Malicious domain hosting type classification systems and methods

Mohamed Nabeel; Issa Khalil; Ting Yu

Malicious domain hosting type classification systems and methods

Mohamed Nabeel (Inventor), Issa Khalil (Inventor), Ting Yu (Inventor)

Qatar Computing Research Institute

Qatar Foundation for Education, Science, and Community Development

Research output: Patent

Abstract

The present application provides a software-based classifier built on a machine learning model that distinguishes between two kinds of malicious URL hosting apex domains: public and private. This classification helps security professionals specify which domain levels to block, the whole apex domain in the case of private apexes or specific subdomains in the case of public ones. The classifier is also built on a machine learning model that differentiates attacker-owned hosting domains from compromised hosting domains. This distinction is crucial to help security operators take the appropriate mitigation actions. For example, attacker-owned domains could be blocked permanently whereas compromised ones temporarily.

Original language	English
Patent number	AU2021257379
IPC	G06N 20/ 00 A I
Priority date	13/04/21
Publication status	Published - 3 Nov 2022

Cite this

@misc{740dbb406d7b428698cf2f3d9faf84aa,

title = "Malicious domain hosting type classification systems and methods",

abstract = "The present application provides a software-based classifier built on a machine learning model that distinguishes between two kinds of malicious URL hosting apex domains: public and private. This classification helps security professionals specify which domain levels to block, the whole apex domain in the case of private apexes or specific subdomains in the case of public ones. The classifier is also built on a machine learning model that differentiates attacker-owned hosting domains from compromised hosting domains. This distinction is crucial to help security operators take the appropriate mitigation actions. For example, attacker-owned domains could be blocked permanently whereas compromised ones temporarily.",

author = "Mohamed Nabeel and Issa Khalil and Ting Yu",

year = "2022",

month = nov,

day = "3",

language = "English",

type = "Patent",

note = "AU2021257379; G06N 20/ 00 A I",

}

TY - PAT

T1 - Malicious domain hosting type classification systems and methods

AU - Nabeel, Mohamed

AU - Khalil, Issa

AU - Yu, Ting

PY - 2022/11/3

Y1 - 2022/11/3

N2 - The present application provides a software-based classifier built on a machine learning model that distinguishes between two kinds of malicious URL hosting apex domains: public and private. This classification helps security professionals specify which domain levels to block, the whole apex domain in the case of private apexes or specific subdomains in the case of public ones. The classifier is also built on a machine learning model that differentiates attacker-owned hosting domains from compromised hosting domains. This distinction is crucial to help security operators take the appropriate mitigation actions. For example, attacker-owned domains could be blocked permanently whereas compromised ones temporarily.

AB - The present application provides a software-based classifier built on a machine learning model that distinguishes between two kinds of malicious URL hosting apex domains: public and private. This classification helps security professionals specify which domain levels to block, the whole apex domain in the case of private apexes or specific subdomains in the case of public ones. The classifier is also built on a machine learning model that differentiates attacker-owned hosting domains from compromised hosting domains. This distinction is crucial to help security operators take the appropriate mitigation actions. For example, attacker-owned domains could be blocked permanently whereas compromised ones temporarily.

M3 - Patent

M1 - AU2021257379

ER -

Malicious domain hosting type classification systems and methods

Abstract

Fingerprint

Cite this