Community-based defense through automatic generation of attribute values for rules of web application layer attack detectors
US9009832B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 22, 2013 |
| Grant date | Apr 14, 2015 |
| Priority date | — |
| Expiry date | Dec 31, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/02
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
According to one embodiment, a computing device is coupled to a set of web application layer attack detectors (ADs), which are coupled between HTTP clients and web application servers. The computing device automatically learns a new condition shared by a plurality of alert packages reported by the set of ADs due to a triggering of one or more rules that is indicative of a web application layer attack. The computing device automatically generates a new set of attribute values by analyzing the plurality of alert packages to identify the condition shared by the plurality of alert packages, and transmits the new set of attribute values for delivery to the set of ADs for a different rule to be used to protect against the web application layer attack from the HTTP clients or any other HTTP client.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.