Mark David Harris
57Patents
15h-index
29Co-inventors
84Inventor score
Filing activity: Oct 3, 2000 → Aug 14, 2023
Most-cited inventions
| Patent | Title | Area | Cited by | Status |
|---|---|---|---|---|
| US6766458B1 | Testing a computer system | Physics | 88 | Expired |
| US9571512B2 | Threat detection using endpoint variance | Electricity | 49 | Active |
| US9928366B2 | Endpoint malware detection using an event graph | Physics | 44 | Active |
| US9419989B2 | Threat detection using URL cache hits | Electricity | 41 | Active |
| US9967282B2 | Labeling computing objects for improved threat detection | Electricity | 37 | Active |
| US7043634B2 | Detecting malicious alteration of stored computer files | Physics | 37 | Expired |
| US9967283B2 | Normalized indications of compromise | Electricity | 35 | Active |
| US9774613B2 | Server drift monitoring | Electricity | 32 | Active |
| US9965627B2 | Labeling objects on an endpoint for encryption management | Electricity | 28 | Active |
| US10972485B2 | Enterprise network threat detection | Physics | 28 | Active |
| US9967267B2 | Forensic analysis of computing activity | Electricity | 26 | Active |
| US8607347B2 | Network stream scanning facility | Electricity | 22 | Active |
| US9967264B2 | Threat detection using a time-based cache of reputation information on an enterprise endpoint | Electricity | 21 | Active |
| US7810091B2 | Mechanism to check the malicious alteration of malware scanner | Physics | 19 | Expired |
| US9917859B2 | Mitigation of anti-sandbox malware techniques | Physics | 18 | Active |
| US7440471B1 | System and method for facilitating IPv6 protocol usage by an application program | Electricity | 15 | Expired |
| US11277416B2 | Labeling network flows according to source applications | Electricity | 14 | Active |
| US8656502B2 | Controlling use of a computer program installed on a computer | Physics | 13 | Active |
| US9992228B2 | Using indications of compromise for reputation based network security | Electricity | 9 | Active |
| US11102238B2 | Detecting triggering events for distributed denial of service attacks | Electricity | 9 | Active |
| US11165797B2 | Detecting endpoint compromise based on network usage history | Electricity | 9 | Active |
| US10382459B2 | Threat detection using a time-based cache of reputation information on an enterprise endpoint | Electricity | 8 | Active |
| US10489588B2 | Endpoint malware detection using an event graph | Physics | 7 | Active |
| US10841339B2 | Normalized indications of compromise | Electricity | 6 | Active |
| US10460105B2 | Endpoint malware detection using an event graph | Physics | 6 | Active |
Source: USPTO / EPO open patent data. Inventor disambiguation is heuristic; counts are objective bibliographic measures.