Patent · US Active

Information leakage detection method and device using the same

US12335291B2 · kind B2 · utility

0Cited by

2References

6Claims

0Family size

Assignee

Acer Cyber Security Incorporated · TW

Inventors

Chiung-Ying Huang · Taipei, TW
Huei-Tang Li · Taipei, TW
Yi-Chung Tseng · Taipei, TW
Wei Chen · New Taipei, TW

Key dates

Filing date	Jun 8, 2022
Grant date	Jun 17, 2025
Priority date	—
Expiry date	Mar 15, 2043

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/144
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An information leakage detection method and a device using the same are disclosed. The method includes the following steps. Network connection data of an electronic device is obtained. Log data related to a (domain name system) DNS is extracted from the network connection data. A DNS request in the log data is analyzed to obtain multiple character distribution feature values according to an analysis result. The character distribution feature values reflect a character distribution status of a domain name in the DNS request under different classification rules. A machine learning model determines whether the DNS request is a malicious DNS request according to the character distribution feature values, and the malicious DNS request is used to carry leaked data to a remote host.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.