KR102474048B1 - 개선된 멀웨어 보호를 위해 모바일 디바이스와의 페이크 사용자 상호작용들을 검출하기 위한 방법들 및 시스템들 - Google Patents

개선된 멀웨어 보호를 위해 모바일 디바이스와의 페이크 사용자 상호작용들을 검출하기 위한 방법들 및 시스템들 Download PDF

Info

Publication number
KR102474048B1
KR102474048B1 KR1020177021585A KR20177021585A KR102474048B1 KR 102474048 B1 KR102474048 B1 KR 102474048B1 KR 1020177021585 A KR1020177021585 A KR 1020177021585A KR 20177021585 A KR20177021585 A KR 20177021585A KR 102474048 B1 KR102474048 B1 KR 102474048B1
Authority
KR
South Korea
Prior art keywords
event
computing device
detected
monitored activity
processor
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020177021585A
Other languages
English (en)
Korean (ko)
Other versions
KR20170115532A (ko
Inventor
인 첸
만 기 윤
비나이 스리드하라
Original Assignee
퀄컴 인코포레이티드
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 퀄컴 인코포레이티드 filed Critical 퀄컴 인코포레이티드
Publication of KR20170115532A publication Critical patent/KR20170115532A/ko
Application granted granted Critical
Publication of KR102474048B1 publication Critical patent/KR102474048B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/566Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/316User authentication by observing the pattern of computer usage, e.g. typical user behaviour
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2133Verifying human interaction, e.g., Captcha

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Social Psychology (AREA)
  • Virology (AREA)
  • User Interface Of Digital Computer (AREA)
  • Telephone Function (AREA)
  • Stored Programmes (AREA)
  • Debugging And Monitoring (AREA)
KR1020177021585A 2015-02-06 2016-01-11 개선된 멀웨어 보호를 위해 모바일 디바이스와의 페이크 사용자 상호작용들을 검출하기 위한 방법들 및 시스템들 Active KR102474048B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US14/616,046 US9875357B2 (en) 2015-02-06 2015-02-06 Methods and systems for detecting fake user interactions with a mobile device for improved malware protection
US14/616,046 2015-02-06
PCT/US2016/012851 WO2016126379A1 (en) 2015-02-06 2016-01-11 Methods and systems for detecting fake user interactions with a mobile device for improved malware protection

Publications (2)

Publication Number Publication Date
KR20170115532A KR20170115532A (ko) 2017-10-17
KR102474048B1 true KR102474048B1 (ko) 2022-12-02

Family

ID=55272660

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020177021585A Active KR102474048B1 (ko) 2015-02-06 2016-01-11 개선된 멀웨어 보호를 위해 모바일 디바이스와의 페이크 사용자 상호작용들을 검출하기 위한 방법들 및 시스템들

Country Status (6)

Country Link
US (1) US9875357B2 (enExample)
EP (1) EP3254216A1 (enExample)
JP (1) JP6721596B2 (enExample)
KR (1) KR102474048B1 (enExample)
CN (1) CN107209818B (enExample)
WO (1) WO2016126379A1 (enExample)

