Electrical computers and digital processing systems: support – Data processing protection using cryptography – Tamper resistant
Reexamination Certificate
2005-08-09
2005-08-09
Peeso, Thomas R. (Department: 2132)
Electrical computers and digital processing systems: support
Data processing protection using cryptography
Tamper resistant
C713S189000, C713S182000, C713S152000, C713S152000
Reexamination Certificate
active
06928549
ABSTRACT:
An intrusion detection system monitors for signature events, which are part of base intrusion sets that include signature event counters, signature thresholds, and base actions. Associated with each base intrusion set is an action set including an action counter, an action threshold, and an action variable. The associated action counter is updated when the base action of the base intrusion set is invoked responsive to the count of associated signature events meeting the associated signature threshold. The action counter is compared with an action threshold. If the action counter meets the threshold, the associated action variable is updated. The action variable is then passed to an analysis engine comprising a set of rules, which analyses the action variable either in isolation or together with other action variables associated with other base intrusion sets. According to the analysis, an element of a base intrusion set or an action set may be changed.
REFERENCES:
patent: 3743768 (1973-07-01), Copland
patent: 4727559 (1988-02-01), Yokoyama et al.
patent: 4959809 (1990-09-01), Rogers et al.
patent: 5278901 (1994-01-01), Shieh et al.
patent: 5793288 (1998-08-01), Peterson et al.
patent: 5805801 (1998-09-01), Holloway et al.
patent: 5919257 (1999-07-01), Trostle
patent: 6279113 (2001-08-01), Vaidya
Debar, H. “What is behavior-based intrusion detection” SANS Institute Resources, Intrusion Detection (Version 0.91), 1999 SANS Institute.
Halme, L. R. et al. “AINT Misbehaving: A Taxonomy of Anti-Intrusion Techniques” SANS Institute Resources, Intrusion Detection (Version 0.91), 1999 SANS Institute.
Brock, A. et al. Method of Operating an Intrusion Detection System According to a Set of Business Rules, IBM Patent Application, U.S. Appl. No. 09/851,286 filed May 8, 2001.
Brock Ashley Anderson
Kim Nathaniel Wook
Lingafelt Charles Steven
Peeso Thomas R.
Schmeiser Olsen & Watts
LandOfFree
Dynamic intrusion detection for computer systems does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Dynamic intrusion detection for computer systems, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Dynamic intrusion detection for computer systems will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3467416