The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jun. 21, 2011
Filed:
Apr. 08, 2004
Sumeet Singh, San Diego, CA (US);
George Varghese, San Diego, CA (US);
Cristi Estan, La Jolla, CA (US);
Stefan Savage, Carlsbad, CA (US);
Sumeet Singh, San Diego, CA (US);
George Varghese, San Diego, CA (US);
Cristi Estan, La Jolla, CA (US);
Stefan Savage, Carlsbad, CA (US);
The Regents of the University of California, Oakland, CA (US);
Abstract
Detecting attacks against computer systems by automatically detecting signatures based on predetermined characteristics of the intrusion. One aspect looks for commonalities among a number of different network messages, and establishes an intrusion signature based on those commonalities. Data reduction techniques, such as a hash function, are used to minimize the amount of resources which are necessary to establish the commonalities. In an embodiment, signatures are created based on the data reduction hash technique. Frequent signatures are found by reducing the signatures using that hash technique. Each of the frequent signatures is analyzed for content, and content which is spreading is flagged as being a possible attack. Additional checks can also be carried out to look for code within the signal, to look for spam, backdoors, or program code.