The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Apr. 14, 2020
Filed:
Apr. 02, 2018
Illusive Networks Ltd., Tel Aviv, IL;
Shlomo Touboul, Kfar Chaim, IL;
Hanan Levin, Tel Aviv, IL;
Stephane Roubach, Herzliya, IL;
Assaf Mischari, Petach Tikva, IL;
Itai Ben David, Tel Aviv, IL;
Itay Avraham, Tel Aviv, IL;
Adi Ozer, Shoham, IL;
Chen Kazaz, Tel Aviv, IL;
Ofer Israeli, Tel Aviv, IL;
Olga Vingurt, Shderot, IL;
Liad Gareh, Herzliya, IL;
Israel Grimberg, Ra'anana, IL;
Cobby Cohen, Tel Aviv, IL;
Sharon Sultan, Tel Aviv, IL;
Matan Kubovsky, Tel Aviv, IL;
ILLUSIVE NETWORKS LTD., Tel Aviv, IL;
Abstract
A network surveillance method to detect attackers, including planting one or more honeytokens in one or more resources in a network of computers in which users access the resources in the network based on credentials, wherein a honeytoken is an object in memory or storage of a first resource that may be used by an attacker to access a second resource using decoy credentials, including planting a first honeytoken in a first resource, R, used to access a second resource, R, using first decoy credentials, and planting a second honeytoken in R, used to access a third resource, R, using second decoy credentials, and alerting that an attacker is intruding the network only in response to both (i) an attempt to access Rusing the first decoy credentials, and (ii) a subsequent attempt to access Rusing the second decoy credentials.