Joint anomaly detection across IOT devices
US10193913B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Aug 4, 2016 |
| Grant date | Jan 29, 2019 |
| Priority date | — |
| Expiry date | Dec 25, 2036 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/12
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Systems and methods of the present disclosure provide technology to identify when network-connected devices are likely infected with malware. Network communications are be monitored during a specific time window and a graph is created for a conditional random field (CRF) model. Vertices of the graph represent devices connected to the network and an edge between two vertices indicates that one or more network communications occurred between two devices represented by the two vertices during the time window. Network devices can report observations about network behavior during the time window and the observations can be used as input for the CRF model. The CRF model can then be used to determine infection-status values for the network devices.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.