×

Network security system having a device profiler communicatively coupled to a traffic monitor

  • US 7,181,769 B1
  • Filed: 06/06/2003
  • Issued: 02/20/2007
  • Est. Priority Date: 08/25/2000
  • Status: Expired due to Term
First Claim
Patent Images

1. A distributed computer network security system for detecting an attack on a host on a network having a plurality of hosts, the system comprising:

  • a device profiler communicatively coupled with the network, the device profiler for identifying characteristics of a host from the plurality of hosts on the network and determining vulnerabilities of the host based on the characteristics according to a tree-structured vulnerability table; and

    a traffic monitor, communicatively coupled with the network and the device profiler, and cooperative with the device profiler, for monitoring the network for traffic indicative of an attack on the host, from the plurality of hosts on the network, exploiting one of the determined vulnerabilities of the host, wherein a determined vulnerability pertains to a specific location and wherein the traffic monitor monitors for exploits of the determined vulnerability directed to the location and ignores exploits of the determined vulnerability directed to locations to which the determined vulnerability does not pertain.

View all claims
  • 12 Assignments
Timeline View
Assignment View
    ×
    ×