Detecting threats in big data platforms based on call trace and memory access patterns

发明授权

US10678907B2 Detecting threats in big data platforms based on call trace and memory access patterns 有权

请登陆查看更多内容

专利标题： Detecting threats in big data platforms based on call trace and memory access patterns
申请号： US15881020

申请日： 2018-01-26
公开(公告)号： US10678907B2

公开(公告)日： 2020-06-09
发明人: Santosh K. Aditham , Nagarajan Ranganathan
申请人： Santosh K. Aditham , Nagarajan Ranganathan
申请人地址： US FL Tampa
专利权人： University of South Florida
当前专利权人： University of South Florida
当前专利权人地址： US FL Tampa
代理机构： Thomas | Horstemeyer, LLP
主分类号： G06F21/52
IPC分类号： G06F21/52 ; G06F21/57 ; G06F21/55 ; G06F21/31

Detecting threats in big data platforms based on call trace and memory access patterns

摘要：

A runtime attack can be detected on a big data system while processes are executed on various computing devices. A behavior profile can be maintained for tasks or processes running on different computing devices. The existence of a call variance in one of the traces for one of the behavior profiles can be determined. A memory variance can also be detected in one of the behavior profiles. A runtime attack has occurred when both the memory variance and the call variance are determined to exist.

公开/授权文献

US20180211033A1 DETECTING THREATS IN BIG DATA PLATFORMS BASED ON CALL TRACE AND MEMORY ACCESS PATTERNS 公开/授权日：2018-07-26

信息查询

Espacenet

IPC分类:

G	物理
G06	计算；推算或计数
G06F	电数字数据处理（基于特定计算模型的计算机系统入G06N）
G06F21/00	防止未授权行为的保护计算机、其部件、程序或数据的安全装置
G06F21/50	.监控用户、程序或设备，以维护平台完整。例如：处理器、固件或操作系统
G06F21/52	..在程序执行过程中，例如堆栈完整性、缓冲区溢出或防止不必要的数据擦除