Patent · US Active

Real-time detection of malicious activity through collaborative filtering

US12021882B2 · kind B2 · utility

0Cited by

0References

20Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Omer Karin · Tel Aviv-Yafo, IL
Ram Haim Pliskin · Rishon LeZion, IL

Key dates

Filing date	May 17, 2022
Grant date	Jun 25, 2024
Priority date	—
Expiry date	Dec 27, 2042

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A machine compromised by malicious activity is detected by identifying an anomalous port opened on an entity of a network. The anomalous port is detected through collaborative filtering using usage patterns derived from normal network traffic using open ports of entities on the network. The collaborative filtering employs single value decomposition with alternating least squares to generate a recommendation score identifying whether an entity having a newly-opened port is likely to be used for malicious activity.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.