Patent · US Active

Deception using distributed threat detection

US10091238B2 · kind B2 · utility

20Cited by

70References

20Claims

0Family size

Assignee

vArmour Networks, Inc. · US

Inventors

Choung-Yaw Shieh · Palo Alto, US
Marc Woolward · Bude, GB
Zhiping Liu · San Jose, US
Cheng-Lin Hou · San Jose, US
Matthew Williamson · King City, CA
Yi Hung Cheng · Tianjin, CN
Chien-Yang Hsu · Banluliao, TW
Hsin Tien Tseng · Taipei, TW

Key dates

Filing date	Mar 2, 2017
Grant date	Oct 2, 2018
Priority date	—
Expiry date	Mar 2, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/145
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Methods and systems for deception using distributed threat detection are provided. Exemplary methods by an enforcement point, the enforcement point communicatively coupled to a first data network and a second data network, the enforcement point not providing services in the second data network, include: receiving, from a first workload in the second data network, a data packet addressed to a second workload in the second data network, the data packet requesting a service from the second workload; determining the data packet is for unauthorized access of the second workload, the determining using at least some of a 5-tuple of the data packet; identifying a deception point using the service, the deception point being in the first data network and including a decoy for the service; and redirecting the data packet to the deception point in the first data network.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.