告)日:2014-01-07
申请号:US13084132
申请日:2011-04-11
IPC分类号: G06F15/16
CPC分类号: H04L51/12
摘要: Geo-data spam filters are described. In one or more implementations, origin data and language data of a message are evaluated to establish a score for the message indicating a likelihood that the message is spam. The evaluation includes comparing the origin data and the language data to ranked lists indicating message origins and languages with which a respective message recipient interacts positively and ranked lists indicating message origins and languages with which the respective recipient interacts negatively. Interactions of the respective recipient with previously sent messages may be tracked to form these lists. Based message, the message is filtered for delivery. on the score established by evaluating the origin data and the language data of the
摘要翻译: 描述了地理数据垃圾邮件过滤器。 在一个或多个实现中,消息的原始数据和语言数据被评估以建立用于指示消息是垃圾邮件的可能性的消息的分数。 该评估包括将原始数据和语言数据与排列列表进行比较,所述排序列表指示相应消息收件人与其相互作用的消息来源和语言,以及指示相应接收者与其交互的消息起源和语言的排名列表。 可以跟踪相应接收者与先前发送的消息的交互以形成这些列表。 基于消息,消息被过滤以进行传递。 通过评估原始数据和语言数据建立的评分
-
-
-
-
-
-
-
-
-