Patent · US Active

Detecting malicious beaconing communities using lockstep detection and co-occurrence graph

US11936661B2 · kind B2 · utility

0Cited by

5References

17Claims

0Family size

Assignee

Kyndryl, Inc. · US

Inventors

Jiyong Jang · Ossining, US
Dhilung Hang Kirat · White Plains, US
Bum Jun Kwon · College Park, US
Douglas Lee Schales · Campion Road, US
Marc Philippe Stoecklin · Bern, CH

Key dates

Filing date	Dec 30, 2020
Grant date	Mar 19, 2024
Priority date	—
Expiry date	Nov 13, 2042

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/144
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A cloud based implemented method (and apparatus) includes receiving input data including bipartite graph data in a format of source MAC (Media Access Control) address data versus destination IP (Internet Protocol) data and timestamp information, and providing the input bipartite graph data into a first processing to detect malicious beaconing activities using a lockstep detection module on the input bipartite graph data, as executed in a cloud environment, to detect possible synchronized attacks against a targeted infrastructure.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.