首页>
外国专利>
PATH-BASED PROGRAM LINEAGE INFERENCE ANALYSIS
PATH-BASED PROGRAM LINEAGE INFERENCE ANALYSIS
展开▼
机译:基于路径的程序谱系推断分析
展开▼
页面导航
摘要
著录项
相似文献
摘要
Systems and methods are disclosed for securing an enterprise environment by detecting suspicious software. A global program lineage graph is constructed. Construction of the global program lineage graph includes creating a node for each version of a program having been installed on a set of user machines. Additionally, at least two nodes are linked with a directional edge. For each version of the program, a prevalence number of the set of user machines on which each version of the program had been installed is determined; and the prevalence number is recorded to the metadata associated with the respective node. Anomalous behavior is identified based on structures formed by the at least two nodes and associated directional edge in the global program lineage graph. An alarm is displayed on a graphical user interface for each suspicious software based on the identified anomalous behavior.
展开▼