专利检索 ap:("Alan D. Boulanger" OR "Robert W. Danford" OR "Kevin D. Himberger" OR "Clark D. Jeffries" OR "Raj K. Singh") AND inv:"Robert W. Danford" 第 1 页

1.

发明申请
AUTOMATICALLY DETECTING MALICIOUS COMPUTER NETWORK RECONNAISSANCE BY UPDATING STATE CODES IN A HISTOGRAM 失效
标题翻译：通过在组织中更新状态代码自动检测恶意计算机网络的解决方案

公开(公告)号：US20080148406A1

公开(公告)日：2008-06-19

申请号：US12040065

申请日：2008-02-29

申请人： Alan D. Boulanger , Robert W. Danford , Kevin D. Himberger , Clark D. Jeffries , Raj K. Singh

发明人： Alan D. Boulanger , Robert W. Danford , Kevin D. Himberger , Clark D. Jeffries , Raj K. Singh

IPC分类号： G06F21/00

CPC分类号： H04L63/1408 , H04L43/00 , H04L63/1458 , H04L63/166

摘要： A detection and response system that generates an Alert if unauthorized scanning is detected on a computer network that includes a look-up table to record state value corresponding to the sequence in which SYN, SYN/ACK and RST packets are observed. A set of algorithms executed on a processing engine adjusts the state value in response to observing the packets. When the state value reaches a predetermined value indicating that all three packets have been seen, the algorithm generates an Alert.

摘要翻译： 检测和响应系统，如果在包含查看表的计算机网络上检测到未经授权的扫描，以记录与遵守SYN，SYN / ACK和RST数据包的顺序相对应的状态值的警报。在处理引擎上执行的一组算法根据观察数据包来调整状态值。当状态值达到表示已经看到所有三个分组的预定值时，该算法生成警报。

2.

发明授权
Automatically detecting malicious computer network reconnaissance by updating state codes in a histogram 有权
标题翻译：通过更新直方图中的状态代码自动检测恶意计算机网络侦察

公开(公告)号：US07356587B2

公开(公告)日：2008-04-08

申请号：US10629175

申请日：2003-07-29

申请人： Alan D. Boulanger , Robert W. Danford , Kevin D. Himberger , Clark D. Jeffries , Raj K. Singh

发明人： Alan D. Boulanger , Robert W. Danford , Kevin D. Himberger , Clark D. Jeffries , Raj K. Singh

IPC分类号： G06F15/16 , G06F15/173 , G06F12/14

CPC分类号： H04L63/1408 , H04L43/00 , H04L63/1458 , H04L63/166

摘要： A detection and response system that generates an Alert if unauthorized scanning is detected on a computer network that includes a look-up table to record state value corresponding to the sequence in which SYN, SYN/ACK and RST packets are observed. A set of algorithms executed on a processing engine adjusts the state value in response to observing the packets. When the state value reaches a predetermined value indicating that all three packets have been seen, the algorithm generates an Alert.

摘要翻译： 检测和响应系统，如果在包含查看表的计算机网络上检测到未经授权的扫描，以记录与遵守SYN，SYN / ACK和RST数据包的顺序相对应的状态值的警报。在处理引擎上执行的一组算法根据观察数据包来调整状态值。当状态值达到表示已经看到所有三个分组的预定值时，该算法生成警报。

3.

发明授权
Automatically detecting malicious computer network reconnaissance by updating state codes in a histogram 失效
标题翻译：通过更新直方图中的状态代码自动检测恶意计算机网络侦察

公开(公告)号：US07734776B2

公开(公告)日：2010-06-08

申请号：US12040065

申请日：2008-02-29

申请人： Alan D. Boulanger , Robert W. Danford , Kevin D. Himberger , Clark D. Jeffries , Raj K. Singh

发明人： Alan D. Boulanger , Robert W. Danford , Kevin D. Himberger , Clark D. Jeffries , Raj K. Singh

IPC分类号： G06F15/173 , G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00

CPC分类号： H04L63/1408 , H04L43/00 , H04L63/1458 , H04L63/166

摘要： A detection and response system that generates an Alert if unauthorized scanning is detected on a computer network that includes a look-up table to record state value corresponding to the sequence in which SYN, SYN/ACK and RST packets are observed. A set of algorithms executed on a processing engine adjusts the state value in response to observing the packets. When the state value reaches a predetermined value indicating that all three packets have been seen, the algorithm generates an Alert.

摘要翻译： 检测和响应系统，如果在包含查看表的计算机网络上检测到未经授权的扫描，以记录与遵守SYN，SYN / ACK和RST数据包的顺序相对应的状态值的警报。在处理引擎上执行的一组算法根据观察数据包来调整状态值。当状态值达到表示已经看到所有三个分组的预定值时，该算法生成警报。

搜索结果

国家/区域

专利有效性

申请日

公布(公告)日

申请人

申请人所在国/区域

发明人

IPC

IPC部

IPC大类

IPC小类

IPC大组

IPC小组

外观分类