Using machine learning for classification of benign and malicious webpages

Assignee

• Area 1 Security, Inc. · US

Inventors

• Peter Stein · Pfungstadt, DE
• Andrea Shao-Yin Li · Vienna, US
• Tamar Weseley · Weston, US
• Jesse Collins · San Francisco, US
• Ali Can SOYLEMEZOGLU · İstanbul, TR

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/168
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

In an embodiment, a data processing method providing an improvement in computer security, comprises selecting a uniform resource location (URL) for classification wherein the selected URL is associated with a webpage; determining a URL risk score for the selected URL; comparing the URL risk score to a URL risk threshold; in response to determining that the URL risk score exceeds the URL risk threshold, determining a maliciousness risk score for the webpage content associated with the selected URL; comparing the maliciousness risk score to a maliciousness risk threshold; and classifying the URL based on the comparison between the maliciousness risk score and the maliciousness risk threshold; in response to determining that the maliciousness risk score exceeds the maliciousness risk threshold, classifying the URL as malicious; in response to determining that the maliciousness risk score does not exceed the maliciousness risk threshold, classifying the URL as benign.