专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

81. 发明授权

EP2659416B1 SYSTEMS AND METHODS FOR MALWARE DETECTION AND SCANNING 有权
标题翻译：用于恶意软件检测和扫描的系统和方法
公开(公告)号：EP2659416B1
公开(公告)日：2018-04-18
申请号：EP11813630.8
申请日：2011-12-27
申请人： Verisign, Inc.
发明人： THOMAS, Ralph , LAPILLA, Michael , TONN, Trevor , SINCLAIR, Gregory , HARTSTEIN, Blake , COTE, Matthew
IPC分类号： G06F21/56 , H04L29/06 , G06F9/455
CPC分类号： H04L63/145 , G06F9/45533 , G06F21/566 , H04L63/1466 , H04L63/1483 , H04L63/1491
摘要： Systems and methods are provided for malware scanning and detection in a computing system. In one exemplary embodiment, the method includes launching, in a computing device of the computing system, a virtual machine, and launching, in the virtual machine of the computing device, an internet browser. The method also includes requesting, by the internet browser, data from a web page, and performing, using one or more analysis tools, analysis on the web page. In the method, performing analysis on the web page includes performing monitoring and recording of system application programming interface (API) calls, and creating software objects associated with the web page. The method also includes performing antivirus scanning of the software objects, de-obfuscating JavaScript associated with the software objects, and correlating data associated with the performed analysis to determine if the web page is a malicious web page.

82. 发明授权

EP1999609B1 CLIENT SIDE ATTACK RESISTANT PHISHING DETECTION 有权
标题翻译：客户端攻击抵制检测
公开(公告)号：EP1999609B1
公开(公告)日：2018-03-28
申请号：EP07770592.9
申请日：2007-02-13
申请人： Microsoft Technology Licensing, LLC
发明人： FLORENCIO, Dinei A. , HERLEY, Cormac E.
IPC分类号： G06F15/00 , H04L29/06
CPC分类号： H04L63/1441 , H04L63/1416 , H04L63/1483
摘要： A phishing detection client component and method is provided. The component can be employed as part of a system to detect and, optionally, prevent phishing attacks. The phishing detection client component can provide password reuse event report(s), for example, to a phishing detection server component. The client component can further include a credential component that can track use of credentials by a user and determine whether a specific security credential is being used or presented. Due to the malicious nature of phishing in general, the client component can be susceptible to attacks by phishers. For example, phishers can generate false logins in an attempt to flood the client component with information resulting in induced false positives and/or induced false negatives. The client component can perform one or more checks to determine whether false login(s) have been attempted.

83. 发明公开

EP3198834A4 METHOD AND SYSTEM FOR EMAIL PRIVACY, SECURITY AND INFORMATION THEFT DETECTION 审中-公开
公开(公告)号：EP3198834A4
公开(公告)日：2018-03-21
申请号：EP15844674
申请日：2015-09-28
申请人： PAREKH SANJAY
发明人： PAREKH SANJAY
IPC分类号： H04L29/06 , G06F21/36 , H04L12/58
CPC分类号： H04L63/145 , G06F21/36 , G06F2221/2133 , H04L51/12 , H04L51/28 , H04L51/36 , H04L63/0414 , H04L63/08 , H04L63/105 , H04L63/126 , H04L63/1466 , H04L63/1483
摘要： A system and method is proposed for managing email messages across a network. The system provides multiple means of verifying an originating sender of email. In addition, the system automatically generates unique email addresses as a means mask the email address of an original sender and shield users from unwanted email. The system may also be configured to block email security threats (e.g. phishing, spear phishing, etc.). Further, the system provides means of processing email messages to enable encryption, spam detection, geographical location identification of users, and social networking

84. 发明授权

EP2731027B1 User terminal, unauthorized site information management server, and method and program for blocking unauthorized request 有权转让
标题翻译：用户终端，未经授权的站点信息管理服务器以及用于阻止未经授权的请求
公开(公告)号：EP2731027B1
公开(公告)日：2018-03-07
申请号：EP13153102.2
申请日：2013-01-29
申请人： Optim Corporation
发明人： Sugaya, Shunji
IPC分类号： G06F17/30 , H04L29/06 , G06F21/62
CPC分类号： H04L63/1441 , G06F21/6263 , G06F2221/2119 , H04L63/0227 , H04L63/1483
摘要： The transmission of an unauthorized request from a terminal is blocked. It is possible to provide a user terminal which blocks an unauthorized request made by malicious content by detecting the transmission of a request generated in a user terminal, investigating whether the request contains an improper word registered in an improper word database, and inhibiting the transmission of the request when it is determined that the request contains the improper word.

