[특허]System and method for using timestamps to detect attacks

System and method for using timestamps to detect attacks 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	G06F-011/30 G06F-015/00 G06F-017/30
출원번호	US-0712260 (2007-02-27)
등록번호	US-8578490 (2013-11-05)
발명자 / 주소	Moran, Douglas B.
출원인 / 주소	Symantec Corporation
대리인 / 주소	Wilmer Cutler Pickering Hale and Dorr LLP
인용정보	피인용 횟수 : 2 인용 특허 : 166

초록 ▼

A system and method are disclosed for detecting intrusions in a host system on a network. The intrusion detection system comprises an analysis engine configured to use continuations and apply forward- and backward-chaining using rules. Also provided are sensors, which communicate with the analysis engine using a meta-protocol in which the data packet comprises a 4-tuple. A configuration discovery mechanism locates host system files and communicates the locations to the analysis engine. A file processing mechanism matches contents of a deleted file to a directory or filename, and a directory processing mechanism extracts deallocated directory entries from a directory, creating a partial ordering of the entries. A signature checking mechanism computes the signature of a file and compares it to previously computed signatures. A buffer overflow attack detector compares access times of commands and their associated files. The intrusion detection system further includes a mechanism for checking timestamps to identify and analyze forward and backward time steps in a log file.

대표청구항 ▼

1. A system for detecting intrusions on a host, comprising: a) a filesystem scanner, including at least one computer processor, configured to examine timestamps and signatures of files and directories in a filesystem; b) an analysis engine configured to compare timestamps and signatures of a directory of the filesystem and of files in the directory, and assign a weighted value out of a plurality of weighted values to the directory or at least one file of the files in the directory if the timestamps and signatures are inconsistent, and scan for inconsistencies between an entry in a log file and expected information of the filesystem, wherein the inconsistencies comprise an action recorded in the log file and a corresponding action not indicated in a corresponding filesytem file, wherein the weighted value is indicative of an attack; wherein the filesystem scanner is configured to examine timestamps and signatures of files and directories from a backup dump as an archival source of the directory of the filesystem and the files in the directory and to recover timestamp and signature information from the backup dump without restoring backup dump data to the filesystem, wherein the filesystem scanner is further configured to recover timestamp and signature information from a plurality of dump formats without restoring backup dump data to the filesystem, and wherein the analysis engine is further configured to compare the timestamps and signatures from the archival source to the timestamps and signatures of the directory and files in the directory. 2. The system as recited in claim 1, wherein the analysis engine is configured to treat timestamps as inconsistent if the timestamp of the directory is later than the timestamp of any file in the directory. 3. The system of claim 1, wherein the analysis engine is further configured to scan for inconsistencies between entries of a log file. 4. The system of claim 1, wherein the entry in the log file comprises a user login entry and the expected file system information comprises a login start up file. 5. The system of claim 1, wherein the analysis engine is further configured to scan for inconsistencies between an file system timestamp and an expected entry in a log file. 6. The system of claim 5, wherein the file system timestamp comprises an access time by a user account and the expected entry in the log file comprises a user login entry. 7. The system of claim 1, wherein the analysis engine is further configured to scan a log file for allocated and unused space. 8. A method for detecting intrusions on a host, comprising: examining timestamps and signatures of files and directories in a filesystem; comparing, using an analysis engine, timestamps and signatures of a directory of the filesystem and of files in the directory; assigning weighted value out of a plurality of values to the directory or at least one file of the files in the directory if the timestamps and signatures are inconsistent, wherein the weighted value is indicative of an attack; and scanning for inconsistencies between an entry in a log file and expected file system information, wherein the inconsistencies comprise an action recorded in the log file and a corresponding action not indicated in a corresponding filesystem file; wherein the scanning comprises examining timestamps and signatures of files and directories from a backup dump as an archival source of the directory of the filesystem and the files in the directory and recovering timestamp and signature information from the backup dump without restoring backup dump data to the filesystem, wherein the scanning is further configured to recover timestamp and signature information from a plurality of dump formats without restoring backup dump data to the filesystem, and wherein the analysis engine is configured to compare the timestamps and signatures from the archival source to the timestamps and signatures of the directory and files in the directory. 9. The method as recited in claim 8, further including treating timestamps as inconsistent if the timestamp of the directory is later than the timestamp of any file in the directory. 10. The method as recited in claim 8, wherein examining includes examining timestamps of files and directories from an archival source, and comparing includes comparing the timestamps from the archival source to the timestamps of the directory and files in the directory. 11. The method of claim 8, wherein the entry in the log file comprises a user login entry and the expected file system information comprises a login start up file. 12. The method of claim 8, further comprising: scanning for inconsistencies between an file system timestamp and an expected entry in a log file. 13. The method of claim 12, wherein the file system timestamp comprises an access time by a user account and the expected entry in the log file comprises a user login entry. 14. A computer program product for detecting intrusions on a host, the computer program product being embodied in a non-transitory computer readable storage medium and comprising computer instructions for: examining timestamps and signatures of files and directories in a filesystem; comparing timestamps and signatures of a directory of the filesystem and of files in the directory; assigning a weighted value out of a plurality of values to the directory or at least one file of the files in the directory if the timestamps and signatures are inconsistent, wherein the weighted value is indicative of an attack; and scanning for inconsistencies between an entry in a log file and expected file system information, wherein the inconsistencies comprise an action recorded in the log file and a corresponding action not indicated in a corresponding filesystem file; wherein the examining includes examining timestamps and signatures of files and directories from a backup dump as an archival source of the directory of the filesystem and the files in the directory and recovering timestamp and signature information from the backup dump without restoring backup dump data to the filesystem, wherein the examining is further configured to recover timestamp and signature information from a plurality of dump formats without restoring backup dump data to the filesystem, and wherein the comparing comprises comparing the timestamps and signatures from the archival source to the timestamps and signatures of the directory and files in the directory. 15. The computer program product as recited in claim 14, the computer program product further comprising computer instructions for treating timestamps as inconsistent if the timestamp of the directory is later than the timestamp of any file in the directory.

