Patent · US Active

Network intrusion detection and analysis system and method

US7493659B1 · kind B1 · utility

322Cited by

10References

16Claims

0Family size

Assignee

McAfee, LLC · US

Inventors

Handong Wu · Los Angeles, US
Jerome Freedman · Greenbrae, US
Christopher Ivory · Glen Rock, US

Key dates

Filing date	Mar 5, 2002
Grant date	Feb 17, 2009
Priority date	—
Expiry date	Oct 29, 2026

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An intrusion detection and analysis system and method are disclosed. The system includes a data monitoring device comprising a capture engine operable to capture data passing through the network and configured to monitor network traffic, decode protocols, and analyze received data. The system further includes an intrusion detection device comprising a detection engine operable to perform intrusion detection on data provided by the data monitoring device. Application program interfaces are provided and configured to allow the intrusion detection device access to applications of the data monitoring device to perform intrusion detection. The system also includes memory for storing reference network information used by the intrusion detection device to determine if an intrusion has occurred.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.