Unauthorized access detecting system and unauthorized access detecting method

US 10,142,343 B2
Filed: 06/19/2014
Issued: 11/27/2018
Est. Priority Date: 07/05/2013
Status: Active Grant

First Claim

Patent Images

1. An unauthorized access detecting system, comprising:

processing circuitry configured togenerate authentication information that is used to log in to a predetermined server,set the generated authentication information generated on a predetermined analyzing host and cause a program to be analyzed to operate on the predetermined analyzing host, wherein the program is allowed access to the set authentication information,detect unauthorized access to a content at a predetermined server using the authentication information,obtain a program corresponding to the authentication information by referring to a table stored in a memory, the table prescribing correspondence between the authentication information and the program, andidentify, as a program that leaks out information, the program that operates on the predetermined analyzing host set with the authentication information if unauthorized access using the authentication information has been detected.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In an unauthorized access detecting system, authentication information to be leaked outside is generated. In the unauthorized access detecting system, the generated authentication information is set on an analyzing host, and a program to be analyzed is operated on the analyzing host. In the unauthorized access detecting system, access to a content using the authentication information is detected, and if the access using the authentication information is detected, the access is identified as unauthorized access.

41 Citations

View as Search Results

8 Claims

1. An unauthorized access detecting system, comprising:
- processing circuitry configured togenerate authentication information that is used to log in to a predetermined server,set the generated authentication information generated on a predetermined analyzing host and cause a program to be analyzed to operate on the predetermined analyzing host, wherein the program is allowed access to the set authentication information,detect unauthorized access to a content at a predetermined server using the authentication information,obtain a program corresponding to the authentication information by referring to a table stored in a memory, the table prescribing correspondence between the authentication information and the program, andidentify, as a program that leaks out information, the program that operates on the predetermined analyzing host set with the authentication information if unauthorized access using the authentication information has been detected.
- View Dependent Claims (2, 3, 4)
- - 2. The unauthorized access detecting system according to claim 1, wherein the memory stores therein the generated authentication information, andthe processing circuitry determines whether authentication information used in access to the content coincides with the authentication information stored in the memory, and if there is coincidence, the processing circuitry detects the access as unauthorized access.
  - 3. The unauthorized access detecting system according to claim 1, the processing circuitry being configured to detect the identified program and delete the program when the program is detected.
  - 4. The unauthorized access detecting system according to claim 1, wherein the identified program was collected from the Internet.

5. An unauthorized access detecting method executed by an unauthorized access detecting system, the unauthorized access detecting method including:
- a generating step of generating authentication information that is used to log in to a predetermined server;
  
  an operating step of setting the authentication information generated by the generating step on a predetermined analyzing host and causing a program to be analyzed to operate on the predetermined analyzing host, wherein the program is allowed access to the set authentication information;
  
  a detecting step of detecting unauthorized access to a content at the predetermined server using the authentication information;
  
  an obtaining step of obtaining a program corresponding to the authentication information by referring to a table stored in a memory, the table prescribing correspondence between the authentication information and the program, andan identifying step of identifying, if unauthorized access using the authentication information is detected by the detecting step, a program that operates on the predetermined analyzing host set with the authentication information, as a program that leaks out information.
- View Dependent Claims (6, 7, 8)
- - 6. The unauthorized access detecting method according to claim 5, further including a storing step of storing the authentication information generated by the generating step into the memory, whereinin the detecting step, whether authentication information used in access to the content coincides with the authentication information stored in the memory is determined, and if there is coincidence, the access is detected as unauthorized access.
  - 7. The unauthorized access detecting method according to claim 5, further including a deleting step of detecting the program identified by the identifying step, and deleting the program if the program is detected.
  - 8. The unauthorized access detecting method according to claim 5, wherein the identified program was collected from the Internet.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nippon Telegraph and Telephone Corporation
Original Assignee
Nippon Telegraph and Telephone Corporation
Inventors
Akiyama, Mitsuaki, Yagi, Takeshi
Primary Examiner(s)
Simitoski, Michael

Application Number

US14/901,934
Publication Number

US 20160373447A1
Time in Patent Office

1,622 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/55   Detecting local intrusion o...

H04L 63/10   for controlling access to d...

H04L 63/102   Entity profiles

H04L 63/1416   Event detection, e.g. attac...

H04L 63/145   the attack involving the pr...

H04L 63/1491   using deception as counterm...

Unauthorized access detecting system and unauthorized access detecting method

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

41 Citations

8 Claims

Specification

Use Cases

Quick Links

Others

Unauthorized access detecting system and unauthorized access detecting method

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

41 Citations

8 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others