Patent · US Active

Identifying malicious network devices

US11425148B2 · kind B2 · utility

8Cited by

1References

20Claims

0Family size

Assignee

Visa International Service Association · US

Inventors

D. M. Shams Zawoad · San Francisco, US
Philip Desch · Ashburn, US

Key dates

Filing date	Mar 10, 2017
Grant date	Aug 23, 2022
Priority date	—
Expiry date	Dec 9, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1466
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Embodiments provide for maliciousness scores to be determined for IP addresses and/or network domains. For example, a request to evaluate malicious activity with respect to an IP address/network domain may be received. Multiple, and in some cases disparate, third-party systems may provide malicious activity information associated with the IP address and/or network domain. A feature set may be extracted from the malicious activity information and statistical values may be calculated from the extracted data and added to the feature set. The features set may be provided to a machine learning model as input and a maliciousness score/classification may be returned. A remedial action may be performed in accordance with the output of the machine learning model.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.