-
公开(公告)号:US20110162070A1
公开(公告)日:2011-06-30
申请号:US12693765
申请日:2010-01-26
申请人: Sven Krasser , Yuchun Tang , Yuanchen He , Zhenyu Zhong
发明人: Sven Krasser , Yuchun Tang , Yuanchen He , Zhenyu Zhong
CPC分类号: G06F21/564 , G06F21/56
摘要: A computer network device receives a digital file and extracts a plurality of high level features from the file. The plurality of high level features are evaluated using a classifier to determine whether the file is benign or malicious. The file is forwarded to a requesting computer if the file is determined to be benign, and blocked if the file is determined to be malicious.
摘要翻译: 计算机网络设备接收数字文件并从文件中提取多个高级特征。 使用分类器评估多个高级特征以确定文件是良性还是恶意的。 如果文件被确定为良性,则将文件转发到请求计算机,如果该文件被确定为恶意文件,则该文件被阻止。
-
公开(公告)号:US08719939B2
公开(公告)日:2014-05-06
申请号:US12693765
申请日:2010-01-26
申请人: Sven Krasser , Yuchun Tang , Yuanchen He , Zhenyu Zhong
发明人: Sven Krasser , Yuchun Tang , Yuanchen He , Zhenyu Zhong
IPC分类号: H04L29/06
CPC分类号: G06F21/564 , G06F21/56
摘要: A computer network device receives a digital file and extracts a plurality of high level features from the file. The plurality of high level features are evaluated using a classifier to determine whether the file is benign or malicious. The file is forwarded to a requesting computer if the file is determined to be benign, and blocked if the file is determined to be malicious.
摘要翻译: 计算机网络设备接收数字文件并从文件中提取多个高级特征。 使用分类器评估多个高级特征以确定文件是良性还是恶意的。 如果文件被确定为良性,则将文件转发到请求计算机,如果该文件被确定为恶意文件,则该文件被阻止。
-
公开(公告)号:US20110191423A1
公开(公告)日:2011-08-04
申请号:US12696828
申请日:2010-01-29
申请人: Sven Krasser , Dmitri Alperovitch , Yuchun Tang , Yuanchen He , Jonathan Zdziarski , Mark Gilbert
发明人: Sven Krasser , Dmitri Alperovitch , Yuchun Tang , Yuanchen He , Jonathan Zdziarski , Mark Gilbert
IPC分类号: G06F15/173 , G06F15/16
CPC分类号: G06F21/552
摘要: A system derives a reputation for a plurality of network addresses, the reputation of each network address determined by analyzing a plurality of high-level email features related to one or more emails originating from the network address. The plurality of high-level email features include domain registration analysis, hashed term frequency indexing, persistent communication, address age, correlation analysis, zombie detection, and hash vault matching.
摘要翻译: 系统通过分析与源自网络地址的一个或多个电子邮件相关的多个高级电子邮件特征来确定多个网络地址的信誉,每个网络地址的声誉。 多个高级电子邮件功能包括域注册分析,散列术语频率索引,持久通信,地址年龄,相关分析,僵尸检测和哈希库匹配。
-
公开(公告)号:US08719352B2
公开(公告)日:2014-05-06
申请号:US12696828
申请日:2010-01-29
申请人: Sven Krasser , Dmitri Alperovitch , Yuchun Tang , Yuanchen He , Jonathan Zdziarski , Mark Gilbert
发明人: Sven Krasser , Dmitri Alperovitch , Yuchun Tang , Yuanchen He , Jonathan Zdziarski , Mark Gilbert
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: G06F21/552
摘要: A system derives a reputation for a plurality of network addresses, the reputation of each network address determined by analyzing a plurality of high-level email features related to one or more emails originating from the network address. The plurality of high-level email features include domain registration analysis, hashed term frequency indexing, persistent communication, address age, correlation analysis, zombie detection, and hash vault matching.
摘要翻译: 系统通过分析与源自网络地址的一个或多个电子邮件相关的多个高级电子邮件特征来确定多个网络地址的信誉,每个网络地址的声誉。 多个高级电子邮件功能包括域注册分析,散列术语频率索引,持久通信,地址年龄,相关分析,僵尸检测和哈希库匹配。
-
5.发明申请SYSTEM AND METHOD FOR BOTNET DETECTION BY COMPREHENSIVE EMAIL BEHAVIORAL ANALYSIS 审中-公开通过综合电子邮件行为分析进行网络检测的系统和方法公开(公告)号:US20130247192A1
公开(公告)日:2013-09-19
申请号:US13037988
申请日:2011-03-01
申请人: Sven Krasser , Yuchun Tang , Zhenyu Zhong
发明人: Sven Krasser , Yuchun Tang , Zhenyu Zhong
IPC分类号: G06F21/00
CPC分类号: H04L63/1425 , H04L2463/144
摘要: A method is provided in one example embodiment that includes receiving message sender traits associated with email senders, and receiving a dataset of known malware identifiers and network addresses from a spamtrap. The message sender traits may include behavior features and/or content resemblance factors in various embodiments. The method further includes classifying the email senders as malicious or benign based on the behavior features, and further classifying the malicious senders by malware identifiers based on similarity of content resemblance factors and the dataset of known malware identifiers and network addresses. In certain specific embodiments, a supervised classifier, such as a support vector machine, may be used to classify the malicious senders by malware identifiers.
