Malware detection via reputation system
    1.
    发明授权
    Malware detection via reputation system 有权
    通过声誉系统检测恶意软件

    公开(公告)号:US08719939B2

    公开(公告)日:2014-05-06

    申请号:US12693765

    申请日:2010-01-26

    IPC分类号: H04L29/06

    CPC分类号: G06F21/564 G06F21/56

    摘要: A computer network device receives a digital file and extracts a plurality of high level features from the file. The plurality of high level features are evaluated using a classifier to determine whether the file is benign or malicious. The file is forwarded to a requesting computer if the file is determined to be benign, and blocked if the file is determined to be malicious.

    摘要翻译: 计算机网络设备接收数字文件并从文件中提取多个高级特征。 使用分类器评估多个高级特征以确定文件是良性还是恶意的。 如果文件被确定为良性,则将文件转发到请求计算机,如果该文件被确定为恶意文件,则该文件被阻止。

    System and method for detection of denial of service attacks
    3.
    发明授权
    System and method for detection of denial of service attacks 有权
    用于检测拒绝服务攻击的系统和方法

    公开(公告)号:US08549645B2

    公开(公告)日:2013-10-01

    申请号:US13278578

    申请日:2011-10-21

    IPC分类号: H04L29/06

    摘要: Systems and methods for detecting a denial of service attack are disclosed. These may include receiving a plurality of web log traces from one of a plurality of web servers; extracting a first set of features from the plurality of web log traces; applying a first machine learning technique to the first set of features; producing a first plurality of user classifications for communication to the web server; extracting a second set of features from the plurality of web log traces; applying a second machine learning technique to the second set of features; producing a second plurality of user classification for communication to the web server; communicating the first plurality of user classifications to the web server based at least on the plurality of web log traces; and communicating the second plurality of user classifications to the web server based at least on the plurality of web log traces.

    摘要翻译: 公开了用于检测拒绝服务攻击的系统和方法。 这些可以包括从多个web服务器之一接收多个web日志跟踪; 从所述多个web日志跟踪中提取第一组特征; 将第一机器学习技术应用于第一组特征; 产生用于与所述web服务器进行通信的第一多个用户分类; 从所述多个web日志跟踪中提取第二组特征; 将第二机器学习技术应用于第二组特征; 产生用于与所述web服务器通信的第二多个用户分类; 至少基于所述多个web日志跟踪将所述第一多个用户分类传达到所述web服务器; 以及至少基于所述多个web日志跟踪将所述第二多个用户分类传达到所述web服务器。

    System and Method for Detection of Denial of Service Attacks
    7.
    发明申请
    System and Method for Detection of Denial of Service Attacks 有权
    用于检测拒绝服务攻击的系统和方法

    公开(公告)号:US20130104230A1

    公开(公告)日:2013-04-25

    申请号:US13278578

    申请日:2011-10-21

    IPC分类号: G06F21/00 G06F15/16

    摘要: Systems and methods for detecting a denial of service attack are disclosed. These may include receiving a plurality of web log traces from one of a plurality of web servers; extracting a first set of features from the plurality of web log traces; applying a first machine learning technique to the first set of features; producing a first plurality of user classifications for communication to the web server; extracting a second set of features from the plurality of web log traces; applying a second machine learning technique to the second set of features; producing a second plurality of user classification for communication to the web server; communicating the first plurality of user classifications to the web server based at least on the plurality of web log traces; and communicating the second plurality of user classifications to the web server based at least on the plurality of web log traces.

    摘要翻译: 公开了用于检测拒绝服务攻击的系统和方法。 这些可以包括从多个web服务器之一接收多个web日志跟踪; 从所述多个web日志跟踪中提取第一组特征; 将第一机器学习技术应用于第一组特征; 产生用于与所述web服务器进行通信的第一多个用户分类; 从所述多个web日志跟踪中提取第二组特征; 将第二机器学习技术应用于第二组特征; 产生用于与所述web服务器通信的第二多个用户分类; 至少基于所述多个web日志跟踪将所述第一多个用户分类传达到所述web服务器; 以及至少基于所述多个web日志跟踪将所述第二多个用户分类传达到所述web服务器。

    GRANULAR SUPPORT VECTOR MACHINE WITH RANDOM GRANULARITY
    10.
    发明申请
    GRANULAR SUPPORT VECTOR MACHINE WITH RANDOM GRANULARITY 有权
    具有随机粒度的颗粒支持向量机

    公开(公告)号:US20090192955A1

    公开(公告)日:2009-07-30

    申请号:US12020253

    申请日:2008-01-25

    IPC分类号: G06F15/18

    摘要: Methods and systems for granular support vector machines. Granular support vector machines can randomly select samples of datapoints and project the samples of datapoints into a randomly selected subspaces to derive granules. A support vector machine can then be used to identify hyperplane classifiers respectively associated with the granules. The hyperplane classifiers can be used on an unknown datapoint to provide a plurality of predictions which can be aggregated to provide a final prediction associated with the datapoint.

    摘要翻译: 粒状支持向量机的方法和系统。 颗粒支持向量机可以随机选择数据点的样本,并将数据点的样本投影到随机选择的子空间中以得到颗粒。 然后可以使用支持向量机来识别分别与颗粒相关联的超平面分类器。 可以在未知数据点上使用超平面分类器来提供多个可以被聚合的预测,以提供与数据点相关联的最终预测。