이 특허에 인용된 특허 (166)

Seaman Michael J., Active topology maintenance in reconfiguring bridged local area networks with state transition with forgetting interval.
상세보기
Kocher Paul C., Apparatus and method for confirming, timestamping, and archiving printer and telecopier transmissions.
상세보기
Vu Hung T. (Ottawa CAX), Apparatus and method for providing a secure gateway for communication and data exchanges between networks.
상세보기
Thuraisingham Bhavani Marienne (Lexington MA) Ford William Rose Barlett (Billerica MA), Apparatus and method for the detection of security violations in multilevel secure databases.
상세보기
Andres Frederic,FRX, Apparatus for evaluating database query performance having libraries containing information for modeling the various sys.
상세보기
Davis Alan L. (Half Moon Bay CA) Robison Shane V. (Half Moon Bay CA) Stevens Kenneth S. (Union City CA), Apparatus for multi-processor communications.
상세보기
Sandage David A. (Forest Grove OR) Stanley James C. (Portland OR) Hunt Stewart W. (Portland OR) Kunz Arland D. (Beaverton OR), Architecture for implementing PCMCIA card services under the windows operating system in enhanced mode.
상세보기
Sun, Peter C. P.; Lin, Wallace, Architecture of data communications switching system and associated method.
상세보기
Safadi Reem ; Vince Lawrence, Authorization and access control of software object residing in set-top terminals.
상세보기
Gupta Sarbari (Rockville MD) Gligor Virgil D. (Chevy Chase MD), Automated penetration analysis system and method.
상세보기
Bernardo Richard S. ; Logan Christopher ; Karra Elena, Automated system and method for approving web site content.
상세보기
Colvin ; Sr. Bryan, Centralized secure communications system.
상세보기
Jackowski Steven J. ; Thomas Christopher N., Client-side application-classifier gathering network-traffic statistics and application and user names using extensible-service provider plugin for policy-based network control.
상세보기
Coffee Steven R. ; Pinsley David B. ; Poloniewicz Karen A. ; Costello Stephen J. ; Stanziani Steven N., Computer use meter and analyzer.
상세보기
Hypponen, Mikko; Hypponen, Ari; Kuisha, Mikko; Rahu, Urmas; Siilasmaa, Risto, Computer virus screening.
상세보기
Schnurer John ; Klemmer Timothy J., Computer virus trap.
상세보기
Goldring Robert D. (Morgan Hill CA), Consistent recreation of events from activity logs.
상세보기
Grohoski Gregory F. (Cedar Park TX) Mitchell Oscar R. (Pflugerville TX) Nguyen Tung M. (Menlo Park CA) Rim Yongjae (Cedar Park TX), Crossbar switch apparatus and protocol.
상세보기
Hyun Eun-Hee,KRX ; Kim Sung-Hee,KRX, Data audits based on timestamp criteria in replicated data bases within digital mobile telecommunication system.
상세보기
Farber David A. ; Lachman Ronald D., Data processing system using substantially unique identifiers to identify data items, whereby identical data items hav.
상세보기
Levi, Shaul; Feitelberg, Rafael; Topaz, Assaf, Data quality assurance.
상세보기
Dunphy William E. (Westminster CO) Halladay Steven M. (Louisville CO) Moy Michael E. (Lafayette CO) Munro Frederick G. (Broomfield CO), Data storage and protection system.
상세보기
Safadi, Reem, Detection of suspect software objects and signatures after failed authentication.
상세보기
Renaud Benjamin J., Digital signatures for data streams and data archives.
상세보기
Chess David M. (Mohegan Lake NY), Discrimination of malicious changes to digital information using multiple signatures.
상세보기
Lin, Mei-Lin Linda; Zhou, Fei; Francis, Joe; Sampath, Srikanth; Ramachandran, Satya N.; Varakur, Gangavara Prasad, Distributed database system providing data and space management methodology.
상세보기
Krawczyk Hugo M. (Riverdale NY), Distributed fingerprints for information integrity verification.
상세보기
