Patent · US Active

System and method for analyzing suspicious network data

US8984638B1 · kind B1 · utility

261Cited by

107References

54Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Ashar Aziz · Kendall, US
Ramesh Radhakrishnan · Saratoga, US
Osman Abdoul Ismael · Palo Alto, US

Key dates

Filing date	Nov 12, 2013
Grant date	Mar 17, 2015
Priority date	—
Expiry date	Nov 12, 2033

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A system is provided with a controller and a device configured to receive and output network data from a communication network to the controller. Accordingly, the controller is configured to (i) receive the network data from the device, (ii) conduct heuristic analysis on the network data, (iii) identify at least a portion of the network data as suspicious upon determining by the heuristic analysis of a likelihood that at least the portion of the network data including malware, (iv) simulate transmission of the suspicious network data to at least one virtual machine of a plurality of virtual machines that is selected or configured using at least one software profile, and (v) analyze effects of the suspicious network data on the at least one virtual machine.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.