Device update transmission using a filter structure
US-2022021519-A1 · Jan 20, 2022 · US
Blocked XOR filter for blacklist filtering
US11968175B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11968175-B2 |
| Application number | US-202217568370-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jan 4, 2022 |
| Priority date | Jan 4, 2022 |
| Publication date | Apr 23, 2024 |
| Grant date | Apr 23, 2024 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method of filtering a URL against a blacklist includes receiving at least a portion of a Uniform Resource Locator (URL), and determining which of a plurality of XOR filters is applicable to the received at least a portion of a URL, where each of the plurality of XOR filters represents a different portion of a URL blacklist. At least a portion of a URL is forwarded to the applicable one of the plurality of XOR filters, and the at least a portion of the URL is processed in the applicable one of the plurality of XOR filters to produce an output indicating whether the URL is likely on the blacklist.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method of filtering a URL against a blacklist, comprising: receiving at least a portion of a Uniform Resource Locator (URL); determining which of a plurality of XOR filters is applicable to the received at least a portion of a URL, each of the plurality of XOR filters representing a different portion of a URL blacklist; forwarding the at least a portion of a URL to the applicable one of the plurality of XOR filters; and processing the at least a portion of the URL in the applicable one of the plurality of XOR filters to produce an output indicating whether the URL is likely on the blacklist. 2. The method of filtering a URL against a blacklist of claim 1 , wherein the plurality of XOR filters have similar size. 3. The method of filtering a URL against a blacklist of claim 1 , wherein the plurality of XOR filters have a similar false positive detection rate. 4. The method of filtering a URL against a blacklist of claim 1 , wherein the plurality of XOR filters do not have false negative detections. 5. The method of filtering a URL against a blacklist of claim 1 , further comprising hashing the at least a portion of the URL to determine which of the plurality of XOR filters is applicable to the received at least a portion of a URL. 6. The method of filtering a URL against a blacklist of claim 1 , wherein checking at least a portion of a URL comprises check multiple compositions of the URL. 7. The method of filtering a URL against a blacklist of claim 1 , wherein the plurality of XOR filters are constructed after the inputs from the blacklist are hashed and grouped. 8. The method of filtering a URL against a blacklist of claim 7 , wherein the sizes of the plurality of XOR filters are allocated based on the number of inputs from the blacklist allocated to each XOR filter. 9. The method of filtering a URL against a blacklist of claim 8 , wherein if an XOR filter constructed using the allocated size fails to produce no false negatives, the allocated size is incrementally increased and the XOR filter is constructed again. 10. The method of filtering a URL against a blacklist of claim 1 , further comprising updating one or more of the plurality of XOR filters by selecting an XOR subfilter applicable to one or more added blacklist inputs, adding the one or more blacklist inputs to the inputs previously a part of the applicable XOR subfilter or subfilters, and reconstructing the applicable one or more XOR filters to include the one or more added blacklist inputs. 11. The method of filtering a URL against a blacklist of claim 10 , further comprising updating the one or more of the plurality of XOR filters while the filters remain operational to process the at least a portion of the URL in the applicable one of the plurality of XOR filters to produce an output indicating whether the URL is likely on the blacklist. 12. A method of updating a URL blacklist, comprising: receiving at least a portion of a Uniform Resource Locator (URL) to be added to the blacklist; determining which of a plurality of XOR filters is applicable to the received at least a portion of a URL to be added to the blacklist, each of the plurality of XOR filters representing a different portion of the URL blacklist; and reformulating the XOR filter representing the determined applicable portion of the blacklist to include the received at least a portion of the URL to be added to the blacklist. 13. The method of updating a URL blacklist of claim 12 , wherein the plurality of XOR filters have similar size. 14. The method of updating a URL blacklist of claim 12 , wherein the plurality of XOR filters have a similar false positive detection rate and do not have false negative detections. 15. The method of updating a URL blacklist of claim 12 , further comprising hashing the at least a portion of the URL to determine which of the plurality of XOR filters is applicable to the received at least a portion of a URL. 16. The method of updating a URL blacklist of claim 12 , wherein the plurality of XOR filters are constructed after the inputs from the blacklist are hashed and grouped. 17. The method of updating a URL blacklist of claim 16 , wherein the sizes of the plurality of XOR filters are allocated based on the number of inputs from the blacklist allocated to each XOR filter. 18. The method of updating a URL blacklist of claim 17 , wherein if an XOR filter constructed using the allocated size fails to produce no false negatives, the allocated size is incrementally increased and the XOR filter is constructed again. 19. The method of updating a URL blacklist of claim 12 , further comprising checking at least a portion of a URL against the blacklist by checking the at least a portion of the URL against an XOR filter determined to be applicable to the URL to determine if the URL is blacklisted. 20. The method of updating a URL blacklist of claim 19 , wherein checking at least a portion of a URL comprises check multiple compositions of the URL.
Assignees
Inventors
Classifications
- H04L63/0236Primary
Filtering by address, protocol, port number or service, e.g. IP-address or URL · CPC title
Centralised allocation of resources · CPC title
- H04L63/20Primary
for managing network security; network security policies in general (filtering policies H04L63/0227) · CPC title
based on web technology, e.g. hypertext transfer protocol [HTTP] · CPC title
Access control lists [ACL] · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11968175B2 cover?
- A method of filtering a URL against a blacklist includes receiving at least a portion of a Uniform Resource Locator (URL), and determining which of a plurality of XOR filters is applicable to the received at least a portion of a URL, where each of the plurality of XOR filters represents a different portion of a URL blacklist. At least a portion of a URL is forwarded to the applicable one of the…
- Who is the assignee on this patent?
- Avast Software Sro
- What technology area does this patent fall under?
- Primary CPC classification H04L63/0236. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Apr 23 2024 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).