Invention Grant
- Patent Title: Identifying an evasive malicious object based on a behavior delta
- Patent Title (中): 基于行为增量识别回避的恶意对象
-
Application No.: US14502713Application Date: 2014-09-30
-
Publication No.: US09411959B2Publication Date: 2016-08-09
- Inventor: Kyle Adams , Daniel J. Quinlan
- Applicant: Juniper Networks, Inc.
- Applicant Address: US CA Sunnyvale
- Assignee: Juniper Networks, Inc.
- Current Assignee: Juniper Networks, Inc.
- Current Assignee Address: US CA Sunnyvale
- Agency: Harrity & Harrity, LLP
- Main IPC: G06F21/53
- IPC: G06F21/53 ; G06F21/56
Abstract:
A security device may receive actual behavior information associated with an object. The actual behavior information may identify a first set of behaviors associated with executing the object in a live environment. The security device may determine test behavior information associated with the object. The test behavior information may identify a second set of behaviors associated with testing the object in a test environment. The security device may compare the first set of behaviors and the second set of behaviors to determine a difference between the first set of behaviors and the second set of behaviors. The security device may identify whether the object is an evasive malicious object based on the difference between the first set of behaviors and the second set of behaviors. The security device may provide an indication of whether the object is an evasive malicious object.
Public/Granted literature
- US20160092682A1 IDENTIFYING AN EVASIVE MALICIOUS OBJECT BASED ON A BEHAVIOR DELTA Public/Granted day:2016-03-31
Information query