Hecht Matthew S. (Potomac MD) Johri Abhai (Gaithersburg MD) Wei Tsung T. (Gaithersburg MD) Steves Douglas H. (Austin TX), Distributed security auditing subsystem for an operating system.
상세보기
Munson, John C.; Elbaum, Sebastian G., Dynamic software system intrusion detection.
상세보기
Leblang David B. (Wayland MA) Allen Larry W. (Cambridge MA) Chase ; Jr. Robert P. (Newton MA) Douros Bryan P. (Framingham MA) Jabs David E. (Sudbury MA) McLean ; Jr. Gordon D. (Brookline MA) Minard D, Dynamic software version auditor which monitors a process to provide a list of objects that are accessed.
상세보기
Julie Lynn Huff ; Tracy Glenn Shelanskey ; Sheila Ann Jackson, Dynamic system defense for information warfare.
상세보기
Bilgic Izzet M. ; Menon Narayan P., Encryption and decryption in communication system with wireless trunk.
상세보기
David L. Drake ; David J. Webster, Event detection.
상세보기
Chen Eva ; Lau Steven Yuen-Lam ; Liang Yung-Chang, Event triggered iterative virus detection.
상세보기
Moran,Douglas B., Extensible intrusion detection system.
상세보기
Lermuzeaux Jean-Marc (St Michel sur Orge FRX) Emery Thierry (St Germain les Arpajon FRX) Gonthier Patrice (Antony FRX), Facility for detecting intruders and suspect callers in a computer installation and a security system including such a f.
상세보기
Berglund Neil Clair, Fail-safe communications network for use in system power control.
상세보기
Ruth Bergman ; Muriel Medard, Fault isolation for communication networks for isolating the source of faults comprising attacks, failures, and other network propagating errors.
상세보기
Eshel Marc M. (Tarrytown NY) Hunt Guerney D. H. (Ithaca NY) Jones Donald N. (Vestal NY) Meyer Christopher (Vestal NY) Schwartz Frederick A. (Binghamton NY), File manager for files shared by heterogeneous clients.
상세보기
Martin Mayhead GB; Graham Parrington GB; James Radley GB; Gradimir Starovic GB, File server system tolerant to software and hardware failures.
상세보기
Rune Johan,SEX, GRAN access port addressing method and apparatus.
상세보기
Chung, Kevin Kwong-Tai; Shi, Xiaoming, Generation and verification of a digitized signature.
상세보기
Whetsel Lee D. (Plano TX), Hierarchical connection method apparatus and protocol.
상세보기
Phillip Andrew Porras ; Alfonso Valdes, Hierarchical event monitoring and analysis.
상세보기
Kato Mitsuhide (Shiga-ken JPX) Tsuru Teruhisa (Kameoka JPX), High-frequency switch.
상세보기
Maloney Michael P. ; Suit John M. ; Rubel Rich ; Woodus Francis M., Information security analysis system.
상세보기
Wiederhold Gio, Information sharing system and method with requester dependent sharing and security rules.
상세보기
Lo William ; Crayford Ian S., Intrusion control in repeater based networks.
상세보기
Craig H. Rowland, Intrusion detection system.
상세보기
Hu Wei-Ming (Arlington MA) Mason Andrew H. (Hollis NH), Lattice scheduler method for reducing the impact of covert-channel countermeasures.
상세보기
Best, Robert M., Linked electronic game systems.
상세보기
Holloway Malcolm H. ; Prorock Thomas Joseph, Managed network device security method and apparatus.
상세보기
Helbig ; Sr. Walter A., Method and apparatus enhancing computer system security.
상세보기
Aziz Ashar (Fremont CA), Method and apparatus for a key-management scheme for internet protocols.
상세보기
Esbensen Daniel, Method and apparatus for automated network-wide surveillance and security breach intervention.
상세보기
Etgen,Michael Peter, Method and apparatus for calculating data integrity metrics for web server activity log analysis.
상세보기
Donoho David Leigh ; Hindawi David Salim ; Lippincott Lisa Ellen, Method and apparatus for computed relevance messaging.
상세보기
Ault Donald F. (Hyde Park NY) Petersen David B. (Wappingers Falls NY) Redding Ian G. (Winchester GBX) Schmandt Stephen J. (Tokyo JPX), Method and apparatus for cross-partition control in a partitioned process environment.
