Patent · US Active

Method and device for extracting message format

US9589136B2 · kind B2 · utility

0Cited by

0References

15Claims

0Family size

Assignee

TENCENT TECHNOLOGY (SHENZHEN) COMPANY LIMITED · CN

Inventors

Zan Zou · Tangxia, CN
Xiaokang Zhang · Beijing, CN
Zhi Wang · Tangxia, CN
Chunfu Jia · Tangxia, CN
Lu Liu · Chongqing, CN

Key dates

Filing date	Mar 31, 2015
Grant date	Mar 7, 2017
Priority date	—
Expiry date	May 14, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Examples of extracting a message format are disclosed. Extracting the message format may include capturing an execution trace of a malicious program client and identifying and analyzing a processing procedure of a message in the execution trace. An input message format is identified based on the analysis, where the input message format is of a communication protocol used by a malicious program. The examples of identifying the message format provide increase extraction efficiency, accurate analysis and positioning, and a reduced rate of false positives.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.