Patent · US Active

Systems and methods for malware analysis of network traffic

US9882924B2 · kind B2 · utility

3Cited by

4References

20Claims

0Family size

Assignee

Forcepoint LLC · US

Inventors

Monty D. McDougal · Dallas, US
John S. Lear · Purcellville, US
Julian A. Zottl · Springfield, US
Jesse J. Lee · Allen, US

Key dates

Filing date	Mar 8, 2016
Grant date	Jan 30, 2018
Priority date	—
Expiry date	Mar 23, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1416
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Generally discussed herein are systems, devices, and methods for malware analysis. In one or more embodiments, a method can include copying application layer data traffic to create copied application layer data traffic, forwarding at least a portion of the application layer data traffic to a destination client prior to a malware analysis of corresponding copied application layer data traffic, determining whether the copied application layer data traffic includes a specified property, and in response to a determination that the copied application layer data traffic includes the specified property, storing the copied application layer data traffic determined to include the specified property for subsequent malware analysis, the stored copied application layer data traffic including context data of the copied application layer data traffic.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.