Patent · US Active

Intrusion detection

US7565690B2 · kind B2 · utility

4Cited by

19References

23Claims

0Family size

Assignee

AT&T Intellectual Property I, L.P. · US

Inventors

James M. Doherty · Georgetown, US
Thomas Adams · Austin, US
Stephen Mark Mueller · Austin, US

Key dates

Filing date	Oct 17, 2003
Grant date	Jul 21, 2009
Priority date	—
Expiry date	Jul 16, 2026

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2141
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A system daemon starts through normal system startup procedures and reads its configuration file to determine which data entities (e.g., directories and files) are to be monitored. The monitoring includes a valid MD5 signature, correct permissions, ownership of the file, and an existence of the file. If any modification are made to the data entities, then the system daemon generates an alarm (intended for the administrator of the host) that an intrusion has taken place. Once an intrusion is detected, then the isolating steps or commands are issued in a real-time continuous manner to protect the host system from attack or intrusion.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.