×

Unauthorized communication detection method

  • US 8,490,173 B2
  • Filed: 08/01/2008
  • Issued: 07/16/2013
  • Est. Priority Date: 08/10/2007
  • Status: Active Grant
First Claim
Patent Images

1. A method for controlling an apparatus for transferring data from a plurality of first devices to a second device via a network, said data being transferred by using a packet, the method comprising:

  • obtaining a communication log recording packets received from at least one of a server, firewall, a proxy and a client;

    identifying address ranges including a starting address and an ending address;

    extracting HyperText Transfer Protocol messages from the packets stored in a memory of the apparatus based on information with regard to address ranges;

    extracting uniform resource locator information and a User-Agent from each of the HyperText Transfer Protocol messages, the uniform resource locator information indicating destination information of the HyperText Transfer Protocol messages, the User-Agent indicating a type of software used by each of the first devices;

    counting a number of User-Agents, extracted from the HyperText Transfer Protocol messages, for each uniform resource locator information extracted from the HyperText Transfer Protocol messages stored in the memory of the apparatus; and

    for each uniform resource locator information, determining, by using the processor, a HyperText Transfer Protocol message is unauthorized communication when the number of the User-Agents for the uniform resource locator information is at least a predetermined number.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×