×

Pattern-oriented intrusion-detection system and method

  • US 5,278,901 A
  • Filed: 04/30/1992
  • Issued: 01/11/1994
  • Est. Priority Date: 04/30/1992
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method for detecting intrusion patterns in a secure computer system having a Central Processing Unit and a data storage memory, the method comprising the steps of:

  • (1) performing an access operation on one or more components of the computer system;

    (2) inputting a first protection graph into an intrusion detection system, said first protection graph including direct and indirect relations between subjects and objects;

    (3) applying a set of model rules to said first protection graph and said access operation to generate a second protection graph;

    (4) comparing said second protection graph with a set of intrusion patterns to generate an exception condition, said exception condition indicative of whether there has been an intrusion; and

    (5) indicating the existence of an intrusion based on said exception condition.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×