×

Intrusion detection

  • US 7,565,690 B2
  • Filed: 10/17/2003
  • Issued: 07/21/2009
  • Est. Priority Date: 08/04/2003
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method of detecting intrusion in a host via a monitoring daemon operating in conjunction with a configuration file defining data entities to be monitored, the method comprising:

  • monitoring data entities by comparing a locally stored copy of a digital signature associated with each data entity against a corresponding digital signature stored in a first remote database; and

    upon identifying a mismatch in compared digital signatures, issuing an instruction to record an entry in a log file located in a second remote database, said entry identifying a possible intrusion in a host, and issuing a command to an operating system of said host to bring said host to a single user state, wherein the command limits access to a single user and the access is physical to an interface of the host.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×