公开(公告)号：US09270689B1

公开(公告)日：2016-02-23

申请号：US13529134

申请日：2012-06-21

申请人： Jisheng Wang ,  Daniel Quinlan ,  Lee Jones

发明人： Jisheng Wang ,  Daniel Quinlan ,  Lee Jones

IPC分类号： H04L29/06

CPC分类号： H04L63/1408 ,  H04L63/145

摘要： Systems and methods are provided that enable probabilistic application of data traffic scanning in an effort to catch malicious software or code being carried by the data traffic. The methodology and systems operate by monitoring data traffic in an data network via an interface with the data network, calculating a first conditional probability that content in first given data traffic being monitored is malicious, calculating a second conditional probability that content in second given data traffic being monitored is malicious, ranking the first and second conditional probabilities resulting in ranked conditional probabilities, and performing at least one of anti-virus (AV) or anti-malware (AM) scanning of the content of the first or second given data traffic depending on whose conditional probability is ranked higher in the ranked conditional probabilities.

摘要翻译： 提供了系统和方法，其能够概率地应用数据流量扫描以努力捕获由数据业务携带的恶意软件或代码。 所述方法和系统通过经由与数据网络的接口监视数据网络中的数据业务来运​​行，计算被监控的第一给定数据业务中的内容是恶意的第一条件概率，计算第二给定数据业务中的内容的第二条件概率 被监视的是恶意的，排列导致排名的条件概率的第一和第二条件概率，并且执行针对第一或第二给定数据流量的内容的反病毒（AV）或反恶意软件（AM）扫描中的至少一个依赖 其条件概率在排名的条件概率中排名较高。

公开(公告)号：US08432919B2

公开(公告)日：2013-04-30

申请号：US12392186

申请日：2009-02-25

申请人： Cetin Seren ,  Jisheng Wang ,  Sharad Ahlawat ,  Yingqi Xu ,  Vijaya Sarathy Kasi

发明人： Cetin Seren ,  Jisheng Wang ,  Sharad Ahlawat ,  Yingqi Xu ,  Vijaya Sarathy Kasi

IPC分类号： H04L12/28

CPC分类号： H04L65/80 ,  G06N99/005 ,  H04L43/028 ,  H04L43/04 ,  H04L43/16 ,  H04L45/14 ,  H04L45/74 ,  H04L47/2441 ,  H04L47/2475 ,  H04L47/2483 ,  H04L61/2007 ,  H04L65/60 ,  H04L65/602 ,  H04L67/02 ,  H04L69/22

摘要： Systems, methods, and other embodiments associated with data stream classification are described. One example method includes identifying packets associated with the data stream. The example method may also include updating a set of characterization data associated with the data stream based on information associated with a packet. The example method may also include assigning a data stream classifier to the data stream by comparing characterization data to identification data upon determining that the set of characterization data indicates that the data stream is able to be classified. The example method may also include providing a signal associated with the data stream classifier.

公开(公告)号：USD565800S1

公开(公告)日：2008-04-01

申请号：US29269605

申请日：2006-12-05

申请人： Jisheng Wang

设计人： Jisheng Wang