The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Mar. 01, 2011
Filed:
Mar. 23, 2005
David P. Mankins, Cambridge, MA (US);
David P. Mankins, Cambridge, MA (US);
Verizon Corporate Services Group Inc., Basking Ridge, NJ (US);
Raytheon BBN Technologies Corp., Basking Ridge, NJ (US);
Abstract
Kernel-based intrusion detection using Bloom filters is disclosed. In one of many possible embodiments for detecting an intrusion attack, a Bloom filter is provided and used to generate a Bloom filter data object. The Bloom filter data object contains data representative of expected system-call behavior associated with a computer program. The Bloom filter data object is embedded in an operating system ('OS') kernel upon an invocation of the computer program. Actual system-call behavior is compared with the data in the Bloom filter data object.