Patent · US Active

Systems and methods for detecting malicious use of digital certificates

US9407644B1 · kind B1 · utility

20Cited by

7References

17Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Tao Cheng · Urbana, US
Kevin Roundy · El Segundo, US
Jie Fu · Beijing, CN
Zhi Kai Li · Zigong, CN
Ying Li · Jinzhou, CN

Key dates

Filing date	Nov 26, 2013
Grant date	Aug 2, 2016
Priority date	—
Expiry date	Apr 13, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0853
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A computer-implemented method for detecting malicious use of digital certificates may include determining that a digital certificate is invalid. The method may further include locating, within the invalid digital certificate, at least one field that was previously identified as being useful in distinguishing malicious use of invalid certificates from benign use of invalid certificates. The method may also include determining, based on analysis of information from the field of the invalid digital certificate, that the invalid digital certificate is potentially being used to facilitate malicious communications. The method may additionally include performing a security action in response to determining that the invalid digital certificate is potentially being used to facilitate malicious communications. Various other methods, systems, and computer-readable media are disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.