Families Citing this family (31)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9773110B2 (en) 2014-09-26 2017-09-26 Intel Corporation Cluster anomaly detection using function interposition
US9749353B1 (en) 2015-03-16 2017-08-29 Wells Fargo Bank, N.A. Predictive modeling for anti-malware solutions
US9794265B1 (en) 2015-03-16 2017-10-17 Wells Fargo Bank, N.A. Authentication and authorization without the use of supplicants
US10650621B1 (en) 2016-09-13 2020-05-12 Iocurrents, Inc. Interfacing with a vehicular controller area network
US10237409B1 (en) * 2017-02-13 2019-03-19 West Corporation Multimode service communication configuration for performing transactions
US20180262016A1 (en) * 2017-03-10 2018-09-13 International Business Machines Corporation Optimizing Operability of Mobile Devices based on Learned Usage Models
US10999296B2 (en) 2017-05-15 2021-05-04 Forcepoint, LLC Generating adaptive trust profiles using information derived from similarly situated organizations
US11949700B2 (en) 2017-05-15 2024-04-02 Forcepoint Llc Using content stored in an entity behavior catalog in combination with an entity risk score
US10129269B1 (en) 2017-05-15 2018-11-13 Forcepoint, LLC Managing blockchain access to user profile information
US10447718B2 (en) 2017-05-15 2019-10-15 Forcepoint Llc User profile definition and management
US11632382B2 (en) 2017-05-15 2023-04-18 Forcepoint Llc Anomaly detection using endpoint counters
US10318729B2 (en) * 2017-07-26 2019-06-11 Forcepoint, LLC Privacy protection during insider threat monitoring
US10999324B2 (en) 2017-08-01 2021-05-04 Forcepoint, LLC Direct-connect web endpoint
EP3462766B1 (en) * 2017-09-29 2020-11-04 Nokia Solutions and Networks Oy Determining a behaviour of a wireless device
US11558401B1 (en) 2018-03-30 2023-01-17 Fireeye Security Holdings Us Llc Multi-vector malware detection data sharing system for improved detection
KR102099506B1 (ko) * 2018-07-02 2020-04-09 서울여자대학교 산학협력단 악성 앱 탐지 애플리케이션 진단 장치 및 방법
US10601868B2 (en) * 2018-08-09 2020-03-24 Microsoft Technology Licensing, Llc Enhanced techniques for generating and deploying dynamic false user accounts
US11212312B2 (en) 2018-08-09 2021-12-28 Microsoft Technology Licensing, Llc Systems and methods for polluting phishing campaign responses
CN108983758B (zh) * 2018-08-23 2020-03-24 深圳市鹏巨术信息技术有限公司 一种汽车诊断设备的软件防护方法、装置及终端
CN109190408B (zh) * 2018-09-12 2021-01-05 江苏满运软件科技有限公司 一种数据信息的安全处理方法及系统
US10885186B2 (en) 2018-11-13 2021-01-05 Forcepoint, LLC System and method for operating a protected endpoint device
US11017430B2 (en) * 2018-11-16 2021-05-25 International Business Machines Corporation Delivering advertisements based on user sentiment and learned behavior
CN110209061B (zh) * 2019-05-28 2022-08-09 九阳股份有限公司 一种智能控制系统中的事件上报处理方法及中控装置
CN110309654A (zh) * 2019-06-28 2019-10-08 四川长虹电器股份有限公司 图片上传的安全检测方法及装置
US12216791B2 (en) 2020-02-24 2025-02-04 Forcepoint Llc Re-identifying pseudonymized or de-identified data utilizing distributed ledger technology
CN111340112B (zh) * 2020-02-26 2023-09-26 腾讯科技(深圳)有限公司 分类方法、装置、服务器
CN113837210A (zh) * 2020-06-23 2021-12-24 腾讯科技(深圳)有限公司 小程序分类方法、装置、设备及计算机可读存储介质
US12111895B2 (en) 2020-07-09 2024-10-08 Veracity, Inc. Group-based authentication technique
US12326934B2 (en) * 2020-12-22 2025-06-10 International Business Machines Corporation Detecting suspicious activation of an application in a computer device
US11838275B2 (en) 2021-03-12 2023-12-05 Forcepoint Llc Web endpoint device having automatic switching between proxied and non-proxied communication modes
CN113117338B (zh) * 2021-05-08 2022-11-15 上海益世界信息技术集团有限公司广州分公司 一种游戏作弊用户识别方法及装置

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090199296A1 (en) * 2008-02-04 2009-08-06 Samsung Electronics Co., Ltd. Detecting unauthorized use of computing devices based on behavioral patterns
US20130247187A1 (en) * 2012-03-19 2013-09-19 Qualcomm Incorporated Computing device to detect malware

