×

Method and device for detecting computer network intrusions

  • US 20040054928A1
  • Filed: 06/13/2003
  • Published: 03/18/2004
  • Est. Priority Date: 06/17/2002
  • Status: Active Grant
First Claim
Patent Images

1. A method for computer network intrusion detection on a computer network including a target server accessible by a client on the network and administered by a system administrator capable of authorizing attempts to execute software on the target server, a client on the network and a monitoring server coupled to the target server, the method comprising the steps of:

  • running on the target server monitored latent software performing a latent software function upon successful completion;

    receiving an attempt to execute monitored latent software on the target server from the client;

    determining at the monitoring server whether the attempt to execute the monitored latent software by the client is authorized prior to successful completion of the monitored latent software;

    successfully completing execution of the monitored software on the target server when the attempt to execute the monitored latent software is authorized;

    sending a message to the system administrator when the attempt to execute the monitored latent software is not authorized; and

    aborting the execution of the monitored latent software prior to successful completion when the attempt to execute the monitored latent software is not authorized.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×