摘要翻译: 在一个示例实施例中提供了一种方法,其包括接收与电子邮件发送者相关联的消息发送者特征,以及从垃圾邮件捕获接收已知恶意软件标识符和网络地址的数据集。 消息发送者特征可以包括各种实施例中的行为特征和/或内容相似性因素。 该方法还包括基于行为特征将电子邮件发送者分类为恶意或良性,并且基于内容相似性因素与已知恶意软件标识符和网络地址的数据集的恶意软件标识符进一步对恶意发送者进行分类。 在某些具体实施例中,监督分类器(例如支持向量机)可用于通过恶意软件标识符对恶意发送者进行分类。
-
公开(公告)号:US20150040218A1
公开(公告)日:2015-02-05
申请号:US14305877
申请日:2014-06-16
申请人: Dmitri Alperovitch , Nick Black , Jeremy Gould , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Nick Black , Jeremy Gould , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
CPC分类号: H04L63/0227 , G06K9/6202 , G06Q10/107 , H04L51/12 , H04L63/20
摘要: Methods and systems for operation upon one or more data processors for detecting image spam by detecting an image and analyzing the content of the image to determine whether the incoming communication comprises an unwanted communication.
摘要翻译: 用于通过检测图像并分析图像的内容来确定进入的通信是否包含不需要的通信的用于在一个或多个数据处理器上操作以检测图像垃圾邮件的方法和系统。
-
公开(公告)号:US20140366144A1
公开(公告)日:2014-12-11
申请号:US14306189
申请日:2014-06-16
申请人: Dmitri Alperovitch , Tomo Foote-Lennox , Jeremy Gould , Paula Greve , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Tomo Foote-Lennox , Jeremy Gould , Paula Greve , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
IPC分类号: H04L29/06
CPC分类号: H04L51/12 , G06F21/554 , G06Q10/107 , H04L41/0893 , H04L41/22 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1433 , H04L63/1441 , H04L63/1483
摘要: Methods and systems for assigning reputation to communications entities include collecting communications data from distributed agents, aggregating the communications data, analyzing the communications data and identifying relationships between communications entities based upon the communications data.
摘要翻译: 用于将声誉分配给通信实体的方法和系统包括从分布式代理收集通信数据,聚合通信数据,分析通信数据以及基于通信数据识别通信实体之间的关系。
-
公开(公告)号:US08561167B2
公开(公告)日:2013-10-15
申请号:US11626470
申请日:2007-01-24
申请人: Dmitri Alperovitch , Tomo Foote-Lennox , Paula Greve , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Tomo Foote-Lennox , Paula Greve , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Jonathan Alexander Zdziarski
IPC分类号: H04L29/06
CPC分类号: H04L63/1425 , H04L63/168
摘要: Methods and systems for operation upon one or more data processors for assigning reputation to web-based entities based upon previously collected data.
摘要翻译: 用于在一个或多个数据处理器上操作的方法和系统,用于基于先前收集的数据将信誉分配给基于web的实体。
-
公开(公告)号:US07949716B2
公开(公告)日:2011-05-24
申请号:US11626462
申请日:2007-01-24
申请人: Dmitri Alperovitch , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Jonathan Alexander Zdziarski
IPC分类号: G06F15/16
CPC分类号: H04L63/1425 , H04L51/12 , H04L63/1441
摘要: Methods and systems for operation upon one or more data processors for assigning a reputation to a messaging entity by analyzing the attributes of the entity, correlating the attributes with known attributes to define relationships between entities sharing attributes, and attributing a portion of the reputation of one related entity to the reputation of the other related entity.
摘要翻译: 用于在一个或多个数据处理器上操作的方法和系统,用于通过分析实体的属性来将信誉分配给消息传递实体,将属性与已知属性相关联,以定义共享属性的实体之间的关系,以及将一部分信誉归一化 相关实体与其他相关实体的声誉。
-
公开(公告)号:US20080178288A1
公开(公告)日:2008-07-24
申请号:US11626568
申请日:2007-01-24
申请人: Dmitri Alperovitch , Nick Black , Jeremy Gould , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Nick Black , Jeremy Gould , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
IPC分类号: G06F15/18
CPC分类号: H04L63/0227 , G06K9/6202 , G06Q10/107 , H04L51/12 , H04L63/20
摘要: Methods and systems for operation upon one or more data processors for detecting image spam by detecting an image and analyzing the content of the image to determine whether the incoming communication comprises an unwanted communication.
摘要翻译: 用于通过检测图像并分析图像的内容来确定进入的通信是否包含不需要的通信的用于在一个或多个数据处理器上操作以检测图像垃圾邮件的方法和系统。
-
-
-
-
-
-
-
-
-
搜索结果
61 条记录 (耗时 0.022 秒)
