Method for testing the security posture of a system
First Claim
Patent Images
1. A method, comprising:
- intercepting packets that pass through a defensive device;
reading, from the intercepted packets, protocol sequences that pertain to at least one protocol or network application; and
constructing, using a computer, at least one stochastic sequential model of usage of the protocol or network application from the protocol sequences.
3 Assignments
0 Petitions
Accused Products
Abstract
A method is provided for assessing the susceptibility of a NIDS to evasion. In an embodiment, the method involves intercepting packets that pass through a NIDS or other defensive device, reading, from the intercepted packets, message sequences that pertain to at least one protocol or network application, and constructing at least one stochastic sequential model of usage of the protocol from the protocol sequences.
33 Citations
8 Claims
-
1. A method, comprising:
-
intercepting packets that pass through a defensive device; reading, from the intercepted packets, protocol sequences that pertain to at least one protocol or network application; and constructing, using a computer, at least one stochastic sequential model of usage of the protocol or network application from the protocol sequences. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
Specification