상세보기
Bellare Mihir ; Guerin Roch Andre ; Rogaway Phillip Walder, Method and apparatus for data authentication in a data communication environment.
상세보기
Bruell Gregory O. (Carlisle MA), Method and apparatus for defining data packet formats.
상세보기
Klaus Christopher W., Method and apparatus for detecting and identifying security vulnerabilities in an open network computer communication sy.
상세보기
William R. Cousins ; Franz Badias ; William S. Means, Method and apparatus for detecting changes to a collection of objects.
상세보기
Lyon Thomas ; Newman Peter ; Minshall Greg ; Hinden Robert ; Liaw Fong Ching ; Hoffman Eric, Method and apparatus for dynamically shifting between routing and switching packets in a transmission network.
상세보기
Lyon Thomas ; Newman Peter ; Minshall Greg ; Hinden Robert ; Liaw Fong Ching ; Hoffman Eric ; Huston Lawrence B. ; Roberson William A., Method and apparatus for dynamically shifting between routing and switching packets in a transmission network.
상세보기
Thompson Horace C., Method and apparatus for maintaining security in a packetized data communications network.
상세보기
Liu Quentin C., Method and apparatus for managing a virtual private network.
상세보기
Mattison Phillip E., Method and apparatus for protecting flash memory.
상세보기
Lu Gin-Pao ; Jordan Hank ; Chu Paul, Method and apparatus for re-assigning network addresses to network servers by re-configuring a client host connected thereto.
상세보기
Howard John H. (Cambridge MA), Method and apparatus for reconciling different versions of a file.
상세보기
Michener John R. (Princeton NJ), Method and apparatus for securing access to a computer facility.
상세보기
Kurtzberg Jerome M. ; Levanoni Menachem, Method and apparatus for testing the integrity of computer security alarm systems.
상세보기
Bonnie J. Lowell, Method and apparatus for tracking network usage.
상세보기
Ruvolo Joann, Method and means for preventing unauthorized resumption of suspended authenticated internet sessions using locking and t.
상세보기
Antognini James J. (White Plains NY) Cubert Robert Michael (Sacramento CA) Gladney Henry Martin (Saratoga CA) Hildebrand ; Jr. David Burns (San Jose CA) Horne Steven Fletcher (Auburn CA) Schmiedeskam, Method and means for providing access to a library of digitized documents and images.
상세보기
Robert E. Gleichauf ; Daniel M. Teal ; Kevin L. Wiley, Method and system for adaptive network security using intelligent packet analysis.
상세보기
Campbell, Wayne A.; Walker, Jeffrey H., Method and system for detecting intrusion into and misuse of a data processing system.
상세보기
Smaha Stephen E. (Austin TX) Snapp Steven R. (Austin TX), Method and system for detecting intrusion into and misuse of a data processing system.
상세보기
Howard Steven Kenneth ; Martin David Charles ; Plutowski Mark Earl Paul, Method and system for emulating web site traffic to identify web site usage patterns.
상세보기
Keene William Norman, Method and system for improved database disaster recovery.
상세보기
Nessett Danny M. ; Grabelsky David ; Borella Michael S. ; Sidhu Ikhlaq S., Method and system for locating network services with distributed network address translation.
상세보기
Walker Jeffrey H., Method and system for reducing the volume of audit data and normalizing the audit data received from heterogeneous sources.
상세보기
Beser Nurettin B., Method and system for secure cable modem initialization.
상세보기
Veil Leonard Scott ; Ward Gary Paul ; Weiss Richard Alan ; Murray Eric Alan, Method and system for secure transactions in a computer system.
상세보기
Sherman Andrew P. ; McCargar Scott E., Method for deallocating a log in database systems.
상세보기
