-
1.发明授权公开(公告)号:US08566938B1
公开(公告)日:2013-10-22
申请号:US13668349
申请日:2012-11-05
申请人: Astra Identity, Inc.
发明人: Gagan Prakash , Ravi Agarwal
IPC分类号: H04L29/14
CPC分类号: H04L63/1483 , G06Q10/107 , H04L51/12
摘要: A system and method for analyzing electronic messages for phishing detection are disclosed. In one example, email characteristics are obtained by parsing a received email message from a sender/sender organization to a recipient/recipient organization based on a set of predetermined email characteristics; the email characteristics of the received email message are then compared with email characteristics associated with the recipient/recipient organization and/or the sender/sender organization, and the received email message is then declared as a phishing electronic message based on the outcome of the comparison.
摘要翻译: 公开了一种用于分析用于网络钓鱼检测的电子消息的系统和方法。 在一个示例中,电子邮件特征通过基于一组预定电子邮件特征将接收到的电子邮件消息从发送者/发送者组织解析到接收者/接收者组织来获得; 然后将接收的电子邮件消息的电子邮件特征与与收件人/接收者组织和/或发送者/发送者组织相关联的电子邮件特征进行比较,然后基于比较的结果将接收的电子邮件消息宣告为网络钓鱼电子消息 。
-
公开(公告)号:US09501746B2
公开(公告)日:2016-11-22
申请号:US14864656
申请日:2015-09-24
申请人: ASTRA IDENTITY, INC.
发明人: Gagan Prakash
IPC分类号: H04L29/14 , G06N7/00 , H04L29/06 , H04L12/741 , H04L12/863
CPC分类号: G06N7/005 , H04L45/74 , H04L47/62 , H04L63/1483
摘要: Systems and methods for analyzing electronic messages are disclosed. In some embodiments, the method comprises receiving a new received message from an indicated sender, the new received message having a first message characteristic of the indicated sender and a second message characteristic, identifying an actual sender message characteristic pattern of an actual sender using the first message characteristic, probabilistically comparing the second message characteristic to the actual sender message characteristic pattern, determining a degree of similarity of the second message characteristic to the actual sender message characteristic pattern, and influencing a probability that the indicated sender is the actual sender based upon the degree of similarity. There may be multiple message characteristics and patterns. In some embodiments, the methods may utilize pattern matching techniques, recipient background information, quality measures, threat intelligence data or URL information to help determine whether the new received message is from the actual sender.
摘要翻译: 公开了用于分析电子消息的系统和方法。 在一些实施例中,所述方法包括从所指示的发送方接收新的接收到的消息,所述新接收到的消息具有所指示的发送者的第一消息特征和第二消息特征,用第一消息特征识别实际发送者的实际发送方消息特征模式, 消息特征,概率地将第二消息特征与实际发送者消息特征模式进行比较,确定第二消息特征与实际发送者消息特征模式的相似度,并且基于所述第一消息特征模式,确定所指示的发送者是实际发送者的概率 相似度。 可能存在多个消息特征和模式。 在一些实施例中,所述方法可以利用模式匹配技术,接收者背景信息,质量度量,威胁情报数据或URL信息来帮助确定新的接收到的消息是否来自实际的发送者。
-
公开(公告)号:US20160014151A1
公开(公告)日:2016-01-14
申请号:US14864656
申请日:2015-09-24
申请人: ASTRA IDENTITY, INC.
发明人: Gagan Prakash
CPC分类号: G06N7/005 , H04L45/74 , H04L47/62 , H04L63/1483
摘要: Systems and methods for analyzing electronic messages are disclosed. In some embodiments, the method comprises receiving a new received message from an indicated sender, the new received message having a first message characteristic of the indicated sender and a second message characteristic, identifying an actual sender message characteristic pattern of an actual sender using the first message characteristic, probabilistically comparing the second message characteristic to the actual sender message characteristic pattern, determining a degree of similarity of the second message characteristic to the actual sender message characteristic pattern, and influencing a probability that the indicated sender is the actual sender based upon the degree of similarity. There may be multiple message characteristics and patterns. In some embodiments, the methods may utilize pattern matching techniques, recipient background information, quality measures, threat intelligence data or URL information to help determine whether the new received message is from the actual sender.
摘要翻译: 公开了用于分析电子消息的系统和方法。 在一些实施例中,所述方法包括从所指示的发送方接收新的接收到的消息,所述新接收到的消息具有所指示的发送者的第一消息特征和第二消息特征,用第一消息特征识别实际发送者的实际发送方消息特征模式, 消息特征,概率地将第二消息特征与实际发送者消息特征模式进行比较,确定第二消息特征与实际发送者消息特征模式的相似度,并且基于所述第一消息特征模式,确定所指示的发送者是实际发送者的概率 相似度。 可能存在多个消息特征和模式。 在一些实施例中,所述方法可以利用模式匹配技术,接收者背景信息,质量度量,威胁情报数据或URL信息来帮助确定新的接收到的消息是否来自实际的发送者。
-
公开(公告)号:US09154514B1
公开(公告)日:2015-10-06
申请号:US14045244
申请日:2013-10-03
申请人: ASTRA IDENTITY, INC
发明人: Gagan Prakash
CPC分类号: H04L63/1483 , G06F21/552 , G06F21/561 , G06Q10/107 , H04L51/12 , H04L61/307
摘要: Systems and methods for analyzing electronic messages for phishing detection are disclosed. In one example embodiment, whether a received email message is a phishing message is determined based on the outcome of a comparison of a recipient background information to a email characteristic wherein the recipient background information is obtained from an online social network. In some embodiments, whether the received email message is a phishing message is determined by comparing a new received email message profile to an email characteristic profile to determine whether the new received email message profile is similar to the email characteristic profile. In some embodiments, whether the received email message is a phishing message is determined by comparing the email characteristics of the new received email message with pattern characteristics. In some embodiments, the determination is made by comparing a email characteristics of the received message with a historical email characteristic.
摘要翻译: 公开了用于分析用于网络钓鱼检测的电子消息的系统和方法。 在一个示例实施例中,基于接收者背景信息与电子邮件特征的比较的结果来确定接收的电子邮件消息是否为网络钓鱼消息,其中从在线社交网络获得接收者背景信息。 在一些实施例中,通过将新接收到的电子邮件消息简档与电子邮件特性简档进行比较来确定所接收的电子邮件消息是否为网络钓鱼消息,以确定新接收的电子邮件消息简档是否类似于电子邮件特性简档。 在一些实施例中,通过将新接收到的电子邮件消息的邮件特征与模式特征进行比较来确定接收到的电子邮件消息是否为网络钓鱼消息。 在一些实施例中,通过将接收到的消息的邮件特征与历史电子邮件特征进行比较来进行确定。
-
-
-
搜索结果
4 条记录 (耗时 0.015 秒)
