-
1.发明授权公开(公告)号:US10089460B2
公开(公告)日:2018-10-02
申请号:US15169259
申请日:2016-05-31
Inventor: Dae Sung Moon , Ik Kyun Kim , Yang Seo Choi
Abstract: A behavior-based malicious code detecting apparatus and method using multiple feature vectors is disclosed. A malicious code learning method may include collecting characteristic factor information when a training target process comprising a malicious code is executed, generating a feature vector for malicious code verification based on the collected characteristic factor information, learning the generated feature vector through a plurality of machine learning algorithms to generate a model of representing the malicious code and a model of representing a normal file, and storing the model of representing the malicious code and the model of representing the normal file generated through the learning.
-
2.发明授权Method and system for network connection chain traceback using network flow data 有权使用网络流数据的网络连接链追溯的方法和系统公开(公告)号:US09537887B2
公开(公告)日:2017-01-03
申请号:US14635962
申请日:2015-03-02
Inventor: Yang Seo Choi , Ik Kyun Kim , Min Ho Han , Jung Tae Kim , Jong Hyun Kim
CPC classification number: H04L63/1441 , H04L63/1416 , H04L63/1425
Abstract: Disclosed are provided a method and a system for network connection chain traceback by using network flow data in order to trace an attack source site for cyber hacking attacks that goes by way of various sites without addition of new equipment of a network or modification a standard protocol when the cyber hacking attack occurs in the Internet and an internal network.
Abstract translation: 提供了一种通过使用网络流数据来网络连接链追溯的方法和系统,以便跟踪通过各种站点进行的网络黑客攻击的攻击源站点,而不添加网络的新设备或修改标准协议 当网络黑客攻击发生在互联网和内部网络时。
-
Search Results
2
records
(took 0.014 seconds)