Kelley Henry H. (Glendale CA), Method for entrapping unauthorized computer access.
상세보기
Golding Richard A., Method for performing atomic, concurrent read and write operations on multiple storage devices.
상세보기
Mann Omri (Jerusalem ILX), Method for recovery of a computer program infected by a computer virus.
상세보기
Hsieh Vincent, Method for security shield implementation in computer system's software.
상세보기
Olarig Sompong P. ; Angelo Michael F., Method for the secure remote flashing of a BIOS memory.
상세보기
Brian Shuster, Method, apparatus and system for directing access to content on a computer network.
상세보기
Nine, Harmon; Kronenberg, Sandy C., Method, apparatus, and article of manufacture for a network monitoring system.
상세보기
Joyce, James B., Methods and apparatus for heuristic firewall.
상세보기
Jose Alberto Tello CA, Modified computer motherboard security and identification system.
상세보기
Eric David O'Brien ; James Robert Tryon, Jr., Modular framework for configuring action sets for use in dynamically processing network events in a distributed computing environment.
상세보기
Day Michael David, Network alert handling system and method.
상세보기
Witkowski, Michael L.; Mayer, Dale J.; Walker, William J.; Roller, Kirk D.; Hareski, Patricia E.; Kotzur, Gary B., Network communication device including bonded ports for increased bandwidth.
상세보기
Milan V. Trcka ; Kenneth T. Fallon ; Mark R. Jones ; Ronald W. Walker, Network security and surveillance system.
상세보기
Porras Phillip A. ; Valdes Alfonso, Network surveillance.
상세보기
Porras, Phillip Andrew; Valdes, Alfonso, Network surveillance.
상세보기
Porras, Phillip Andrew; Valdes, Alfonso, Network surveillance.
상세보기
Conklin David Allen ; Harrison John Reed, Network surveillance system.
상세보기
Ichinohe, Shinya; Noyama, Norihide; Niwa, Tokuhiro; Nakamura, Masao, Network system having function of changing route upon failure.
상세보기
Porras, Phillip Andrew; Fong, Martin Wayne, Network-based alert management.
상세보기
Pascucci Gregory A. (Waukesha WI) Rasmussen David E. (Wales WI) Decious Gaylon M. (Milwaukee WI) Garbe James R. (Greenfield WI) Hyzer Susan M. (Brown Deer WI) Woest Karen L. (Wauwatosa WI) Vairavan V, Networked facilities management system with time stamp comparison for data base updates.
상세보기
Cox George W. ; Aucsmith David W. ; Onnen Paul E., Object-based digital signatures.
상세보기
Spinney Barry A. (Wayland MA) Simcoe Robert J. (Westboro MA) Thomas Robert E. (Hudson MA) Varghese George (Bradford MA), Packet format in hub for packet data communications system.
상세보기
DePrycker Martin L. F. (St. Niklaas BEX) DeSomer Michel P. M. (Aalst BEX), Packet switching network.
상세보기
Shieh Shiuh-Pyung W. (Hsinchu MD TWX) Gligor Virgil D. (Chevy Chase MD), Pattern-oriented intrusion-detection system and method.
상세보기
Kuznetsov Oleg V. (Kiev UAX) Luchuk Dmitry A. (Kiev UAX), Personal computer security system.
상세보기
Nachenberg Carey S., Polymorphic virus detection module.
상세보기
Force Gordon (San Jose CA) Davis Timothy D. (Arlington TX) Duncan Richard L. (Bedford TX) Norcross Thomas M. (Arlington TX) Shay Michael J. (Arlington TX) Short Timothy A. (Duncanville TX), Programmable distributed personal security.
상세보기
Salim, Jamal Hadi, Programmable packet switching device.
상세보기
Cunningham Gordon Cotter, Real-time financial card application system.
상세보기
Caronni Germano,CHX ; Skrenta Rich ; Markson Tom ; Aziz Ashar,PKX, Scheme to allow two computers on a network to upgrade from a non-secured to a secured session.
상세보기
Bean Robert G. (Colorado Springs CO) Beckman Michael E. (Colorado Springs CO) Rubinson Barry L. (Colorado Springs CO) Gardner Edward A. (Colorado Springs CO) Sergeant O. Winston (Colorado Springs CO), Secondary storage facility employing serial communications between drive and controller.
