Patent · US Active

System and method for analyzing packets

US9282109B1 · kind B1 · utility

218Cited by

199References

71Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Ashar Aziz · Kendall, US
Ramesh Radhakrishnan · Saratoga, US
Osman Abdoul Ismael · Palo Alto, US

Key dates

Filing date	Jun 30, 2014
Grant date	Mar 8, 2016
Priority date	—
Expiry date	Jun 30, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A system is provided with an interface and controller. The interface is configured to receive packets transmitted over a network between a first device and a second device. Transmitted over the network in accordance with a packet protocol, the packets include at least one packet transmitted from the first device and at least one packet transmitted from the second device. Coupled to the interface, the controller is configured to determine whether a plurality of packets have suspicious characteristics of malware and transmit the suspicious packets to an analysis environment. The analysis environment is configured to receive the plurality of packets that have suspicious characteristics of malware, modify at least a portion of these suspicious packets, and transmit at least the modified portion of the plurality of packets that have suspicious characteristics of malware to a virtual machine in accordance with a sequence of the packet protocol.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.