Patent · US Active

Network intrusion detector with combined protocol analyses, normalization and matching

US8220048B2 · kind B2 · utility

2Cited by

1References

16Claims

0Family size

Assignee

Wisconsin Alumni Research Foundation · US

Inventors

Shai Rubin · Binyamina - Givat Ada, IL
Somesh Jha · Toronto, CA
Barton Paul Miller · Madison, US

Key dates

Filing date	Aug 21, 2006
Grant date	Jul 10, 2012
Priority date	—
Expiry date	Apr 12, 2029

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/552
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A network intrusion detection system combines the normally sequential steps of protocol analysis, normalization, and signature matching through the use of a regular expression to speed the monitoring of network data. The regular expression also allows the creation of a superset matcher, permitting multiple stages of matching of increased accuracy to produce additional throughput gains.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.