Patent · US Active

System and method for detecting malicious device by using a behavior analysis

US11223625B2 · kind B2 · utility

1Cited by

7References

20Claims

0Family size

Assignee

Avast Software s.r.o. · CZ

Inventors

Jeroen De Knijf · Amsterdam, NL
Amit Siwal · Haarlem, NL
Shaul Levi · Amsterdam, NL

Key dates

Filing date	Dec 29, 2017
Grant date	Jan 11, 2022
Priority date	—
Expiry date	Dec 29, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04W12/122
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Malicious behavior of a device on a local network may be detected. A data stream from a device may be collected. A functional group may be created using behavioral data of devices of a known type. A behavior profile for the functional group may be generated and stored in a database. The data stream of the device is compared to the behavior profile of the functional group. A malicious behavior is indicated for the device in response to determining that the device's current behavior is not within a predetermined or configurable threshold of the behavior profile.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.