Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2011-03-15
2011-03-15
Srivastava, Vivek (Department: 2433)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S024000, C714S002000, C714S033000, C713S151000, C713S188000
Reexamination Certificate
active
07908657
ABSTRACT:
Detecting a variant of a known threat is disclosed. A portion of network traffic is matched with at least a portion of a signature associated with the known threat. If the portion of network traffic being matched with the signature does not exactly match the signature, the extent of match between the portion of network traffic and the signature is determined. If the extent of match satisfies a threshold, a security response is triggered based upon the extent of match.
REFERENCES:
patent: 5359659 (1994-10-01), Rosenthal
patent: 5581664 (1996-12-01), Allen et al.
patent: 2002/0199095 (2002-12-01), Bandini et al.
patent: 2004/0117648 (2004-06-01), Kissel
Xu et al. “Polymorphic Malicious Executable Scanner by API Sequence Analysis.” Presented and published at the Fourth International Conference on Hybrid Intelligence Systems, Dec. 5-9, 2004. ISBN 0-7695-2291-2.
Hunton & Williams LLP
Richards Kevin
Srivastava Vivek
Symantec Corporation
LandOfFree
Detecting variants of known threats does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Detecting variants of known threats, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Detecting variants of known threats will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2693187