公开(公告)号：US20060123478A1

公开(公告)日：2006-06-08

申请号：US11129665

申请日：2005-05-13

申请人： Paul Rehfuss ,  Joshua Goodman ,  Robert Rounthwaite ,  Manav Mishra ,  Geoffrey Hulten ,  Kenneth Richards ,  Aaron Averbuch ,  Anthony Penta ,  Roderic Deyo

发明人： Paul Rehfuss ,  Joshua Goodman ,  Robert Rounthwaite ,  Manav Mishra ,  Geoffrey Hulten ,  Kenneth Richards ,  Aaron Averbuch ,  Anthony Penta ,  Roderic Deyo

IPC分类号： G06F12/14

CPC分类号： H04L63/1408 ,  H04L67/02

摘要： Phishing detection, prevention, and notification is described. In an embodiment, a messaging application facilitates communication via a messaging user interface, and receives a communication, such as an email message, from a domain. A phishing detection module detects a phishing attack in the communication by determining that the domain is similar to a known phishing domain, or by detecting suspicious network properties of the domain. In another embodiment, a Web browsing application receives content, such as data for a Web page, from a network-based resource, such as a Web site or domain. The Web browsing application initiates a display of the content, and a phishing detection module detects a phishing attack in the content by determining that a domain of the network-based resource is similar to a known phishing domain, or that an address of the network-based resource from which the content is received has suspicious network properties.

公开(公告)号：US20060123464A1

公开(公告)日：2006-06-08

申请号：US11129222

申请日：2005-05-13

申请人： Joshua Goodman ,  Paul Rehfuss ,  Robert Rounthwaite ,  Manav Mishra ,  Geoffrey Hulten ,  Kenneth Richards ,  Aaron Averbuch ,  Anthony Penta ,  Roderic Deyo

发明人： Joshua Goodman ,  Paul Rehfuss ,  Robert Rounthwaite ,  Manav Mishra ,  Geoffrey Hulten ,  Kenneth Richards ,  Aaron Averbuch ,  Anthony Penta ,  Roderic Deyo

IPC分类号： H04L9/32

CPC分类号： H04L63/1416 ,  H04L51/12 ,  H04L63/1466 ,  H04L63/1483

摘要： Phishing detection, prevention, and notification is described. In an embodiment, a messaging application facilitates communication via a messaging user interface, and receives a communication, such as an email message, from a domain. A phishing detection module detects a phishing attack in the communication by determining that the domain is similar to a known phishing domain, or by detecting suspicious network properties of the domain. In another embodiment, a Web browsing application receives content, such as data for a Web page, from a network-based resource, such as a Web site or domain. The Web browsing application initiates a display of the content, and a phishing detection module detects a phishing attack in the content by determining that a domain of the network-based resource is similar to a known phishing domain, or that an address of the network-based resource from which the content is received has suspicious network properties.

公开(公告)号：US20070039038A1

公开(公告)日：2007-02-15

申请号：US11537641

申请日：2006-09-30

申请人： Joshua Goodman ,  Paul Rehfuss ,  Robert Rounthwaite ,  Manav Mishra ,  Geoffrey Hulten ,  Kenneth Richards ,  Aaron Averbuch ,  Anthony Penta ,  Roderic Deyo

发明人： Joshua Goodman ,  Paul Rehfuss ,  Robert Rounthwaite ,  Manav Mishra ,  Geoffrey Hulten ,  Kenneth Richards ,  Aaron Averbuch ,  Anthony Penta ,  Roderic Deyo

IPC分类号： H04L9/32 ,  G06K9/00

CPC分类号： H04L63/1408 ,  H04L63/1441 ,  H04L63/1483

摘要： Phishing detection, prevention, and notification is described. In an embodiment, a messaging application facilitates communication via a messaging user interface, and receives a communication, such as an email message, from a domain. A phishing detection module detects a phishing attack in the communication by determining that the domain is similar to a known phishing domain, or by detecting suspicious network properties of the domain. In another embodiment, a Web browsing application receives content, such as data for a Web page, from a network-based resource, such as a Web site or domain. The Web browsing application initiates a display of the content, and a phishing detection module detects a phishing attack in the content by determining that a domain of the network-based resource is similar to a known phishing domain, or that an address of the network-based resource from which the content is received has suspicious network properties.

