-
公开(公告)号:US08719939B2
公开(公告)日:2014-05-06
申请号:US12693765
申请日:2010-01-26
申请人: Sven Krasser , Yuchun Tang , Yuanchen He , Zhenyu Zhong
发明人: Sven Krasser , Yuchun Tang , Yuanchen He , Zhenyu Zhong
IPC分类号: H04L29/06
CPC分类号: G06F21/564 , G06F21/56
摘要: A computer network device receives a digital file and extracts a plurality of high level features from the file. The plurality of high level features are evaluated using a classifier to determine whether the file is benign or malicious. The file is forwarded to a requesting computer if the file is determined to be benign, and blocked if the file is determined to be malicious.
摘要翻译: 计算机网络设备接收数字文件并从文件中提取多个高级特征。 使用分类器评估多个高级特征以确定文件是良性还是恶意的。 如果文件被确定为良性,则将文件转发到请求计算机,如果该文件被确定为恶意文件,则该文件被阻止。
-
公开(公告)号:US08719352B2
公开(公告)日:2014-05-06
申请号:US12696828
申请日:2010-01-29
申请人: Sven Krasser , Dmitri Alperovitch , Yuchun Tang , Yuanchen He , Jonathan Zdziarski , Mark Gilbert
发明人: Sven Krasser , Dmitri Alperovitch , Yuchun Tang , Yuanchen He , Jonathan Zdziarski , Mark Gilbert
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: G06F21/552
摘要: A system derives a reputation for a plurality of network addresses, the reputation of each network address determined by analyzing a plurality of high-level email features related to one or more emails originating from the network address. The plurality of high-level email features include domain registration analysis, hashed term frequency indexing, persistent communication, address age, correlation analysis, zombie detection, and hash vault matching.
摘要翻译: 系统通过分析与源自网络地址的一个或多个电子邮件相关的多个高级电子邮件特征来确定多个网络地址的信誉,每个网络地址的声誉。 多个高级电子邮件功能包括域注册分析,散列术语频率索引,持久通信,地址年龄,相关分析,僵尸检测和哈希库匹配。
-
公开(公告)号:US08549645B2
公开(公告)日:2013-10-01
申请号:US13278578
申请日:2011-10-21
申请人: Yuchun Tang , Zhenyu Zhong , Yuanchen He
发明人: Yuchun Tang , Zhenyu Zhong , Yuanchen He
IPC分类号: H04L29/06
CPC分类号: G06F21/552 , G06F2221/2117 , H04L63/1458
摘要: Systems and methods for detecting a denial of service attack are disclosed. These may include receiving a plurality of web log traces from one of a plurality of web servers; extracting a first set of features from the plurality of web log traces; applying a first machine learning technique to the first set of features; producing a first plurality of user classifications for communication to the web server; extracting a second set of features from the plurality of web log traces; applying a second machine learning technique to the second set of features; producing a second plurality of user classification for communication to the web server; communicating the first plurality of user classifications to the web server based at least on the plurality of web log traces; and communicating the second plurality of user classifications to the web server based at least on the plurality of web log traces.
