The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
May. 25, 2021
Filed:
May. 24, 2018
Applicant:
Trend Micro Incorporated, Tokyo, JP;
Inventors:
Jonathan Edward Andersson, Austin, TX (US);
Josiah Dede Hagen, Austin, TX (US);
Assignee:
Trend Micro Incorporated, Tokyo, JP;
Attorney:
Primary Examiner:
Int. Cl.
CPC ...
G06F 21/55 (2013.01); G06F 21/56 (2013.01); H04L 29/06 (2006.01); G06F 21/57 (2013.01);
U.S. Cl.
CPC ...
G06F 21/554 (2013.01); G06F 21/563 (2013.01); G06F 21/577 (2013.01); H04L 63/0245 (2013.01); H04L 63/1425 (2013.01); G06F 2221/034 (2013.01);
Abstract
Examples relate to identifying malicious activity using data complexity anomalies. In one example, a computing device may: receive a byte stream that includes a plurality of bytes; determine, for a least one subset of the byte stream, a measure of complexity of the subset; determine that the measure of complexity meets a predetermined threshold measure of complexity for a context associated with the byte stream; and in response to determining that the measure of complexity meets the threshold, provide an indication that the byte stream complexity is anomalous.