Patent · US Active

Systems and methods for identifying similar hosts

US9836512B1 · kind B1 · utility

5Cited by

3References

30Claims

0Family size

Assignee

Acalvio Technologies, Inc. · US

Inventors

Satnam Singh · Waterloo, CA
Santosh Kosgi · Bengaluru, IN
Rajendra A. Gopalakrishna · Fremont, US

Key dates

Filing date	Feb 23, 2017
Grant date	Dec 5, 2017
Priority date	—
Expiry date	Feb 23, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2127
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Systems and methods for identifying potentially compromised devices using attributes of a known compromised device may be provided. In one embodiment, an attribute set can be constructed for the compromised hosts using data from these logs. Weights can be assigned to each attribute in the attribute set initially, and further weights can be learned using audits by a user. This attribute set can be used in the disclosed systems and methods for identifying hosts that are similar to compromised hosts. The similar items can be used as hosts for deception mechanisms, can be taken off the network as being likely compromised or likely to become compromised, or quarantined.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.