Patent · US Active

Network intrusion detection

US9992215B2 · kind B2 · utility

1Cited by

0References

26Claims

0Family size

Assignee

WEBROOT INC. · US

Inventors

Hossein Eslambolchi · Los Altos Hills, US
Louie Gasparini · San Mateo, US
Chandra Madhekar · Del Mar, US
William Wright · Bedford, US

Key dates

Filing date	Oct 2, 2014
Grant date	Jun 5, 2018
Priority date	—
Expiry date	Oct 28, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L69/22
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A system for identifying a network intrusion includes four modules. The first module monitors network transmissions and creates a model of regular network activity. The second module receives the model of regular network activity and sets a threshold for irregular usage based on the model. The third module receives the threshold, compares a value of a candidate inter-nodal transmission of the network to the threshold, and identifies a potential intrusion when the value exceeds the threshold. The fourth module analyzes a transmission behavior of one or more nodes of the candidate inter-nodal transmission and identifies the network intrusion.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.