Patent · US Active

Protecting devices from malicious files based on n-gram processing of sequential data

US10754948B2 · kind B2 · utility

1Cited by

8References

23Claims

0Family size

Assignee

Cylance Inc. · US

Inventors

Li Li · Sha Tin, CN
Xuan Zhao · Irvine, US
Sepehr Akhavan-Masouleh · Laguna Niguel, US
John Brock · Irvine, US
Yaroslav Oliinyk · Portland, US
Matthew Wolff · Laguna Niguel, US

Key dates

Filing date	Apr 18, 2017
Grant date	Aug 25, 2020
Priority date	—
Expiry date	Oct 20, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Under one aspect, a method is provided for protecting a device from a malicious file. The method can be implemented by one or more data processors forming part of at least one computing device and can include extracting from the file, by at least one data processor, sequential data comprising discrete tokens. The method also can include generating, by at least one data processor, n-grams of the discrete tokens. The method also can include generating, by at least one data processor, a vector of weights based on respective frequencies of the n-grams. The method also can include determining, by at least one data processor and based on a statistical analysis of the vector of weights, that the file is likely to be malicious. The method also can include initiating, by at least one data processor and responsive to determining that the file is likely to be malicious, a corrective action.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.