Patent · US Active

Systems and methods for detecting credential theft

US10162962B1 · kind B1 · utility

6Cited by

2References

20Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Adam Glick · Culver City, US
Brian Schlatter · Culver City, US
Feng Li · Beijing, CN
Akshata Krishnamoorthy Rao · Mountain View, US

Key dates

Filing date	Sep 14, 2016
Grant date	Dec 25, 2018
Priority date	—
Expiry date	Jan 27, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/88
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

The disclosed computer-implemented method for detecting credential theft may include (i) monitoring a secured computing system's credential store that may include at least one sensitive credential that may be used to facilitate authentication of a user that is attempting to access the secured computing system, (ii) gathering, while monitoring the credential store, primary evidence of an attempted theft of the sensitive credential from the credential store, (iii) gathering corroborating evidence of the attempted theft of the sensitive credential, and (iv) performing a security action in response to gathering the primary evidence and the corroborating evidence of the attempted theft. The primary evidence of the attempted theft of the sensitive credential may include evidence of any suspicious access of the sensitive credential from the credential store that occurs outside of a procedure of authenticating the user. Various other methods, systems, and computer-readable media are also disclosed.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.