The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jul. 26, 2016
Filed:
Dec. 20, 2012
Monitoring operational activities in networks and detecting potential network intrusions and misuses
At&t Intellectual Property I, L.p., Atlanta, GA (US);
Zihui Ge, Secaucus, NJ (US);
Jie Chu, Elmhurst, NY (US);
Richard Huber, Eatontown, NJ (US);
Ping Ji, Secaucus, NJ (US);
Jennifer Yates, Morristown, NJ (US);
Yung-Chao Yu, Manalapan, NJ (US);
AT&T Intellectual Property I, L.P., Atlanta, GA (US);
Abstract
Concepts and technologies disclosed herein are for monitoring operational activities in networks and detecting potential network intrusions and misuses. According to one aspect disclosed herein, an intrusion detection system can collect logs from an authentication, authorization, and accounting system. The intrusion detection system can extract information from the logs, update intrusion detection information utilized by an intrusion detection rule based upon the information extracted from the logs, update a profile utilized by the intrusion detection rule, compare the profile and the intrusion detection rule against a running state of an on-going session, tag corresponding log entries with a threat score, calculate the threat scores from the corresponding log entries to create an aggregated threat score, and present the aggregated threat score. The intrusion detection system can also present an alarm if the aggregated threat score triggers an alarm condition.