Patent · US Active

Determining entity maliciousness based on associated entities

US11303656B2 · kind B2 · utility

0Cited by

12References

11Claims

0Family size

Assignee

Cujo LLC · US

Inventors

Leonid Kuperman · Toronto, CA
Yuri Frayman · Miami, US
Einaras von Gravrock · Redondo Beach, US
Gabor Takacs · Győr, HU

Key dates

Filing date	Mar 1, 2018
Grant date	Apr 12, 2022
Priority date	—
Expiry date	Dec 19, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L43/062
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

The behavior analysis engine can identify malicious entities based on connections between the entity and other entities. The behavior analysis engine receives an entity from the network traffic hub and identifies entities that are connected to the entity within a threshold degree of separation. The behavior analysis engine applies a recursive process to the entity whereby the behavior analysis engine determines whether an entity is malicious based on whether its connections within a threshold degree of separation are malicious. The behavior analysis engine uses the maliciousness of the entities' connections to determine whether the entity is malicious and, if the entity is malicious, the behavior analysis engine may instruct the network traffic hub to block network communications associated with the malicious entity.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.