System and method for detecting and controlling a drone implanted in a network attached device such as a computer
October 31, 2021. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.Patent ReferencesSecurity system for a network concentrator System for securing inbound and outbound data packet flow in a computer network Virus detection and removal apparatus for computer networks Information tracing system and information tracing method System for securing the flow of and selectively modifying packets in a computer network System for providing custom functionality to client systems by redirecting of messages through a user configurable filter network having a plurality of partially interconnected filters Internet filtering system for filtering data transferred over the internet utilizing immediate and deferred filtering actions Managed network device security method and apparatus Method and system for diagnosis and control of machines using connectionless modes of communication Storage device having function for coping with computer virus InventorsAssigneeApplicationNo. 10002764 filed on 10/31/2001US Classes:726/25, Vulnerability assessment726/24, Virus detection709/224, Computer network monitoring713/172, Intelligent token345/418, COMPUTER GRAPHICS PROCESSING726/22, MONITORING OR SCANNING OF SOFTWARE OR DATA INCLUDING ATTACK PREVENTION345/473AnimationExaminersPrimary: Wright, Norman M.Attorney, Agent or FirmInternational ClassG06F 13/00AbstractA system and method for detecting a drone implanted by a vandal in a network connected host device such as a computer, and controlling the output of the drone. The system includes an inbound intrusion detection system (IDS), an outbound IDS, a blocker such as a firewall, an inbound trace log for storing a trace of inbound traffic to the protected device, an outbound trace log for storing a trace of outbound traffic from the protected device, and a correlator. When the outbound IDS detects outbound distributed denial of service (DDoS) traffic, the outbound IDS instructs the blocker to block the outbound DDos traffic. The correlator then recalls the outbound trace log and the inbound trace log, correlates the logs, and deduces the source ID of a message responsible for triggering the drone. The correlator then instructs the blocker to block incoming messages that bear the source ID.Other References
| |