摘要翻译: 公开了用于检测拒绝服务攻击的系统和方法。 这些可以包括从多个web服务器之一接收多个web日志跟踪; 从所述多个web日志跟踪中提取第一组特征; 将第一机器学习技术应用于第一组特征; 产生用于与所述web服务器进行通信的第一多个用户分类; 从所述多个web日志跟踪中提取第二组特征; 将第二机器学习技术应用于第二组特征; 产生用于与所述web服务器通信的第二多个用户分类; 至少基于所述多个web日志跟踪将所述第一多个用户分类传达到所述web服务器; 以及至少基于所述多个web日志跟踪将所述第二多个用户分类传达到所述web服务器。
-
公开(公告)号:US20120240228A1
公开(公告)日:2012-09-20
申请号:US13488417
申请日:2012-06-04
申请人: Dmitri ALPEROVITCH , Tomo FOOTE-LENNOX , Jeremy GOULD , Paula GREVE , Alejandro Manuel HERNANDEZ , Paul JUDGE , Sven KRASSER , Tim LANGE , Phyllis Adele SCHNECK , Martin STECHER , Yuchun TANG , Aarjav Jyotindra Neeta TRIVEDI , Lamar Lorenzo WILLIS , Weilai YANG , Jonathan Alexander ZDZIARSKI
发明人: Dmitri ALPEROVITCH , Tomo FOOTE-LENNOX , Jeremy GOULD , Paula GREVE , Alejandro Manuel HERNANDEZ , Paul JUDGE , Sven KRASSER , Tim LANGE , Phyllis Adele SCHNECK , Martin STECHER , Yuchun TANG , Aarjav Jyotindra Neeta TRIVEDI , Lamar Lorenzo WILLIS , Weilai YANG , Jonathan Alexander ZDZIARSKI
CPC分类号: H04L51/12 , G06F21/554 , G06Q10/107 , H04L41/0893 , H04L41/22 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1433 , H04L63/1441 , H04L63/1483
摘要: Methods and systems for assigning reputation to communications entities include collecting communications data from distributed agents, aggregating the communications data, analyzing the communications data and identifying relationships between communications entities based upon the communications data.
-
公开(公告)号:US07949716B2
公开(公告)日:2011-05-24
申请号:US11626462
申请日:2007-01-24
申请人: Dmitri Alperovitch , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Jonathan Alexander Zdziarski
IPC分类号: G06F15/16
CPC分类号: H04L63/1425 , H04L51/12 , H04L63/1441
摘要: Methods and systems for operation upon one or more data processors for assigning a reputation to a messaging entity by analyzing the attributes of the entity, correlating the attributes with known attributes to define relationships between entities sharing attributes, and attributing a portion of the reputation of one related entity to the reputation of the other related entity.
摘要翻译: 用于在一个或多个数据处理器上操作的方法和系统,用于通过分析实体的属性来将信誉分配给消息传递实体,将属性与已知属性相关联,以定义共享属性的实体之间的关系,以及将一部分信誉归一化 相关实体与其他相关实体的声誉。
-
公开(公告)号:US20080178288A1
公开(公告)日:2008-07-24
申请号:US11626568
申请日:2007-01-24
申请人: Dmitri Alperovitch , Nick Black , Jeremy Gould , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Nick Black , Jeremy Gould , Paul Judge , Sven Krasser , Phyllis Adele Schneck , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
IPC分类号: G06F15/18
CPC分类号: H04L63/0227 , G06K9/6202 , G06Q10/107 , H04L51/12 , H04L63/20
摘要: Methods and systems for operation upon one or more data processors for detecting image spam by detecting an image and analyzing the content of the image to determine whether the incoming communication comprises an unwanted communication.
摘要翻译: 用于通过检测图像并分析图像的内容来确定进入的通信是否包含不需要的通信的用于在一个或多个数据处理器上操作以检测图像垃圾邮件的方法和系统。
-
公开(公告)号:US20130104230A1
公开(公告)日:2013-04-25
申请号:US13278578
申请日:2011-10-21
申请人: Yuchun Tang , Zhenyu Zhong , Yuanchen He
发明人: Yuchun Tang , Zhenyu Zhong , Yuanchen He
CPC分类号: G06F21/552 , G06F2221/2117 , H04L63/1458
摘要: Systems and methods for detecting a denial of service attack are disclosed. These may include receiving a plurality of web log traces from one of a plurality of web servers; extracting a first set of features from the plurality of web log traces; applying a first machine learning technique to the first set of features; producing a first plurality of user classifications for communication to the web server; extracting a second set of features from the plurality of web log traces; applying a second machine learning technique to the second set of features; producing a second plurality of user classification for communication to the web server; communicating the first plurality of user classifications to the web server based at least on the plurality of web log traces; and communicating the second plurality of user classifications to the web server based at least on the plurality of web log traces.
