Generating and analyzing network profile data

US 10,594,725 B2
Filed: 12/19/2017
Issued: 03/17/2020
Est. Priority Date: 07/27/2017
Status: Active Grant

First Claim

Patent Images

1. An apparatus, comprising:

a memory configured to store network profile data;

a processing device, operatively coupled with the memory, configured to;

determine whether the network profile data has been transmitted to a network apparatus to prevent a duplicate of the network profile data from being transmitted to the network apparatus;

in response to determining that the network profile data has not been transmitted to the network apparatus, obtain the network profile data, wherein the network profile data comprises a set of network parameters detected by the apparatus comprising a list of incoming or outgoing connection requests from the apparatus and wherein the network profile data provides an indication of whether the apparatus is compromised;

encrypt the network profile data to generate hashed network profile data;

identify a stream of packets addressed to the network apparatus;

insert a packet comprising the hashed network profile data into the stream of packets addressed to the network apparatus; and

transmit the stream of packets comprising the packet to the network apparatus for determination of whether the apparatus is compromised by comparing the hashed network profile data with previous network profile data received from the apparatus without decrypting the encrypted network profile data.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A device may generate network profile data indicating a set of network parameters detected by the device. The device may encrypt the network profile data and may transmit the encrypted network profile data to a network device, such as a router, or a server. The router or server may analyze the encrypted network profile data to determine if the device is secure. The router of server may perform one or more security measures if the device is not secure.

73 Citations

11 Claims

1. An apparatus, comprising:
- a memory configured to store network profile data;
  
  a processing device, operatively coupled with the memory, configured to;
  
  determine whether the network profile data has been transmitted to a network apparatus to prevent a duplicate of the network profile data from being transmitted to the network apparatus;
  
  in response to determining that the network profile data has not been transmitted to the network apparatus, obtain the network profile data, wherein the network profile data comprises a set of network parameters detected by the apparatus comprising a list of incoming or outgoing connection requests from the apparatus and wherein the network profile data provides an indication of whether the apparatus is compromised;
  
  encrypt the network profile data to generate hashed network profile data;
  
  identify a stream of packets addressed to the network apparatus;
  
  insert a packet comprising the hashed network profile data into the stream of packets addressed to the network apparatus; and
  
  transmit the stream of packets comprising the packet to the network apparatus for determination of whether the apparatus is compromised by comparing the hashed network profile data with previous network profile data received from the apparatus without decrypting the encrypted network profile data.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 11)
- - 2. The apparatus of claim 1, wherein to transmit the hashed network profile data the processing device is further configured to:
    - include the hashed network profile data in existing traffic transmitted to the network apparatus.
  - 3. The apparatus of claim 1, wherein the network apparatus comprises one of a router or a first-hop router coupled to a local area network (LAN) and a wide area network (WAN).
  - 4. The apparatus of claim 1, wherein the set of network parameters comprises a network address of the apparatus.
  - 5. The apparatus of claim 3, wherein the set of network parameters comprises a network address of the router.
  - 6. The apparatus of claim 1, wherein the set of network parameters comprises a network identifier of a network used by the apparatus to communicate with the network apparatus.
  - 7. The apparatus of claim 1, wherein the set of network parameters comprises one or more network identifiers of one or more networks detected by the apparatus.
  - 8. The apparatus of claim 1, wherein the set of network parameters comprises one or more device identifiers of one or more electronic devices detected by the apparatus.
  - 11. The apparatus of claim 1, wherein the network apparatus comprises a server.

9. A method, comprising:
- determine whether network profile data stored in an apparatus has been transmitted to a network apparatus to prevent a duplicate of the network profile data from being transmitted to the network apparatus;
  
  in response to determining that the network profile data has not been transmitted to the network apparatus, obtaining the network profile data, wherein the network profile data comprises a set of network parameters detected by the apparatus comprising a list of incoming or outgoing connections requests from the apparatus and wherein the network profile data provides an indication of whether the apparatus is compromised;
  
  encrypting the network profile data to generate hashed network profile data;
  
  identifying a stream of packets addressed to the network apparatus;
  
  inserting a packet comprising the hashed network profile data into the stream of packets addressed to the network apparatus; and
  
  transmitting the hashed network profile data to the network apparatus in the stream of packets for determination of whether the apparatus is compromised by comparing the hashed network profile data with previous network profile data received from the apparatus without decrypting the encrypted network profile data.
- View Dependent Claims (10)
- - 10. The method of claim 9, wherein transmitting the hashed network profile data comprises:
    - including the hashed network profile data in existing traffic transmitted to the network apparatus.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cypress Semiconductor Corporation (Infineon Technologies AG)
Original Assignee
Cypress Semiconductor Corporation (Infineon Technologies AG)
Inventors
Luo, Hui
Primary Examiner(s)
Lynch, Sharon S

Application Number

US15/847,672
Publication Number

US 20190036965A1
Time in Patent Office

819 Days
Field of Search
US Class Current
CPC Class Codes

H04L 12/28   characterised by path confi...

H04L 12/2827   Reporting to a device withi...

H04L 41/0853   by actively collecting conf...

H04L 45/74   Address processing for routing

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/1425   Traffic logging, e.g. anoma...

H04L 63/1458   Denial of Service

H04L 63/1466   Active attacks involving in...

H04L 67/12   specially adapted for propr...

H04L 67/30   Profiles

H04W 4/70   Services for machine-to-mac...

Generating and analyzing network profile data

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

73 Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Generating and analyzing network profile data

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

73 Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links