Patent · US Active

Real-time detection of malicious activity through collaborative filtering

US11363037B2 · kind B2 · utility

3Cited by

3References

12Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Omer Karin · Tel Aviv-Yafo, IL
Ram Haim Pliskin · Rishon LeZion, IL

Key dates

Filing date	Apr 1, 2019
Grant date	Jun 14, 2022
Priority date	—
Expiry date	Oct 19, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A machine compromised by malicious activity is detected by identifying an anomalous port opened on an entity of a network. The anomalous port is detected through collaborative filtering using usage patterns derived from normal network traffic using open ports of entities on the network. The collaborative filtering employs single value decomposition with alternating least squares to generate a recommendation score identifying whether an entity having a newly-opened port is likely to be used for malicious activity.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.