85. 发明公开

EP3214817A4 PHISHING PAGE DETECTION METHOD AND DEVICE 有权
公开(公告)号：EP3214817A4
公开(公告)日：2018-01-24
申请号：EP15902847
申请日：2015-12-30
申请人： BAIDU ONLINE NETWORK TECH (BEIJING) CO LTD
发明人： YANG NIAN , GENG ZHIFENG , SU XIAODONG
IPC分类号： H04L29/06
CPC分类号： H04L29/06 , H04L63/1483
摘要： The present disclosure provides a method and system for detecting a phishing page. The method comprises: intercepting user data attempted to be submitted by a current page to a server; constructing detection data having a structure identical to a structure of the user data, content of the detection data being different from content of the user data; submitting the detection data to the server; and determining whether the current page is a phishing page based on a response from the server. By using the method and the system for detecting a phishing page provided in the present disclosure, a user can immediately and accurately determine whether the current page is a phishing page, thereby protecting privacies and assets better.

86. 发明公开

EP3256954A1 CENTRALIZED VALIDATION OF EMAIL SENDERS VIA EHLO NAME AND IP ADDRESS TARGETING 有权
标题翻译：通过EHLO名称和IP地址定位对电子邮件发件人进行集中验证
公开(公告)号：EP3256954A1
公开(公告)日：2017-12-20
申请号：EP16749596.9
申请日：2016-01-29
申请人： Valimail Inc.
发明人： GOLDSTEIN, Peter, Martin
IPC分类号： G06F15/16
CPC分类号： H04L63/20 , G06F21/6218 , H04L51/04 , H04L61/1511 , H04L61/304 , H04L63/08 , H04L63/126 , H04L63/14 , H04L63/1483
摘要： A DNS server receives from a receiving email system, a DNS query for an email domain stored at the DNS server, the DNS query including identifying information of a sender of an email. The DNS server extracts the identifying information of the email sender from the DNS query and identifies one of a plurality of delivering organizations from the information. The DNS server determines whether the identified delivering organization is authorized to deliver email on behalf of the email domain. In response to determining that the identified delivering organization is authorized to deliver email on behalf of the email domain, the DNS server generates a target validation record based on the identity of the authorized delivering organization and the email domain, the target validation record including one or more rules indicating to the receiving email system whether the delivering organization is an authorized sender of email for the email domain.

87. 发明公开

EP3170121A4 A CYBER-SECURITY SYSTEM AND METHODS THEREOF 审中-公开
公开(公告)号：EP3170121A4
公开(公告)日：2017-11-08
申请号：EP15821755
申请日：2015-07-09
申请人： EMPOW CYBER SECURITY LTD
发明人： CHESLA AVI
IPC分类号： G06F21/56 , G06F21/55 , G06F21/60 , H04L29/06
CPC分类号： H04L63/20 , G06F21/552 , G06F21/56 , H04L63/02 , H04L63/14 , H04L63/1416 , H04L63/1441 , H04L63/145 , H04L63/1483
摘要： A system and method for adaptively securing a protected entity against cyber-threats are presented. The method includes selecting at least one security application configured to handle a cyber-threat, wherein the at least one security application executes a plurality of security services assigned to the at least one security application; determining at least one workflow rule respective of the at least one security application; receiving a plurality of signals from the plurality of security services, wherein each signal of the plurality of signals is generated with respect to a potential cyber-threat; generating at least one security event respective of the plurality of received signals; checking determining if the at least one security event satisfies the at least one workflow rule; and upon determining that the at least one security event satisfies the workflow rule, generating at least one action with respect to the potential cyber-threat.

88. 发明公开

EP3232335A1 METHOD AND DEVICE FOR PROVIDING AUTHENTICATION INFORMATION ON WEB PAGE 有权
标题翻译：在网页上提供认证信息的方法和装置
公开(公告)号：EP3232335A1
公开(公告)日：2017-10-18
申请号：EP15866861.6
申请日：2015-10-10
申请人： Baidu Online Network Technology (Beijing) Co., Ltd.
发明人： TAN, Jing , CHANG, Bingxin , CUI, Yan , ZHANG, Zhenping , ZHOU, Qi , ZHANG, Zheng , DONG, Changyang , HE, Xiaohang , SHI, Kuan
IPC分类号： G06F17/30 , H04L9/32
CPC分类号： H04L63/1483 , G06F16/951 , G06F16/958 , G06F21/44 , G06F2221/2119 , H04L9/32 , H04L63/08
摘要： Provided is a method for providing authentication information for a web page by an authentication system, comprising: receiving an authentication information request from a web page; judging whether the web page is skipped by a relevant search engine; judging whether the web page meets a condition for displaying authentication information; and providing the authentication information for the web page meeting the condition. The authentication information is provided for a website by means of the method for providing the authentication information for the website via the search engine and by means of a method for combining the authentication system and the relevant search engine, thereby enhancing the reliability and security of the authentication information. In addition, display content of the authentication information can be automatically selected and edited by a user and is displayed on the web page in real time.
摘要翻译：提供了一种用于通过认证系统为网页提供认证信息的方法，包括：从网页接收认证信息请求; 判断该网页是否被相关搜索引擎跳过; 判断该网页是否符合显示认证信息的条件; 并为满足条件的网页提供认证信息。该认证信息是通过搜索引擎为网站提供认证信息的方法以及通过认证系统与相关搜索引擎相结合的方法提供给网站的，从而提高了网站的可靠性和安全性认证信息。另外，认证信息的显示内容可以由用户自动选择和编辑，并实时显示在网页上。

