×

Stealth network attack monitoring

  • US 9,172,715 B2
  • Filed: 10/22/2013
  • Issued: 10/27/2015
  • Est. Priority Date: 04/27/2011
  • Status: Active Grant
First Claim
Patent Images

1. At least one machine accessible storage medium having instructions stored thereon, the instructions when executed on a machine, cause the machine to:

  • identify a particular failed connection attempt initiated by a particular source asset in a network;

    track subsequent failed connection attempts initiated by the particular source asset in the network during a time period;

    determine whether the subsequent failed connection attempts during the time period correspond to a low frequency failed connection attempt rate corresponding to an attempted stealth attack, wherein the stealth attack is characterized by a low frequency series of connection attempts; and

    designate the source asset as a potential security risk based on a determination that the subsequent failed connection attempts correspond to the low frequency failed connection attempt rate.

View all claims
  • 9 Assignments
Timeline View
Assignment View
    ×
    ×