The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Dec. 28, 2010
Filed:
Aug. 09, 2007
Kenny C. Tidwell, Los Altos, CA (US);
Kumar Saurabh, Daly City, CA (US);
Debabrata Dash, Sunnyvale, CA (US);
Hugh S. Njemanze, Los Altos, CA (US);
Pravin S. Kothari, San Jose, CA (US);
Kenny C. Tidwell, Los Altos, CA (US);
Kumar Saurabh, Daly City, CA (US);
Debabrata Dash, Sunnyvale, CA (US);
Hugh S. Njemanze, Los Altos, CA (US);
Pravin S. Kothari, San Jose, CA (US);
ArcSight, Inc., Cupertino, CA (US);
Abstract
A network security system is provided that receives information from various sensors and can analyze the received information. In one embodiment of the present invention, such a system receives a security event from a software agent. The received security event includes a target address and an event signature, as generated by the software agent. The event signature can be used to determine a set of vulnerabilities exploited by the received security event, and the target address can be used to identify a target asset within the network. By accessing a model of the target asset, a set of vulnerabilities exposed by the target asset can be retrieved. Then, a threat can be detected by comparing the set of vulnerabilities exploited by the security event to the set of vulnerabilities exposed by the target asset.