Family Cites Families (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007146437A2 (en) 2006-06-14 2007-12-21 Agent Science Technologies, Inc. User authentication system
WO2010105249A1 (en) 2009-03-13 2010-09-16 Rutgers, The State University Of New Jersey Systems and methods for the detection of malware
JP2011154410A (ja) * 2010-01-25 2011-08-11 Sony Corp 解析サーバ及びデータ解析方法
US8776227B1 (en) 2010-10-21 2014-07-08 Symantec Corporation User interface based malware detection
US8570320B2 (en) * 2011-01-31 2013-10-29 Microsoft Corporation Using a three-dimensional environment model in gameplay
US9558677B2 (en) 2011-04-08 2017-01-31 Wombat Security Technologies, Inc. Mock attack cybersecurity training system and methods
KR101537973B1 (ko) * 2011-07-27 2015-07-20 엘에스아이 코포레이션 보안 스토리지 하이잭킹 보호를 위한 기법들
US20130304677A1 (en) 2012-05-14 2013-11-14 Qualcomm Incorporated Architecture for Client-Cloud Behavior Analyzer
US8413236B1 (en) * 2012-06-04 2013-04-02 Robert Hansen Clickjacking protection
US20140150100A1 (en) 2012-08-15 2014-05-29 Qualcomm Incorporated Adaptive Observation of Driver and Hardware Level Behavioral Features on a Mobile Device
RU2530210C2 (ru) 2012-12-25 2014-10-10 Закрытое акционерное общество "Лаборатория Касперского" Система и способ выявления вредоносных программ, препятствующих штатному взаимодействию пользователя с интерфейсом операционной системы
US9686023B2 (en) * 2013-01-02 2017-06-20 Qualcomm Incorporated Methods and systems of dynamically generating and using device-specific and device-state-specific classifier models for the efficient classification of mobile device behaviors
US9684870B2 (en) * 2013-01-02 2017-06-20 Qualcomm Incorporated Methods and systems of using boosted decision stumps and joint feature selection and culling algorithms for the efficient classification of mobile device behaviors
JP6007116B2 (ja) * 2013-01-28 2016-10-12 株式会社アドバンス データ通信システム
US9378467B1 (en) * 2015-01-14 2016-06-28 Microsoft Technology Licensing, Llc User interaction pattern extraction for device personalization

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090199296A1 (en) * 2008-02-04 2009-08-06 Samsung Electronics Co., Ltd. Detecting unauthorized use of computing devices based on behavioral patterns
US20130247187A1 (en) * 2012-03-19 2013-09-19 Qualcomm Incorporated Computing device to detect malware

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Liang Xie et al., "pBMDS: A Behavior-based Malware Detection System for Cellphone Devices", Proceedings of the Third ACM Conference on Wireless Network Security, pp. 37-48(2010.03.)*

Also Published As

Publication number Publication date
EP3254216A1 (en) 2017-12-13
US9875357B2 (en) 2018-01-23
JP2018510403A (ja) 2018-04-12
KR20170115532A (ko) 2017-10-17
US20160232352A1 (en) 2016-08-11
CN107209818A (zh) 2017-09-26
CN107209818B (zh) 2020-09-29
WO2016126379A1 (en) 2016-08-11
JP6721596B2 (ja) 2020-07-15

Similar Documents

Publication Publication Date Title
KR102474048B1 (ko) 개선된 멀웨어 보호를 위해 모바일 디바이스와의 페이크 사용자 상호작용들을 검출하기 위한 방법들 및 시스템들
US9578049B2 (en) Methods and systems for using causal analysis for boosted decision stumps to identify and respond to non-benign behaviors
US9703962B2 (en) Methods and systems for behavioral analysis of mobile device behaviors based on user persona information
US9910984B2 (en) Methods and systems for on-device high-granularity classification of device behaviors using multi-label models
US10104107B2 (en) Methods and systems for behavior-specific actuation for real-time whitelisting
EP3191960B1 (en) Methods and systems for aggregated multi-application behavioral analysis of mobile device behaviors
KR101840156B1 (ko) 바이탈 애플리케이션들의 타겟화된 보호를 위해 애플리케이션-특정 모델들을 생성하는 방법들 및 시스템들
US20170024660A1 (en) Methods and Systems for Using an Expectation-Maximization (EM) Machine Learning Framework for Behavior-Based Analysis of Device Behaviors
US20160379136A1 (en) Methods and Systems for Automatic Extraction of Behavioral Features from Mobile Applications
EP3207680A1 (en) Methods and systems for using behavioral analysis towards efficient continuous authentication

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20170801

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20201228

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20220317

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20220907

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20221130

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20221130

End annual number: 3

Start annual number: 1

PG1601 Publication of registration