摘要翻译： 描述网络钓鱼检测，预防和通知。 在一个实施例中，消息收发应用促进通过消息收发用户界面的通信，并从域接收诸如电子邮件消息之类的通信。 钓鱼检测模块通过确定域与已知的网络钓鱼域相似，或通过检测域的可疑网络属性来检测通信中的网络钓鱼攻击。 在另一个实施例中，Web浏览应用程序从基于网络的资源（诸如网站或域）接收诸如网页的数据的内容。 Web浏览应用程序启动内容的显示，并且网络钓鱼检测模块通过确定基于网络的资源的域类似于已知的网络钓鱼域来检测内容中的网络钓鱼攻击，或者网络 - 收到内容的基于资源的资源具有可疑的网络属性。

公开(公告)号：US20070192855A1

公开(公告)日：2007-08-16

申请号：US11335902

申请日：2006-01-18

申请人： Geoffrey Hulten ,  Paul Rehfuss ,  Robert Rounthwaite ,  Joshua Goodman ,  Gopalakrishnan Seshadrinathan ,  Anthony Penta ,  Manav Mishra ,  Roderic Deyo ,  Elliott Haber ,  David Snelling

发明人： Geoffrey Hulten ,  Paul Rehfuss ,  Robert Rounthwaite ,  Joshua Goodman ,  Gopalakrishnan Seshadrinathan ,  Anthony Penta ,  Manav Mishra ,  Roderic Deyo ,  Elliott Haber ,  David Snelling

IPC分类号： G06F12/14

CPC分类号： H04L63/1483 ,  G06F17/30887 ,  H04L63/08 ,  H04L63/1441

摘要： Described is a technology by which phishing-related data sources are processed into aggregated data and a given site evaluated the aggregated data using a predictive model to automatically determine whether the given site is likely to be a phishing site. The predictive model may be built using machine learning based on training data, e.g., including known phishing sites and/or known non-phishing sites. To determine whether an object corresponding to a site is likely a phishing-related object are described, various criteria are evaluated, including one or more features of the object when evaluated. The determination is output in some way, e.g., made available to a reputation service, used to block access to a site or warn a user before allowing access, and/or used to assist a hand grader in being more efficient in evaluating sites.

摘要翻译： 描述了一种将钓鱼相关数据源处理为聚合数据的技术，给定的站点使用预测模型评估聚合数据，以自动确定给定站点是否可能是钓鱼站点。 可以使用基于训练数据的机器学习来构建预测模型，例如包括已知的网络钓鱼站点和/或已知的非网络钓鱼站点。 为了确定对应于站点的对象是否可能是与钓鱼相关的对象，评估了各种标准，包括评估时对象的一个​​或多个特征。 该确定以某种方式输出，例如可用于信誉服务，用于阻止对站点的访问或在允许访问之前警告用户，和/或用于帮助平手机更有效地评估站点。

公开(公告)号：US20080140679A1

公开(公告)日：2008-06-12

申请号：US11608878

申请日：2006-12-11

申请人： Roderic Deyo ,  Sandeep Sahasrabudhe ,  Sunil Swami ,  Brian D. Price

发明人： Roderic Deyo ,  Sandeep Sahasrabudhe ,  Sunil Swami ,  Brian D. Price

IPC分类号： G06F17/30

CPC分类号： G06F17/30882 ,  G06F17/30867 ,  G06F2216/03

摘要： Systems and methods that integrate user assigned association among a plurality of resources or entities. The subject innovation employs an association component that relates such resources or entities, based on aggregate of user notions that are assigned for relationships; and/or based on how users perceive existence of relationships among such resources. Accordingly, resources can be related (e.g., linked, matched, tagged and the like) based on relevance of collective user behavior during tagging.

摘要翻译： 在多个资源或实体之间集成用户分配关联的系统和方法。 本科创新采用了一种关联组件，该关联组件基于为关系分配的用户概念的集合来关联这些资源或实体; 和/或基于用户如何看待这些资源之间的关系的存在。 因此，基于标签期间的集体用户行为的相关性，资源可以相关（例如，链接，匹配，标记等）。