Golden has been acquired by ComplyAdvantage.Read about it here ⟶

‌

US Patent 11770397 Malicious port scan detection using source profiles

Overview Structured Data Issues Contributors Activity

All edits

Edits on 27 Sep, 2023

"Created via: Entity Importer"

created this topic on 27 Sep, 2023

Edits made to:

Infobox (+33 properties)

Article (+906 characters)

‌

US Patent 11770397 Malicious port scan detection using source profiles

Article

Patent abstract

A method, including identifying, in network traffic during multiple periods, scans, each scan including an access of multiple ports on a given destination node by a given source node, and computing, for each given source in the scans, an average of destinations whose ports were accessed by the given source during any scan by the given source, and a fraction of periods when the given source accessed at least one of the destinations in at least one scan performed by the given source node. A whitelist is assembled sources for which one or more of the following conditions applies: the average of destinations accessed in the scans was greater than a first threshold, and the fraction of periods during which at least one destination was accessed in at least one scan was greater than a second threshold. Upon detecting a scan by any non-whitelisted node, a preventive action is initiated.

Infobox

Is a

Patent Jurisdiction

United States Patent and Trademark Office

Patent Number

Patent Inventor Names

Aviad Meyer

Idan Amit

Jonathan Allon

Yinnon Meshi

Date of Patent

September 26, 2023

Patent Application Number

17464716

Date Filed

September 2, 2021

Patent Citations

US Patent 11184377 Malicious port scan detection using source profiles

US Patent 7684568 Encrypting data in a communication network

US Patent 7712134 Method and apparatus for worm detection and containment in the internet core

US Patent 7908655 Connectionless port scan detection on a network

US Patent 8245298 Port scanning method and device, port scanning detection method and device, port scanning system, computer program and computer program product

US Patent 8397284 Detection of distributed denial of service attacks in autonomous system domains

US Patent 8516573 Method and apparatus for port scan detection in a network

US Patent 8578345 Malware detection efficacy by identifying installation and uninstallation scenarios

US Patent 9118582 Network traffic management using port number redirection

US Patent 9319421 Real-time detection and classification of anomalous events in streaming data

US Patent 9531736 Detecting malicious HTTP redirections using user browsing activity trees

US Patent 9690933 Framework for classifying an object as malicious with machine learning for deploying updated predictive models

US Patent 9773112 Exploit detection of malware and malware families

US Patent 10027694 Detecting denial of service attacks on communication networks

US Patent 10075461 Detection of anomalous administrative actions

US Patent 10140453 Vulnerability management using taxonomy-based normalization

US Patent 10706144 Cyber defense with graph theoretical approach

US Patent 10728281 Connection control apparatus, connection control method, and connection control program

US Patent 10904277 Threat intelligence system measuring network threat levels

Patent Primary Examiner

Badri Narayanan Champakesan

CPC Code

Find more entities like US Patent 11770397 Malicious port scan detection using source profiles

Use the Golden Query Tool to find similar entities by any field in the Knowledge Graph, including industry, location, and more.

Open Query Tool

Golden Query Tool

By using this site, you agree to our Terms of Service.