Patent · US Active

Rapidly propagating threat detection

US7873998B1 · kind B1 · utility

21Cited by

13References

33Claims

0Family size

Assignee

Trustwave Holdings Inc · US

Inventors

Mark L. Wilkinson · Austin, US
Dirk Ourston · Dripping Springs, US

Key dates

Filing date	Jul 19, 2005
Grant date	Jan 18, 2011
Priority date	—
Expiry date	Nov 17, 2029

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2101
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method, system, apparatus, and computer-readable medium to detect rapidly propagating threats in a network. A rapidly propagating threat is detected by capturing a series of packets as the packets are communicated to nodes of the organizational network. The rapidly propagating threat can be detected without relying upon a known signature for the threat. Behavior of nodes when sending and receiving packets is examined for patterns typical of worm propagation.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.