Application and network abuse detection with adaptive mitigation utilizing multi-modal intelligence data
US8881281B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | May 29, 2014 |
| Grant date | Nov 4, 2014 |
| Priority date | — |
| Expiry date | May 29, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/145
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
In an embodiment, a computer-implemented method detects a network or application abuse to a service provider environment. In the method, data is collected describing incoming requests from plurality of different external source addresses to the service provider environment. The collected data is used to compare the incoming requests against a heuristic. When the incoming requests are determined to match the heuristic, the requests, having the plurality of different external source addresses, are from a common abuse entity. Finally, the collected data is evaluated to determine that the common abuse entity is a potential network abuser of the service provider environment.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.