The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Sep. 13, 2011
Filed:
Jan. 23, 2007
Stanley Taihai Chow, Ottawa, CA;
Jean-marc Robert, Montreal, CA;
Kevin Mcnamee, Ottawa, CA;
Douglas Wiemer, Ashton, CA;
Bradley Kenneth Mcfarlane, Ottawa, CA;
Stanley TaiHai Chow, Ottawa, CA;
Jean-Marc Robert, Montreal, CA;
Kevin McNamee, Ottawa, CA;
Douglas Wiemer, Ashton, CA;
Bradley Kenneth McFarlane, Ottawa, CA;
ALCATEL LUCENT, Paris, FR;
Abstract
A malware detection and response system based on traffic pattern anomalies detection is provided, whereby packets associated with a variety of protocols on each port of a network element are counted distinctly for each direction. Such packets include: ARP requests, TCP/SYN requests and acknowledgements, TCP/RST packets, DNS/NETBEUI name lookups, out-going ICMP packets, UDP packets, etc. When a packet causes an individual count or combination of counts to exceed a threshold, appropriate action is taken. The system can be incorporated into the fast path, that is, the data plane, enabling communications systems such as switches, routers, and DSLAMs to have built-in security at a very low cost.