Real-time change detection for network systems
First Claim
Patent Images
1. A method of assessing network change comprising:
- receiving data traffic from a network;
establishing a baseline configuration for the network;
scanning the data traffic for the network in a continuous manner; and
comparing the scanned data traffic with the baseline configuration to determine if a change to the network has occurred.
8 Assignments
0 Petitions
Accused Products
Abstract
A system for conducting continuous, real-time vulnerability detection of computer networks. The system includes a user interface, a scan engine and a database for obtaining and storing information concerning a network in general and devices and services that may interact with the network. The system provides continuous scanning of the network, each scan being compared with a predetermined baseline network configuration to determine if a change to the network has occurred. If a change has occurred, the system issues an alert informing a network administrator of the where and how the network has changed so appropriate action may be taken by the network administrator.
69 Citations
74 Claims
-
1. A method of assessing network change comprising:
-
receiving data traffic from a network;
establishing a baseline configuration for the network;
scanning the data traffic for the network in a continuous manner; and
comparing the scanned data traffic with the baseline configuration to determine if a change to the network has occurred. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A computer based medium, comprising an application being executable by a computer, wherein the computer executes the steps of:
-
receiving data traffic from a network;
establishing a baseline configuration for the network;
scanning the data traffic for the network in a continuous manner; and
comparing the scanned data traffic with the baseline configuration to determine if a change to the network has occurred. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A system for assessing network change comprising:
-
a computer system including a processor for executing computer code; and
an application for execution on the computer system, wherein the computer system, when executing the application receives data traffic from a network, establishes a baseline configuration for the network, scans the data traffic for the network in a continuous manner, and compares the scanned data traffic with the baseline configuration to determine if a change to the network has occurred. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50)
-
-
51. A system for assessing network change comprising:
-
means for receiving data traffic from a network;
means for establishing a baseline configuration for the network;
means for scanning the data traffic for the network in a continuous manner; and
means for comparing the scanned data traffic with the baseline configuration to determine if a change to the network has occurred.
-
-
52. A heuristics engine comprising:
-
an IP layer component for monitoring at least one port of a network;
an application services component for monitoring at least one application running on the network; and
a web services component for monitoring at least one web service running on the network. - View Dependent Claims (53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65)
-
-
66. A computer based medium, comprising:
- an application being executable by a computer, wherein the computer executes the steps of;
receiving network traffic from a network;
setting a baseline network configuration based on the network traffic received; and
scanning the network in a continuous manner to determine if a change has occurred to the network, wherein the scanning of the network is limited by a bandwidth setting which establishes a maximum usable bandwidth for a scan engine during the scan. - View Dependent Claims (67, 68, 69, 70, 71, 72, 73, 74)
- an application being executable by a computer, wherein the computer executes the steps of;
Specification