Patent · US Revoked

Detecting malicious network addresses within a local network

US11165798B2 · kind B2 · utility

0Cited by

12References

20Claims

0Family size

Assignee

Cujo LLC · US

Inventors

Leonid Kuperman · Toronto, CA
Yuri Frayman · Miami, US
Einaras von Gravrock · Redondo Beach, US
Gabor Takacs · Győr, HU

Key dates

Filing date	Mar 1, 2018
Grant date	Nov 2, 2021
Priority date	—
Expiry date	Aug 5, 2038

Classification

Technology area (CPC —)General

Abstract

The behavior analysis engine can also detect malicious network addresses that are sent to networked devices in the local network. The network traffic hub identifies network communications that are transmitted through the local network that contain network addresses. The network traffic hub transmits (or sends) the network address to the behavior analysis engine and the behavior analysis engine extracts network address features from the network address. The behavior analysis engine then applies an execution model to the execution features to determine a confidence score for the network address that represents the execution model's certainty that the network address is malicious. The behavior analysis engine uses the confidence score to provide instructions to the network traffic hub as to whether to allow the networked device to receive the network address.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.