Detecting network intrusion using a decoy cryptographic key
US8719938B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Apr 9, 2012 |
| Grant date | May 6, 2014 |
| Priority date | — |
| Expiry date | Apr 9, 2032 |
Classification
- Technology area (CPC Y)Emerging Cross-Sectional Technologies
- CPC primaryY04S20/30
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Systems and methods for detecting intrusion into a data network are disclosed. Such intrusion can be detected, for example, by providing at least two network devices in a data network. Each of the network devices has a decoy cryptographic key that is used to detect unauthorized data and an authentic cryptographic key that is used to encrypt authorized data. The first network device receives data from the second network device that is encrypted using the decoy cryptographic key. The first network device determines that the data is encrypted using the decoy cryptographic key. The first network device deletes or otherwise discards the data encrypted using the decoy cryptographic key. The first network device can generate an alert message instructing other network devices that the second network device is generating the unauthorized data. The alert message also instructs the other network devices to ignore data originating from the second network device.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.