System and method for reducing the vulnerability of a computer network to virus threats
First Claim
Patent Images
1. A method for reducing vulnerability of a computer network to a detected virus threat from both a network device detected as a source of virus activity and a user of the detected device, the method comprising the steps of:
- receiving an identifier of a network device detected as a source of virus activity from a network monitor monitoring a network of devices for activity indicative of a virus;
relating the identifier to a predetermined account of the detected device;
automatically disabling the device account, thereby isolating the detected device from the network to prevent infection of the network by the detected device;
identifying, by a pre-assigned user account, a user of the detected devices during virus activity; and
disabling the user account, thereby preventing the identified user from accessing the network, via another network device.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for reducing vulnerability of a computer network to a detected virus threat includes receiving an identifier of a network device detected as a source of virus activity. The method also includes relating the identifier to a predetermined account of the detected device and then automatically disabling the device account. Accordingly, the detected device is isolated from the network to prevent infection of the network by the detected device.
110 Citations
13 Claims
-
1. A method for reducing vulnerability of a computer network to a detected virus threat from both a network device detected as a source of virus activity and a user of the detected device, the method comprising the steps of:
-
receiving an identifier of a network device detected as a source of virus activity from a network monitor monitoring a network of devices for activity indicative of a virus; relating the identifier to a predetermined account of the detected device; automatically disabling the device account, thereby isolating the detected device from the network to prevent infection of the network by the detected device; identifying, by a pre-assigned user account, a user of the detected devices during virus activity; and disabling the user account, thereby preventing the identified user from accessing the network, via another network device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer program product comprising software recorded on a computer readable medium and operational on a computer for reducing a vulnerability of a computer network to a detected virus threat from both a network device detected as a source of virus activity and a user of the detected device, said operation comprising:
-
receiving an identifier of a network device connected to the network and identified as a source of virus activity from a network monitor monitoring a network of devices for activity indicative of a virus; relating the identifier to a predetermined account of the detected device; automatically disabling the device account, thereby isolating the detected device from the network to prevent infection of the network by the detected device; automatically identifying by a pre-assigned user account, a user of the detected device during virus activity; and disabling the user account, thereby preventing the identified user from accessing the network.
-
-
12. A system for reducing a vulnerability of devices of a computer network to a detected virus threat from both a network device detected as a source of virus activity and a user of the detected device, the system comprising:
-
at least one server, capable of communicating with the devices and accessing a database, and computer software resident on the server and operational for receiving an identifier of a network device detected as a source of virus activity from a network monitor monitoring a network of devices for activity indicative of a virus, for relating the identifier to a predetermined account of the detected device, and for automatically disabling the device account, thereby isolating the detected device from the network to prevent infection of the network by the detected device;
automatically identifying, by a pre-assigned user account, a user of the detected device during virus activity, and automatically disabling the user account, thereby preventing the identified user from accessing the network.
-
-
13. In a networked client-server computing environment having a server computer with executable software and a database containing network system management data, a method for reducing vulnerability of the networked environment to detected virus threats from both a network device detected as a source of virus activity and a user of the detected device, comprising the steps of:
-
receiving an identifier of a network device detected as a source of virus activity from a network monitor monitoring a network of devices for activity indicative of a virus; relating the identifier to a predetermined account of the detected device; automatically disabling the device account, thereby isolating the detected device from the network to prevent infection of the network by the detected device; automatically identifying by a pre-assigned user account, a user of the detected device during virus activity; and disabling the user account, thereby preventing the identified user from accessing the network.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeLockheed Martin Corporation (Martin Marietta Corporation)
-
Original AssigneeLockheed Martin Corporation (Martin Marietta Corporation)
-
InventorsBlair, Stephen M. Jr., Bascle, Jeff P., Quest, Jason J., Mahaffey, Paul David Jr.
-
Primary Examiner(s)Cervetti; David Garcia
-
Application NumberUS11/211,867Time in Patent Office1,440 DaysField of Search726/22, 726/24US Class Current726/24CPC Class CodesH04L 63/083 using passwords cryptograph...H04L 63/1408 by monitoring network traff...
