The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Aug. 12, 2014
Filed:
Oct. 19, 2009
Charles K. Stefanidakis, Newbury, MA (US);
Richard Person, Newburyport, MA (US);
Anish Dhanda, Cambridge, MA (US);
Gregory Sabatino, Cambridge, MA (US);
John J. Donovan, Hamilton, MA (US);
Charles K. Stefanidakis, Newbury, MA (US);
Richard Person, Newburyport, MA (US);
Anish Dhanda, Cambridge, MA (US);
Gregory Sabatino, Cambridge, MA (US);
John J. Donovan, Hamilton, MA (US);
Solarwinds Worldwide, LLC, Austin, TX (US);
Abstract
This invention is a system, method, and apparatus for detecting compromise of IP devices that make up an IP-based network. One embodiment is a method for detecting and alerting on the following conditions: (1) Denial of Service Attack; (2) Unauthorized Usage Attack (for an IP camera, unauthorized person seeing a camera image); and (3) Spoofing Attack (for an IP camera, unauthorized person seeing substitute images). A survey of services running on the IP device, historical benchmark data, and traceroute information may be used to detect a possible Denial of Service Attack. A detailed log analysis and a passive DNS compromise system may be used to detect a possible unauthorized usage. Finally, a fingerprint (a hash of device configuration data) may be used as a private key to detect a possible spoofing attack. The present invention may be used to help mitigate intrusions and vulnerabilities in IP networks.