首页>
外国专利>
DETECTION AND MITIGATION OF TIME-DELAY BASED NETWORK ATTACKS
DETECTION AND MITIGATION OF TIME-DELAY BASED NETWORK ATTACKS
展开▼
机译:基于时间延迟的网络攻击的检测和缓解
展开▼
页面导航
摘要
著录项
相似文献
摘要
Systems and methods are described for mitigation of time-delay based network attacks that seek to avoid detection by email security solutions employing sandboxing. According to one embodiment, a potentially malicious link associated with a communication is received from a computer system by a sandbox device. A link evasion technique, in which a first file to which the potentially malicious link points to at a first time is replaced with a second file on or before a second time, is subverted by the sandbox by evaluating the potentially malicious link at multiple times including generating a first hash value of the contents of the first file, generating a second hash value of the contents of the second file, assigning a threat level to the communication when the hash values differ, and informing the computer system of the threat level assigned to the communication.
展开▼