×

Systems and Methods for Correlating and Distributing Intrusion Alert Information Among Collaborating Computer Systems

  • US 20100281541A1
  • Filed: 07/09/2010
  • Published: 11/04/2010
  • Est. Priority Date: 05/11/2004
  • Status: Active Grant
First Claim
Patent Images

1. A method of detecting a threat to a computer system in a plurality of collaborating computer systems, the method comprising:

  • receiving, at a first computer system, a first one-way data structure from a collaborating second computer system, the first one-way data structure representing first data relating to a first intrusion attempt detected by an intrusion detection system of the collaborating second computer system such that the first data is hidden in the first one-way data structure;

    detecting, using an intrusion detection system of the first computer system, a second intrusion attempt;

    storing second data relating to the second intrusion attempt in a second one-way data structure of the first computer system such that the second data is hidden in the second one-way data structure;

    determining whether the second intrusion attempt correlates with the first intrusion attempt by comparing the first data structure and the second data structure; and

    indicating that a threat is present if the second intrusion attempt is determined to correlate with the data received from the collaborating second computer system relating to the first intrusion attempt.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×