상세보기
Davis Derek L., Secure BIOS.
상세보기
Green Michael W. ; Jensen Andrew W., Secure server utilizing separate protocol stacks.
상세보기
Golan Gilad,ILX, Security monitor.
상세보기
Kayashima Makoto,JPX ; Terada Masato,JPX, Security system and method for computers connected to network.
상세보기
Holm Frode ; Hata Kazue, Speech synthesis employing prosody templates.
상세보기
Holden James M. ; Levin Stephen E. ; Nickel James O. ; Wrench Edwin H., Stand alone security device for computer networks.
상세보기
Brown Paul J. (16 Carmen Dr. Poughkeepsie NY 12603) Elliott Joseph C. (29 Larchmont Dr. Hopewell Junction NY 12533) Franaszek Peter A. (Pine Tree Dr. Katonah NY 10536) Hoppe Karl H. (R.D. 1 ; Box 30B, Switch and its protocol for making dynamic connections.
상세보기
Moran, Douglas B., System and method for analyzing filesystems to detect intrusions.
상세보기
Lyle, Michael P.; Ross, Robert F.; Maricondo, James R., System and method for computer security.
상세보기
Lyle,Michael P.; Ross,Robert F.; Maricondo,James R., System and method for computer security.
상세보기
Sorkin, Stephen; Lyle, Michael; Ross, Robert F.; Maricondo, James R., System and method for computer security using multiple cages.
상세보기
Sorkin,Stephen; Lyle,Michael; Ross,Robert F.; Maricondo,James R., System and method for computer security using multiple cages.
상세보기
Pereira J. L. A., System and method for controlling access to personal computer system resources.
상세보기
Tajalli Homayoon (Ellicott City MD) Badger Mark L. (Rockville MD) Dalva David I. (Rockville MD) Walker Stephen T. (Glenwood MD), System and method for controlling the use of a computer.
상세보기
Goldstein, Leonid, System and method for data access.
상세보기
Holloway Malcolm H. ; Prorock Thomas Joseph, System and method for detecting and preventing security.
상세보기
Moran, Douglas B., System and method for detecting buffer overflow attacks.
상세보기
Moran,Douglas B., System and method for detecting computer intrusions.
상세보기
Lyle,Michael P.; Ross,Robert F.; Maricondo,James R., System and method for generating fictitious content for a computer.
상세보기
Andrew Flint CA; Irving Reid CA; Gene Amdur CA, System and method for implementing a security policy.
상세보기
Perholtz Ronald J. (Silver Spring MD) Elmquest Eric J. (Arlington VA), System and method for monitoring computer environment and operation.
상세보기
Srisuresh Pyda ; Willens Steven M., System and method for network address translation as an external service in the access server of a service provider.
상세보기
Ramakrishnan Kadangode K., System and method for performing switching in multipoint-to-multipoint multicasting.
상세보기
Lyle,Michael P.; Ross,Robert F.; Maricondo,James R., System and method for preventing detection of a computer connection to an external device.
상세보기
Lyle,Michael P.; Ross,Robert F.; Maricondo,James R., System and method for preventing detection of a selected process running on a computer.
상세보기
Lyle, Michael P., System and method for protecting a computer network against denial of service attacks.
상세보기
Osborne, Anthony Charles; Leidl, Bruce Robert; Eschelbeck, Gerhard; Villa, Andrea Emilio, System and method for providing a network host decoy using a pseudo network protocol stack implementation.
상세보기
John Mark Birrell, Jr., System and method for providing message redirection in networked environments.
상세보기
Zenchelsky Daniel N. ; Dutta Partha P. ; London Thomas B. ; Vrsalovic Dalibor F. ; Siil Karl Andres, System and method for providing peer level access control on a network.
상세보기
Boebert, William E.; Rogers, Clyde O.; Andreas, Glenn; Hammond, Scott W.; Gooderum, Mark P., System and method for providing secure internetwork services via an assured pipeline.
상세보기
