×

Detecting network attacks

  • US 9,432,387 B2
  • Filed: 03/27/2015
  • Issued: 08/30/2016
  • Est. Priority Date: 02/27/2012
  • Status: Expired due to Fees
First Claim
Patent Images

1. A computer-implemented method comprising:

  • receiving a first set of network data packets transmitted to a target system when no attack on the target system has been detected;

    receiving a second set of network data packets transmitted to the target system during an attack on the target system;

    for individual network data packets of the second set of network data packets, assigning to the individual network data packet a probability that the individual data packet is associated with the attack, wherein the probabilities that individual data packets are associated with the attack are determined based at least in part on a comparison of the first and second sets of network data packets; and

    generating a packet signature for the attack based at least partly on analyzing attributes of individual network data packets of the second set of network data packets according to the probabilities that the individual data packets are associated with the attack.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×