Patent · US Active

Detecting attacks and quarantining malware infected devices

US11483339B1 · kind B1 · utility

10Cited by

9References

20Claims

0Family size

Assignee

Pulse Secure, LLC · US

Inventors

Biju Ramachandra Kaimal · Kanchinakote, IN
Bandam Radha Shravan · Chilpur, IN
Thiyagu Rajendran · Kanchinakote, IN
Clifford E. Kahn · Framingham, US

Key dates

Filing date	Dec 18, 2019
Grant date	Oct 25, 2022
Priority date	—
Expiry date	Sep 23, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Attacks on a network device, e.g. an IoT device, are detected by analyzing network traffic and subsequently quarantining or blocking the network device on the network to prevent lateral movement of malware. The techniques described herein relate to developing a baseline of network device activity corresponding with a network device during a learning period and comparing the baseline of network device activity with new network activity by the network device in order to identify potentially unusual network device activity by the network device. If unusual network activity is found, remedial actions such as quarantining the network device or restricting some access to a network may be initiated.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.