Patent · US Active

System and method for detecting malicious script

US9032516B2 · kind B2 · utility

6Cited by

11References

10Claims

0Family size

Assignee

KOREA ADVANCED INSTITUTE OF SCIENCE AND TECHNOLOGY · KR

Inventors

Tae Ghyoon Kim · Daejeon, KR
Young Han Choi · Seoul, KR
Seok Jin Choi · Suwon-si, KR
Cheol Won Lee · Anyang-si, KR

Key dates

Filing date	Nov 11, 2010
Grant date	May 12, 2015
Priority date	—
Expiry date	Jan 15, 2033

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/566
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Provided are a system and method for detecting a malicious script. The system includes a script decomposition module for decomposing a web page into scripts, a static analysis module for statically analyzing the decomposed scripts in the form of a document file, a dynamic analysis module for dynamically executing and analyzing the decomposed scripts, and a comparison module for comparing an analysis result of the static analysis module and an analysis result of the dynamic analysis module to determine whether the decomposed scripts are malicious scripts. The system and method can recognize a hidden dangerous hypertext markup language (HTML) tag irrespective of an obfuscation technique for hiding a malicious script in a web page and thus can cope with an unknown obfuscation technique.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.