Patent · US Active

Advanced persistent threat (APT) detection center

US9628507B2 · kind B2 · utility

203Cited by

206References

35Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Thoufique Haq · Sunnyvale, US
Jinjian Zhai · Union City, US
Vinay Pidathala · San Jose, US

Key dates

Filing date	Sep 30, 2013
Grant date	Apr 18, 2017
Priority date	—
Expiry date	Jan 5, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/205
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computerized method is described in which one or more received objects are analyzed by an advanced persistent threat (APT) detection center to determine if the objects are APTs. The analysis may include the extraction of features describing and characterizing features of the received objects. The extracted features may be compared with features of known APT malware objects and known non-APT malware objects to determine a classification or probability of the received objects being APT malware. Upon determination that the received objects are APT malware, warning messages may be transmitted to a user of associated client devices. Classified objects may also be used to generate analytic data for the prediction and prevention of future APT attacks.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.