Patent · US Active

Baiting endpoints for improved detection of authentication attacks

US10986124B2 · kind B2 · utility

9Cited by

5References

20Claims

0Family size

Assignee

Sophos Limited · GB

Inventors

Andrew J. Thomas · Woodstock, GB
Daniel Stutz · Karlsruhe, DE

Key dates

Filing date	Dec 18, 2018
Grant date	Apr 20, 2021
Priority date	—
Expiry date	Dec 18, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/104
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A credential store for an endpoint contains credentials for accessing a remote service. In general, the credentials will not have an ordinary, legitimate use for the endpoint, serving instead to log in to a dedicated trapping service or the like. In the event that the endpoint becomes compromised and an attacker gains access to the credential store, the presentation of the credentials to the remote service can provide an indication of compromise to the endpoint and any suitable remediation may be taken.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.