89. 发明公开

EP3202090A1 DETECTION OF EMAIL-RELATED VULNERABILITIES 审中-公开
标题翻译：检测电子邮件相关的脆弱性
公开(公告)号：EP3202090A1
公开(公告)日：2017-08-09
申请号：EP14903202.1
申请日：2014-09-29
申请人： Hewlett Packard Enterprise Development LP
发明人： MUTHURAJAN, Sasi Siddharth , SECHMAN, Ronald Joseph
IPC分类号： H04L12/26 , H04L12/58
CPC分类号： H04L63/1433 , H04L51/12 , H04L51/28 , H04L51/30 , H04L63/1425 , H04L63/1483
摘要： Examples relate to detection of email-related vulnerabilities. The examples disclosed herein enable monitoring, at a runtime, application programming interface (API) calls made by a server-based application for the API calls related to at least one of a plurality of email protocols. A request to obtain a first set of data indicating a result of a vulnerability attack may be received from a vulnerability scanner. The examples disclosed herein enable identifying, at the runtime, an API call that has been made based on the vulnerability attack in response to receiving the request. The first set of data may be obtained, at the runtime, based on the API call. The examples disclosed herein further enable providing the first set of data to the vulnerability scanner to detect a vulnerability in the first set of data.
摘要翻译：示例涉及检测与电子邮件相关的漏洞。这里公开的示例使得能够在运行时监视由基于服务器的应用对与多个电子邮件协议中的至少一个有关的API调用进行的应用编程接口（API）调用。可以从漏洞扫描器接收获得指示漏洞攻击的结果的第一组数据的请求。这里公开的示例使得能够在运行时识别已经基于漏洞攻击响应于接收到请求而做出的API调用。第一组数据可以在运行时基于API调用获得。本文公开的示例还使得能够向漏洞扫描器提供第一组数据以检测第一组数据中的漏洞。

90. 发明公开

EP3182323A3 SYSTEM AND METHOD FOR CONTROLLING ACCESS TO DATA USING API FOR USERS WITH DISABILITIES 有权
标题翻译：系统和方法，用于使用API控制对数据的访问以供有缺陷的用户使用
公开(公告)号：EP3182323A3
公开(公告)日：2017-08-09
申请号：EP16163009.0
申请日：2016-03-30
申请人： AO Kaspersky Lab
发明人： DEMOV, Alexey A. , FILATOV, Konstantin M. , YABLOKOV, Victor V.
IPC分类号： G06F21/62
CPC分类号： H04L63/1416 , G06F9/451 , G06F21/53 , G06F21/561 , G06F21/62 , G06F21/6281 , G06F21/629 , H04L63/0245 , H04L63/1483 , H04W12/08
摘要： Disclosed are systems and methods for controlling access to data on mobile devices using an accessibility API for users with disabilities. An exemplary method comprises: registering on a mobile device a security application as a service for users with disabilities, wherein the security application provides an accessibility API for the users with disabilities that comprises a plurality of accessibility API functions; intercepting, using the accessibility API, data accessed by a user application being executed on the user device; determining, by the security application, a category of intercepted data; intercepting, using the accessibility API, events of execution of the user application on the user device; determining, by the security application, an access control policy for accessing the intercepted data based on the category of intercepted data and intercepted events; and controlling, using the accessibility API, access of the user application to the intercepted data based on the determined access control policy.
摘要翻译：公开了用于使用针对残疾用户的可访问性API来控制对移动设备上的数据的访问的系统和方法。一种示例性方法包括：在移动设备上将安全应用注册为针对残疾用户的服务，其中安全应用向包括多个可访问性API功能的残障用户提供可访问性API; 使用可访问性API截取在用户设备上执行的用户应用访问的数据; 由安全应用程序确定截获的数据的类别; 使用所述可访问性API拦截所述用户设备上的所述用户应用的执行事件; 所述安全应用基于所述拦截数据的类别和拦截事件，确定访问所述拦截数据的访问控制策略; 以及基于所确定的访问控制策略，使用所述可访问性API来控制所述用户应用对所述截取的数据的访问。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式