The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Feb. 20, 2007
Filed:
Oct. 30, 2000
Anup K. Ghosh, Fairfax, VA (US);
Michael Schatz, Sterling, VA (US);
Christoph C. Michael, Reston, VA (US);
Aaron Schwartzbard, Reston, VA (US);
Anup K. Ghosh, Fairfax, VA (US);
Michael Schatz, Sterling, VA (US);
Christoph C. Michael, Reston, VA (US);
Aaron Schwartzbard, Reston, VA (US);
Cigital, Dulles, VA (US);
Abstract
An intrusion detection system (IDS) that uses application monitors for detecting application-based attacks against computer systems. The IDS implements application monitors in the form of a software program to learn and monitor the behavior of system programs in order to detect attacks against computer hosts. The application monitors implement machine learning algorithms to provide a mechanism for learning from previously observed behavior in order to recognize future attacks that it has not seen before. The application monitors include temporal locality algorithms to increased the accuracy of the IDS. The IDS of the present invention may comprise a string-matching program, a neural network, or a time series prediction algorithm for learning normal application behavior and for detecting anomalies.