[go: up one dir, main page]

WO2005119450A3 - Intelligent database selection for intrusion detection & prevention systems - Google Patents

Intelligent database selection for intrusion detection & prevention systems Download PDF

Info

Publication number
WO2005119450A3
WO2005119450A3 PCT/US2005/018751 US2005018751W WO2005119450A3 WO 2005119450 A3 WO2005119450 A3 WO 2005119450A3 US 2005018751 W US2005018751 W US 2005018751W WO 2005119450 A3 WO2005119450 A3 WO 2005119450A3
Authority
WO
WIPO (PCT)
Prior art keywords
intrusion detection
prevention systems
database selection
intelligent database
database
Prior art date
Application number
PCT/US2005/018751
Other languages
French (fr)
Other versions
WO2005119450A2 (en
Inventor
Srinivasa Rao Addepali
Original Assignee
Intoto Inc
Srinivasa Rao Addepali
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Intoto Inc, Srinivasa Rao Addepali filed Critical Intoto Inc
Publication of WO2005119450A2 publication Critical patent/WO2005119450A2/en
Publication of WO2005119450A3 publication Critical patent/WO2005119450A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)
  • Storage Device Security (AREA)

Abstract

A method and software for detecting computer system intrusions (FIG. 1). More specifically, a method and software for detecting such intrusions by comparing an electronic signal to a database of know intrusion signatures (10), where the database (10) is chosen based on various characteristics of the signal.
PCT/US2005/018751 2004-05-28 2005-05-27 Intelligent database selection for intrusion detection & prevention systems WO2005119450A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US57573604P 2004-05-28 2004-05-28
US60/575,736 2004-05-28

Publications (2)

Publication Number Publication Date
WO2005119450A2 WO2005119450A2 (en) 2005-12-15
WO2005119450A3 true WO2005119450A3 (en) 2006-02-02

Family

ID=35463546

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2005/018751 WO2005119450A2 (en) 2004-05-28 2005-05-27 Intelligent database selection for intrusion detection & prevention systems

Country Status (1)

Country Link
WO (1) WO2005119450A2 (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6279113B1 (en) * 1998-03-16 2001-08-21 Internet Tools, Inc. Dynamic signature inspection-based network intrusion detection
US6301668B1 (en) * 1998-12-29 2001-10-09 Cisco Technology, Inc. Method and system for adaptive network security using network vulnerability assessment
US6487666B1 (en) * 1999-01-15 2002-11-26 Cisco Technology, Inc. Intrusion detection signature analysis using regular expressions and logical operators
US6499107B1 (en) * 1998-12-29 2002-12-24 Cisco Technology, Inc. Method and system for adaptive network security using intelligent packet analysis
US20030149887A1 (en) * 2002-02-01 2003-08-07 Satyendra Yadav Application-specific network intrusion detection
US6651099B1 (en) * 1999-06-30 2003-11-18 Hi/Fn, Inc. Method and apparatus for monitoring traffic in a network

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6279113B1 (en) * 1998-03-16 2001-08-21 Internet Tools, Inc. Dynamic signature inspection-based network intrusion detection
US6301668B1 (en) * 1998-12-29 2001-10-09 Cisco Technology, Inc. Method and system for adaptive network security using network vulnerability assessment
US6499107B1 (en) * 1998-12-29 2002-12-24 Cisco Technology, Inc. Method and system for adaptive network security using intelligent packet analysis
US6487666B1 (en) * 1999-01-15 2002-11-26 Cisco Technology, Inc. Intrusion detection signature analysis using regular expressions and logical operators
US6651099B1 (en) * 1999-06-30 2003-11-18 Hi/Fn, Inc. Method and apparatus for monitoring traffic in a network
US20030149887A1 (en) * 2002-02-01 2003-08-07 Satyendra Yadav Application-specific network intrusion detection

Also Published As

Publication number Publication date
WO2005119450A2 (en) 2005-12-15

Similar Documents

Publication Publication Date Title
WO1999045706A3 (en) Watermark detection
WO2004017389A3 (en) Method for performing real time arcing detection
WO2006017219A3 (en) Environmentally aware, intelligent surveillance device
WO2002073357A3 (en) A system and method for performing object association using a location tracking system
DE60334368D1 (en) METHOD AND SYSTEM FOR REDUCING FALSE ALARM RATE OF NETWORK IMPORTER DETECTION SYSTEMS
WO2007073546A3 (en) Installing an application from one peer to another including configuration settings
EP1341139A3 (en) Intrusion detecting device
WO2004072777A3 (en) Method, system and computer program product for security in a global computer network transaction
EP1783591A4 (en) ELECTRONIC EQUIPMENT
WO2003088017A3 (en) System and method for detecting an infective element in a network environment
FI20021682L (en) Method for unlocking a device and an electronic device
WO2004086185A3 (en) Rules-based deployment of computing components
WO2003049430A3 (en) Adaptive environment system and method of providing an adaptive environment
WO2005050972A3 (en) Active camera video-based surveillance systems and methods
WO2005024464A8 (en) Object detection system and method of detecting object
WO2007030394A3 (en) Sensor fusion for rfid accuracy
WO2003041311A3 (en) Systems for monitoring broadcast content
WO2007005440A3 (en) Change event correlation
WO2009154992A3 (en) Intelligent hashes for centralized malware detection
AU2003279517A1 (en) Method and system for detecting unauthorised use of a communication network
WO2003005525A3 (en) System and method for managing object based clusters
WO2002023218A3 (en) System and method for detecting an intruder using impulse radio technology
WO2003090050A3 (en) System and method for detecting malicicous code
CA2392834A1 (en) Radio based proximity token with multiple antennas
TW200512607A (en) System and method automatically activating connection to network

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

122 Ep: pct application non-entry in european phase