Patent · US Active

Detecting malicious online activities using event stream processing over a graph database

US9967265B1 · kind B1 · utility

31Cited by

15References

9Claims

0Family size

Assignee

EMC IP Holding Company LLC · US

Inventors

Oded Peer · Raanana, IL
Oleg Freylafert · Hod HaSharon, IL
Anton Khitrenovich · Netanya, IL
Yana Vaisman · Netanya, IL

Key dates

Filing date	Sep 29, 2015
Grant date	May 8, 2018
Priority date	—
Expiry date	Sep 29, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/20
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques of detecting malicious events involve generating a relational graph of event data describing events that occur within a specified, limited time window. Along these lines, a malicious event detection computer receives event data describing interactions between entities such as users, devices, and network domains from various servers that occur within a specified time window. In response, the malicious event detection computer generates a relational graph that has graph structures (e.g., nodes and edges) representing these interactions. Analysis of patterns within the resulting relational graph indicates whether there is a malicious event occurring.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.