×

Network security system having a device profiler communicatively coupled to a traffic monitor

  • US 7,594,273 B2
  • Filed: 02/16/2007
  • Issued: 09/22/2009
  • Est. Priority Date: 08/25/2000
  • Status: Active Grant
First Claim
Patent Images

1. A method for providing security to a plurality of hosts on a network, the method comprising:

  • storing potential vulnerabilities of the hosts in a tree-structured vulnerability tree having nodes representative of characteristics of the host and a set of potential vulnerabilities associated with ones of the nodes;

    evaluating responses of a host of the plurality of hosts to data packets sent over the network to determine characteristics of the host;

    traversing the tree-structured vulnerability tree responsive to the determined characteristics to determine vulnerabilities of the host;

    associating the determined vulnerabilities of the host with one or more attack signatures; and

    providing the determined vulnerabilities of the host and their corresponding attack signatures to a traffic monitor, the traffic monitor configured to monitor the network for traffic indicative of attacks exploiting one or more of the determined vulnerabilities of the host.

View all claims
  • 9 Assignments
Timeline View
Assignment View
    ×
    ×