-
61.发明授权Protecting sensitive web transactions using a communication channel associated with a user 有权使用与用户相关联的通信通道来保护敏感的Web事务公开(公告)号:US09112834B1
公开(公告)日:2015-08-18
申请号:US14146456
申请日:2014-01-02
发明人: Kyle Adams , Daniel J. Quinlan
IPC分类号: H04L29/06
CPC分类号: H04L63/04 , G06F21/31 , H04L63/08 , H04L63/123
摘要: A security device may receive, from a client device, a request associated with a server device. The security device may determine a communication channel and contact information for validating the request. The security device may provide validation information via the communication channel using the contact information. The security device may receive a validation response from the client device, and may determine whether the validation response is valid. The security device may selectively perform a first action or a second action based on determining whether the validation response is valid. The first action may be performed based on determining that the validation response is valid, and may include providing a validation indicator, with the request, to the server device. The second action may be performed based on determining that the validation response is not valid, and may include providing an invalidation indicator, with the request, to the server device.
摘要翻译: 安全设备可以从客户端设备接收与服务器设备相关联的请求。 安全设备可以确定用于验证请求的通信信道和联系信息。 安全设备可以使用联系人信息通过通信信道来提供验证信息。 安全设备可以从客户端设备接收验证响应,并且可以确定验证响应是否有效。 安全设备可以基于确定验证响应是否有效来选择性地执行第一动作或第二动作。 可以基于确定验证响应是有效的来执行第一动作,并且可以包括向服务器设备提供与请求有关的确认指示符。 可以基于确定验证响应无效来执行第二动作,并且可以包括向服务器设备提供带有请求的无效指示符。
-
公开(公告)号:US10467260B2
公开(公告)日:2019-11-05
申请号:US15396056
申请日:2016-12-30
IPC分类号: G06F17/30 , G06F16/28 , G06F16/35 , G06F9/451 , G06F16/182
摘要: A device may receive an instruction to classify software. The device may identify a group of one or more user interfaces associated with the software based on receiving the instruction to classify the software. The device may determine a group of one or more user interface signatures associated with the group of one or more user interfaces. A user interface signature may include information, associated with a user interface in the group of one or more user interfaces, that may be used to classify the software. The device may generate information that identifies a classification of the software based on the group of one or more user interface signatures and based on known signature information. The known signature information may include information that corresponds to a correct software classification. The device may output the information that identifies the classification of the software.
-
公开(公告)号:US10389740B2
公开(公告)日:2019-08-20
申请号:US15620388
申请日:2017-06-12
摘要: A device may receive a trigger to determine whether a malicious file is operating on a client device. The device may determine a network activity profile associated with the malicious file based on receiving the trigger to determine whether the malicious file is operating on the client device. The network activity profile may include information regarding network activity associated with the malicious file when the malicious file is executed in a testing environment. The device may monitor network activity associated with the client device. The device may determine that the network activity associated with the client device matches the network activity profile associated with the malicious file based on monitoring the network activity associated with the client device. The device may provide information indicating that the network activity associated with the client device matches the network activity profile associated with the malicious file.
-
公开(公告)号:US10382479B2
公开(公告)日:2019-08-13
申请号:US15707325
申请日:2017-09-18
发明人: Kyle Adams , Daniel J. Quinlan
IPC分类号: H04L29/06
摘要: A system may determine to perform an internal and an external malware detection operation to detect a malware infection associated with a client device. The system may perform the internal operation by modifying an environment, executing on a particular device, to form a modified environment. The system may perform the external operation by performing a communication from the particular device. The system may monitor the modified environment for a first behavior indicative of the malware infection, and may monitor a result of performing the communication for a second behavior indicative of the malware infection. The system may detect that the first or second behavior has occurred. The system may provide a notification that the client device is infected with malware based on detecting that the first or second behavior has occurred. The notification may cause one or more network devices to block network traffic to or from the client device.
-
65.发明授权公开(公告)号:US10091222B1
公开(公告)日:2018-10-02
申请号:US14674251
申请日:2015-03-31
摘要: A device may identify exfiltration information to be used to detect data exfiltration. The exfiltration information may be associated with a file being tested to determine whether the file exfiltrates data. The exfiltration information may include a resource identifier that identifies a resource to be used to detect the data exfiltration. The device may determine that the resource, to be used to detect the data exfiltration, has been accessed. The device may identify, based on determining that the resource has been accessed, the file associated with the exfiltration information. The device may perform an action, associated with the file, to counteract the data exfiltration based on determining that the resource has been accessed and based on identifying the file.
