Invention Grant
US08806632B2 Systems, methods, and devices for detecting security vulnerabilities in IP networks
有权
用于检测IP网络中的安全漏洞的系统,方法和设备
- Patent Title: Systems, methods, and devices for detecting security vulnerabilities in IP networks
- Patent Title (中): 用于检测IP网络中的安全漏洞的系统,方法和设备
-
Application No.: US12581534Application Date: 2009-10-19
-
Publication No.: US08806632B2Publication Date: 2014-08-12
- Inventor: Charles K. Stefanidakis , Richard Person , Anish Dhanda , Gregory Sabatino , John J. Donovan
- Applicant: Charles K. Stefanidakis , Richard Person , Anish Dhanda , Gregory Sabatino , John J. Donovan
- Applicant Address: US TX Austin
- Assignee: Solarwinds Worldwide, LLC
- Current Assignee: Solarwinds Worldwide, LLC
- Current Assignee Address: US TX Austin
- Agency: Squire Sanders (US) LLP
- Main IPC: H04L29/06
- IPC: H04L29/06
Abstract:
This invention is a system, method, and apparatus for detecting compromise of IP devices that make up an IP-based network. One embodiment is a method for detecting and alerting on the following conditions: (1) Denial of Service Attack; (2) Unauthorized Usage Attack (for an IP camera, unauthorized person seeing a camera image); and (3) Spoofing Attack (for an IP camera, unauthorized person seeing substitute images). A survey of services running on the IP device, historical benchmark data, and traceroute information may be used to detect a possible Denial of Service Attack. A detailed log analysis and a passive DNS compromise system may be used to detect a possible unauthorized usage. Finally, a fingerprint (a hash of device configuration data) may be used as a private key to detect a possible spoofing attack. The present invention may be used to help mitigate intrusions and vulnerabilities in IP networks.
Public/Granted literature
- US20100169975A1 SYSTEMS, METHODS, AND DEVICES FOR DETECTING SECURITY VULNERABILITIES IN IP NETWORKS Public/Granted day:2010-07-01
Information query
