Deception network system

Assignee

• ACCENTURE GLOBAL SERVICES LIMITED · IE

Inventors

• Louis William DiValentin · Fairfax, US
• Matthew Carver · Fairfax, US
• Michael L. Lefebvre · Arlington, US
• David William Rozmiarek · Falls Church, US
• Eric Ellett · Bethesda, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/20
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Methods, systems, and apparatus, including computer programs encoded on computer storage media, for implementing deception networks. One of the systems includes a threat information server configured to monitor and control security threats, a management process orchestration server configured to receive one or more identified security threats from the threat information server and develop a response process applicable to each identified security threat, a network switching controller in communication with one or more network switching devices, a target computing device connected to one of the network switching devices, and an indicator analytics processor configured to generate threat intelligence based on activity observed on the target device and provide the observed threat intelligence to the threat information server. The threat information server can receive threat intelligence information, identify key indicators, and generate identified security threats. The network switching controller can implement network topology changes in response to received instructions.