Lyle, Michael P.; Maricondo, James R., System and method for tracking the source of a computer attack.
상세보기
Moran,Douglas B., System and method for using login correlations to detect intrusions.
상세보기
Moran,Douglas B., System and method for using signatures to detect computer intrusions.
상세보기
Moran,Douglas B., System and method for using timestamps to detect attacks.
상세보기
Eschelbeck, Gerhard; Schlemmer, Andreas; Blaimschein, Peter, System and process for brokering a plurality of security applications using a modular framework in a distributed computing environment.
상세보기
Bertin Olivier (Nice FRX) Chobert Jean-Paul (Carros FRX) Pruvost Alain (Valauris FRX), System for managing topology of a network in spanning tree data structure by maintaining link table and parent table in.
상세보기
Bonnell David N. (Houston TX) Tatarinov Kirill L. (Bellaire TX) Picard Martin W. (Bellaire TX), System for monitoring and managing computer resources and applications across a distributed computing environment using.
상세보기
Montenegro Gabriel E. (Fremont CA) Drach Steven J. (San Francisco CA) Wong Ho Y. (Sunnyvale CA), System isolation and fast-fail.
상세보기
Cotner Curt Lee ; Pickel James Willis, System, method and program for enabling a client to reconnect to a same server in a network of computer systems after the server has moved to a different network address.
상세보기
Robert F. Groshon ; L. Aaron Philipp ; Jason C. Stone, Systems and methods for preventing transmission of compromised data in a computer network.
상세보기
Ginter Karl L. ; Shear Victor H. ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
상세보기
Wellard Ronald George,CAX ; Papineau Mario Rosaire Joseph,CAX ; Hamel Pierre-Antoine Bertrand Nicolas,CAX ; Onsy Sammy John,CAX, Topology verification process for controlling a personal communication services system.
상세보기
Joao Raymond Anthony ; Bock Robert Richard, Transaction security apparatus and method.
상세보기
Wu Kun-Lung ; Yu Philip Shi-Lung, Traversal path-based approach to understanding user-oriented hypertext object usage.
상세보기
Lee Kuo-Chu (Franklin NJ), Tree structured variable priority arbitration implementing a round-robin scheduling policy.
상세보기
McNabb Paul A. ; Slavin Pavel S. ; Hanson Chad J. ; Sandone Randall J., Trusted compartmentalized computer operating system.
상세보기
Griffin Claire ; Barnes Douglas, Trusted delegation system.
상세보기
Miller Arnold (Bellevue WA) Neeman Yuval (Bellevue WA) Contorer Aaron M. (Kirkland WA) Misra Pradyumna K. (Issaquah WA) Seaman Michael R. C. (Kirkland WA) Rubin Darryl E. (Redmond WA), Unification of directory service with file system services.
상세보기
Newton Farrell ; Williams Gareth, User identification and authentication system using ultra long identification keys and ultra large databases of identif.
상세보기
Beardsley Brent C. (Tucson AZ) Brailey Allen C. (Tucson AZ) Leung Peter L. H. (Tucson AZ), Using time stamps to correlate data processing event times in connected data processing units.
상세보기
Wesinger ; Jr. Ralph E. ; Coley Christopher D., Web server employing multi-homed, moldular framework.
상세보기

이 특허를 인용한 특허 (2)

Purpura, William J., Computer defenses and counterattacks.
상세보기
Hajmasan, Gheorghe F.; Portase, Radu M., Systems and methods for tracking malicious behavior across multiple software entities.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

System and method for using timestamps to detect attacks 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (166)

이 특허를 인용한 특허 (2)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

System and method for using timestamps to detect attacks 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (166)

이 특허를 인용한 특허 (2)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트