Patent · US Active

Storage and method for machine learning-based detection of ransomware attacks on a storage system

US12393338B2 · kind B2 · utility

0Cited by

2References

20Claims

0Family size

Assignee

Dell Products L.P. · US

Inventors

Shaul Dar · Netanya, IL
Ramakanth Kanagovi · Kanchinakote, IN
Guhesh Swaminathan · Komangalam, IN
Rajan Kumar · Lawrence, US

Key dates

Filing date	Jan 24, 2023
Grant date	Aug 19, 2025
Priority date	—
Expiry date	Oct 16, 2043

Classification

Technology area (CPC G)Physics
CPC primaryG06F3/0679
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method, computer program product, and computing system for processing a plurality of input/output (IO) requests associated with a plurality of storage objects of a storage system. A plurality of IO features may be generated using the plurality of IO requests including one or more of: a percentage of overwrite IO requests, a percentage of sequential read IO requests, and a percentage of sequential write IO requests. The plurality of IO features may be processed using a machine learning model. A ransomware attack may be monitored for on the storage system in real-time based upon, at least in part, the processing of the plurality of IO features using the machine learning model.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.