摘要翻译: 公开了用于检测拒绝服务攻击的系统和方法。 这些可以包括从多个web服务器之一接收多个web日志跟踪; 从所述多个web日志跟踪中提取第一组特征; 将第一机器学习技术应用于第一组特征; 产生用于与所述web服务器进行通信的第一多个用户分类; 从所述多个web日志跟踪中提取第二组特征; 将第二机器学习技术应用于第二组特征; 产生用于与所述web服务器通信的第二多个用户分类; 至少基于所述多个web日志跟踪将所述第一多个用户分类传达到所述web服务器; 以及至少基于所述多个web日志跟踪将所述第二多个用户分类传达到所述web服务器。
-
公开(公告)号:US20120239751A1
公开(公告)日:2012-09-20
申请号:US13488373
申请日:2012-06-04
申请人: Dmitri Alperovitch , Tomo Foote-Lennox , Jeremy Gould , Paula Greve , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Tomo Foote-Lennox , Jeremy Gould , Paula Greve , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
IPC分类号: G06F15/16
CPC分类号: H04L51/12 , G06F21/554 , G06Q10/107 , H04L41/0893 , H04L41/22 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1433 , H04L63/1441 , H04L63/1483
摘要: Methods and systems for assigning reputation to communications entities include collecting communications data from distributed agents, aggregating the communications data, analyzing the communications data and identifying relationships between communications entities based upon the communications data.
摘要翻译: 用于将声誉分配给通信实体的方法和系统包括从分布式代理收集通信数据,聚合通信数据,分析通信数据以及基于通信数据识别通信实体之间的关系。
-
公开(公告)号:US08214497B2
公开(公告)日:2012-07-03
申请号:US11626603
申请日:2007-01-24
申请人: Dmitri Alperovitch , Tomo Foote-Lennox , Jeremy Gould , Paula Greve , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
发明人: Dmitri Alperovitch , Tomo Foote-Lennox , Jeremy Gould , Paula Greve , Alejandro Manuel Hernandez , Paul Judge , Sven Krasser , Tim Lange , Phyllis Adele Schneck , Martin Stecher , Yuchun Tang , Aarjav Jyotindra Neeta Trivedi , Lamar Lorenzo Willis , Weilai Yang , Jonathan Alexander Zdziarski
IPC分类号: G06F15/173 , G06F15/16
CPC分类号: H04L51/12 , G06F21/554 , G06Q10/107 , H04L41/0893 , H04L41/22 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1433 , H04L63/1441 , H04L63/1483
摘要: Methods and systems for assigning reputation to communications entities include collecting communications data from distributed agents, aggregating the communications data, analyzing the communications data and identifying relationships between communications entities based upon the communications data.
摘要翻译: 用于将声誉分配给通信实体的方法和系统包括从分布式代理收集通信数据,聚合通信数据,分析通信数据以及基于通信数据识别通信实体之间的关系。
-
公开(公告)号:US20090192955A1
公开(公告)日:2009-07-30
申请号:US12020253
申请日:2008-01-25
申请人: Yuchun Tang , Yuanchen He
发明人: Yuchun Tang , Yuanchen He
IPC分类号: G06F15/18
CPC分类号: G06K9/6269 , G06N99/005 , H04L51/12
摘要: Methods and systems for granular support vector machines. Granular support vector machines can randomly select samples of datapoints and project the samples of datapoints into a randomly selected subspaces to derive granules. A support vector machine can then be used to identify hyperplane classifiers respectively associated with the granules. The hyperplane classifiers can be used on an unknown datapoint to provide a plurality of predictions which can be aggregated to provide a final prediction associated with the datapoint.
摘要翻译: 粒状支持向量机的方法和系统。 颗粒支持向量机可以随机选择数据点的样本,并将数据点的样本投影到随机选择的子空间中以得到颗粒。 然后可以使用支持向量机来识别分别与颗粒相关联的超平面分类器。 可以在未知数据点上使用超平面分类器来提供多个可以被聚合的预测,以提供与数据点相关联的最终预测。
-
-
-
-
-
-
-
-
-