Patenton — panteon of patents

(19)

RU

(11)

2 653 241

(13)

C1

(51)

IPC

G06F21/56(2013-01-01)

H04L12/22(2006-01-01)

(21) (22)

Application

2017101745, 2015-06-23

(24)

Start date

2015-06-23

(22)

Actual filing date

2015-06-23

(45)

Published

2018-05-07

(72)

Inventor

Kumar, Manish

(73)

Holder

Mcafee, Inc.

DETECTING A THREAT OF A ZERO DAY WITH THE USE OF COMPARISON OF A LEADING APPLICATION/PROGRAM WITH A USER AGENT Russian patent published in 2018 - IPC G06F21/56 H04L12/22 

Abstract RU 2653241 C1

FIELD: network security.

SUBSTANCE: invention relates to network security. Non-transitory computer-readable medium contains instructions that, when executed, cause the interception machine to execute by the first data requiring device from the second device, request is generated by the application and the request is identified by a user agent; and generating an indication in response to determining that a predetermined threshold number of different user agents has been identified in the requests from the application, indicating that the application is a potentially malicious program, with the specified threshold amount depending on the application. Technology allows to link leading applications and user agents in network traffic and detect possible malicious programs without relying on the signatures of user agents.

EFFECT: technical result is to provide detection of a malicious program that introduces randomness into user agent data.

21 cl, 7 dwg

Similar patents RU2653241C1

Title Year Author Number
SYSTEMS AND METHODS FOR USING DNS MESSAGES FOR SELECTIVE COLLECTION OF COMPUTER FORENSIC DATA 2020
  • Mircescu Daniel-Alexandru
 RU2776349C1
SYSTEM AND METHOD FOR PROVIDING FASTER AND MORE EFFICIENT DATA TRANSMISSION 2010
  • Vilenski Ofer
  • Shribman Derri B.
 RU2549135C2
ENDPOINT SECURITY SYSTEM AND METHOD 2015
  • Chebere Bogdan-Konstantin
  • Akim Joan-Aleksandru
  • Stan Kozmin-Klaudiu
  • Rusu Andrej
 RU2693922C2
SERVER-COUPLED MALWARE PROTECTION METHOD AND SYSTEM 2011
  • Mahaffey Kavin Patrick
  • Burgess James David
  • Golombek David
  • Wyatt Timothy Michael
  • Lineberry Anthony Mckay
  • Barton Kyle
  • Evens Daniel Lee
  • Richardson David Luke
  • Solomon Ariel
  • Hering John G.
  • Grubb Jonathan Pantera
 RU2571594C2
CLOUD SERVICE SECURITY BROKER AND PROXY 2014
  • Koem Aviram
  • Mojsi Liran
  • Lyuttvak Ami
  • Reznik Roj
  • Vishnepolski Greg
 RU2679549C2
METHOD OF GENERATING A REQUEST FOR INFORMATION ON A FILE FOR PERFORMING ANTIVIRUS CHECKING AND A SYSTEM FOR REALIZING THE METHOD (VERSIONS) 2018
  • Vlaznev Denis Olegovich
  • Kubrin Sergej Valerevich
 RU2701842C1
METHOD OF GENERATING INFORMATION REQUEST ABOUT FILE DURING ANTIVIRUS CHECKING IN ORDER TO EXCLUDE FALSE OPERATION 2018
  • Vlaznev Denis Olegovich
  • Kubrin Sergej Valerevich
 RU2696236C1
SYSTEM AND METHOD FOR AUTOMATIC DEVICE DETECTION, DEVICE CONTROL AND REMOTE ASSISTANCE 2015
  • Chebere Bogdan-Konstantin
  • Akim Joan-Aleksandru
  • Stan Kozmin-Klaudiu
  • Rusu Andrej
 RU2691858C2
SYSTEM AND METHOD FOR UPDATING INSTALLATION COMPONENTS IN NETWORK ENVIRONMENT 2004
  • Makguajr Tomas D.
  • Menzies Derek P.
  • Slajdzher Majkl V.
  • Chehn Derek
  • Mokhammed Mazkhar
  • Shende Manojkumar
 RU2372644C2
SYSTEMS AND METHODS FOR AUTOMATIC DEVICE DETECTION, DEVICE CONTROL AND REMOTE ASSISTANCE 2015
  • Chebere Bogdan-Konstantin
  • Mirchesku Danel-Aleksandru
 RU2694022C2

RU 2 653 241 C1

Authors

Kumar, Manish

Dates

2018-05-07Published

2015-06-23Filed

download Download PDF read Similar patents