| 发明名称 |
MALICIOUS UNIFORM RESOURCE LOCATOR DETECTION |
| 摘要 |
The techniques described herein use training data to train classification models to detect malicious Uniform Resource Locators (URLs) that target authentic resources (e.g., Web page, Web site, or other network locations accessed via a URL). The techniques train the classification models using one or more machine learning algorithms. The training data may include known benign URLs and known malicious URLs (e.g., training URLs) that are associated with a target authentic resource. The techniques then use the trained classification models to determine whether an unknown URL is a malicious URL. The malicious URL determination may be based on one or more lexical features (e.g., brand name edit distances for a domain and path of the URL) and/or site/page features (e.g., a domain age and a domain confidence level) extracted. |
| 申请公布号 |
US2014298460(A1) |
申请公布日期 |
2014.10.02 |
| 申请号 |
US201313850535 |
申请日期 |
2013.03.26 |
| 申请人 |
MICROSOFT CORPORATION |
发明人 |
Xue Feng;Zhu Bin Benjamin;Chu Weibo |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
receiving a uniform resource locator (URL) that includes one or more substrings, wherein each substring comprises a plurality of alphanumeric characters; extracting, via one or more processors, a plurality of features associated with the URL; determining, as at least one of the plurality of features, a similarity measure between a whole or part of the URL and a brand name associated with an authentic resource or a legitimate entity; and applying one or more classification models to the one or more features to determine whether a resource located by the URL is an unauthentic resource. |
| 地址 |
Redmond WA US |
