Patent · US Active

Systems and methods for identifying malicious computer files

US10546123B1 · kind B1 · utility

5Cited by

5References

14Claims

0Family size

Assignee

CA, Inc. · US

Inventors

Qichao Lan · Torrance, US
Mark Kennedy · Redondo Beach, US
Xuefeng Tian · Culver City, US
Barry Laffoon · Glendale, US

Key dates

Filing date	Jun 23, 2017
Grant date	Jan 28, 2020
Priority date	—
Expiry date	Nov 2, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06N20/10
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer-implemented method for identifying malicious computer files may include (i) receiving, by a computing device, a set of files from a set of client devices, (ii) performing, by the computing device, a machine learning classification of file attributes on the set of files, (iii) determining, based on the machine learning classification, a node pattern of a suspicious file in the set of files, (iv) calculating, by hashing the node pattern, a file prevalence score of the suspicious file, and (v) performing, by the computing device, a security action based on the file prevalence score of the suspicious file. Various other methods, systems, and computer-readable media are also disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.