Automated software safeness categorization with installation lineage and hybrid information sources

Automated software safeness categorization with installation lineage and hybrid information sources

Systems and methods are disclosed for enhancing cybersecurity in a computer system by detecting safeness levels of executables. An installation lineage of an executable is identified in which entities forming the installation lineage include at least an installer of the monitored executable, and a n...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Wu, Zhenyu, Li, Zhichun, Jee, Kangkook, Korts-Parn, Lauri, Setayeshfar, Omid, Rhee, Jungwhan
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Wu, Zhenyu
Li, Zhichun
Jee, Kangkook
Korts-Parn, Lauri
Setayeshfar, Omid
Rhee, Jungwhan
description Systems and methods are disclosed for enhancing cybersecurity in a computer system by detecting safeness levels of executables. An installation lineage of an executable is identified in which entities forming the installation lineage include at least an installer of the monitored executable, and a network address from which the executable is retrieved. Each entity of the entities forming the installation lineage is individually analyzed using at least one safeness analysis. Results of the at least one safeness analysis of each entity are inherited by other entities in the lineage of the executable. A backtrace result for the executable is determined based on the inherited safeness evaluation of the executable. A total safeness of the executable, based on at least the backtrace result, is evaluated against a set of thresholds to detect a safeness level of the executable. The safeness level of the executable is output on a display screen.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US10929539B2</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US10929539B2</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US10929539B23</originalsourceid><addsrcrecordid>eNqNjTEKwkAQRdNYiHqH8QCCJlikjKLYq3UYN7PJwmYn7EwIenoX4gGsPrz34C8zU43KPSo1IGx1wkggaCmQCJjEW47ug-o4wOS0AxdE0fuZeBcIWwIMDXTvV3RN8pZjP2vhMRqSdbaw6IU2v11l2-vlcb7taOCaZECT7rR-3g_7Mi-PRXnKi3-aL2O-QBY</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Automated software safeness categorization with installation lineage and hybrid information sources</title><source>esp@cenet</source><creator>Wu, Zhenyu ; Li, Zhichun ; Jee, Kangkook ; Korts-Parn, Lauri ; Setayeshfar, Omid ; Rhee, Jungwhan</creator><creatorcontrib>Wu, Zhenyu ; Li, Zhichun ; Jee, Kangkook ; Korts-Parn, Lauri ; Setayeshfar, Omid ; Rhee, Jungwhan</creatorcontrib><description>Systems and methods are disclosed for enhancing cybersecurity in a computer system by detecting safeness levels of executables. An installation lineage of an executable is identified in which entities forming the installation lineage include at least an installer of the monitored executable, and a network address from which the executable is retrieved. Each entity of the entities forming the installation lineage is individually analyzed using at least one safeness analysis. Results of the at least one safeness analysis of each entity are inherited by other entities in the lineage of the executable. A backtrace result for the executable is determined based on the inherited safeness evaluation of the executable. A total safeness of the executable, based on at least the backtrace result, is evaluated against a set of thresholds to detect a safeness level of the executable. The safeness level of the executable is output on a display screen.</description><language>eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRIC DIGITAL DATA PROCESSING ; ELECTRICITY ; PHYSICS ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2021</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20210223&amp;DB=EPODOC&amp;CC=US&amp;NR=10929539B2$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,777,882,25545,76296</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20210223&amp;DB=EPODOC&amp;CC=US&amp;NR=10929539B2$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Wu, Zhenyu</creatorcontrib><creatorcontrib>Li, Zhichun</creatorcontrib><creatorcontrib>Jee, Kangkook</creatorcontrib><creatorcontrib>Korts-Parn, Lauri</creatorcontrib><creatorcontrib>Setayeshfar, Omid</creatorcontrib><creatorcontrib>Rhee, Jungwhan</creatorcontrib><title>Automated software safeness categorization with installation lineage and hybrid information sources</title><description>Systems and methods are disclosed for enhancing cybersecurity in a computer system by detecting safeness levels of executables. An installation lineage of an executable is identified in which entities forming the installation lineage include at least an installer of the monitored executable, and a network address from which the executable is retrieved. Each entity of the entities forming the installation lineage is individually analyzed using at least one safeness analysis. Results of the at least one safeness analysis of each entity are inherited by other entities in the lineage of the executable. A backtrace result for the executable is determined based on the inherited safeness evaluation of the executable. A total safeness of the executable, based on at least the backtrace result, is evaluated against a set of thresholds to detect a safeness level of the executable. The safeness level of the executable is output on a display screen.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>ELECTRICITY</subject><subject>PHYSICS</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2021</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNjTEKwkAQRdNYiHqH8QCCJlikjKLYq3UYN7PJwmYn7EwIenoX4gGsPrz34C8zU43KPSo1IGx1wkggaCmQCJjEW47ug-o4wOS0AxdE0fuZeBcIWwIMDXTvV3RN8pZjP2vhMRqSdbaw6IU2v11l2-vlcb7taOCaZECT7rR-3g_7Mi-PRXnKi3-aL2O-QBY</recordid><startdate>20210223</startdate><enddate>20210223</enddate><creator>Wu, Zhenyu</creator><creator>Li, Zhichun</creator><creator>Jee, Kangkook</creator><creator>Korts-Parn, Lauri</creator><creator>Setayeshfar, Omid</creator><creator>Rhee, Jungwhan</creator><scope>EVB</scope></search><sort><creationdate>20210223</creationdate><title>Automated software safeness categorization with installation lineage and hybrid information sources</title><author>Wu, Zhenyu ; Li, Zhichun ; Jee, Kangkook ; Korts-Parn, Lauri ; Setayeshfar, Omid ; Rhee, Jungwhan</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US10929539B23</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2021</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>ELECTRICITY</topic><topic>PHYSICS</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>Wu, Zhenyu</creatorcontrib><creatorcontrib>Li, Zhichun</creatorcontrib><creatorcontrib>Jee, Kangkook</creatorcontrib><creatorcontrib>Korts-Parn, Lauri</creatorcontrib><creatorcontrib>Setayeshfar, Omid</creatorcontrib><creatorcontrib>Rhee, Jungwhan</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Wu, Zhenyu</au><au>Li, Zhichun</au><au>Jee, Kangkook</au><au>Korts-Parn, Lauri</au><au>Setayeshfar, Omid</au><au>Rhee, Jungwhan</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Automated software safeness categorization with installation lineage and hybrid information sources</title><date>2021-02-23</date><risdate>2021</risdate><abstract>Systems and methods are disclosed for enhancing cybersecurity in a computer system by detecting safeness levels of executables. An installation lineage of an executable is identified in which entities forming the installation lineage include at least an installer of the monitored executable, and a network address from which the executable is retrieved. Each entity of the entities forming the installation lineage is individually analyzed using at least one safeness analysis. Results of the at least one safeness analysis of each entity are inherited by other entities in the lineage of the executable. A backtrace result for the executable is determined based on the inherited safeness evaluation of the executable. A total safeness of the executable, based on at least the backtrace result, is evaluated against a set of thresholds to detect a safeness level of the executable. The safeness level of the executable is output on a display screen.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US10929539B2
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title Automated software safeness categorization with installation lineage and hybrid information sources
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-19T05%3A13%3A35IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Wu,%20Zhenyu&rft.date=2021-02-23&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS10929539B2%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true