-
公开(公告)号:US10075453B2
公开(公告)日:2018-09-11
申请号:US14674113
申请日:2015-03-31
CPC分类号: H04L63/1408 , G06F21/56 , G06F21/564 , G06F21/577 , H04L63/0876
摘要: A device may determine a first set of hash values corresponding to a first set of files stored by a plurality of client devices. The device may analyze information associated with the first set of hash values to determine a second set of hash values corresponding to a second set of files to be analyzed. The second set of hash values may be different from the first set of hash values. The device may prioritize the second set of hash values to form a prioritized set of hash values corresponding to a prioritized set of files, of the second set of files, to be analyzed. The device may request the prioritized set of files from one or more client devices of the plurality of client devices. The device may receive the prioritized set of files, and may cause the prioritized set of files to be analyzed.
-
公开(公告)号:US09953164B2
公开(公告)日:2018-04-24
申请号:US15454676
申请日:2017-03-09
CPC分类号: G06F21/566 , G06F21/53 , G06F21/564 , G06F2221/034 , H04L63/1416 , H04L63/145
摘要: A device may receive a trigger to determine whether one or more client devices, of a set of client devices, are infected by a malicious file. The device may generate file identification information associated with the malicious file based on receiving the trigger to determine whether the one or more client devices are infected by the malicious file. The device may obtain remote access to the one or more client devices using a connection tool based on receiving the trigger to determine whether the one or more client devices are infected by the malicious file. The device may obtain information, associated with the one or more client devices, using the remote access. The device may provide information indicating whether the one or more client devices are infected by the malicious file based on the file identification information and the information associated with the one or more client devices.
-
公开(公告)号:US20170177869A1
公开(公告)日:2017-06-22
申请号:US15454676
申请日:2017-03-09
CPC分类号: G06F21/566 , G06F21/53 , G06F21/564 , G06F2221/034 , H04L63/1416 , H04L63/145
摘要: A device may receive a trigger to determine whether one or more client devices, of a set of client devices, are infected by a malicious file. The device may generate file identification information associated with the malicious file based on receiving the trigger to determine whether the one or more client devices are infected by the malicious file. The device may obtain remote access to the one or more client devices using a connection tool based on receiving the trigger to determine whether the one or more client devices are infected by the malicious file. The device may obtain information, associated with the one or more client devices, using the remote access. The device may provide information indicating whether the one or more client devices are infected by the malicious file based on the file identification information and the information associated with the one or more client devices.
-
公开(公告)号:US09679141B2
公开(公告)日:2017-06-13
申请号:US14674426
申请日:2015-03-31
IPC分类号: G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00 , G06F21/56 , G06F21/51 , G06F21/55 , G06F21/83
CPC分类号: G06F21/568 , G06F21/51 , G06F21/554 , G06F21/566 , G06F21/567 , G06F21/83 , G06F2221/034
摘要: A device may detect or emulate a sequence of keystrokes to be used to detect a keystroke logger application. The device may determine a sequence of characters associated with the sequence of keystrokes. The sequence of characters may correspond to the sequence of keystrokes or a portion of the sequence of keystrokes. The device may search a memory for the sequence of characters. The device may determine that the sequence of characters is stored in the memory based on searching the memory for the sequence of characters. The device may perform an action to counteract the keystroke logger application based on determining that the sequence of characters is stored in the memory.
-
公开(公告)号:US09654496B1
公开(公告)日:2017-05-16
申请号:US14674269
申请日:2015-03-31
CPC分类号: H04L63/145 , G06F21/56 , G06F21/567 , G06F2221/034 , H04L63/1408
摘要: A device may detect a suspicious activity. The device may automatically obtain a suspect object from a client device that is associated with the suspicious activity and based on detecting the suspicious activity. The suspect object may be an object that is possibly associated with the suspicious activity. The device may determine that the suspect object is malicious. The device may perform an action based on determining that the suspect object is malicious.
-
-
-
-
-
-
-
-
-
搜索结果
78 条记录 (耗时 0.024 秒)
