Techniques for detecting compromises of enterprise end stations utilizing noisy tokens

Invention Grant

US10469523B2 Techniques for detecting compromises of enterprise end stations utilizing noisy tokens 有权

Please log in to see more content

Patent Title: Techniques for detecting compromises of enterprise end stations utilizing noisy tokens
Application No.: US15345445

Application Date: 2016-11-07
Publication No.: US10469523B2

Publication Date: 2019-11-05
Inventor: Amichai Shulman , Sagie Dulce
Applicant: Imperva, Inc.
Applicant Address: US CA Redwood City
Assignee: Imperva, Inc.
Current Assignee: Imperva, Inc.
Current Assignee Address: US CA Redwood City
Agency: Nicholson De Vos Webster & Elliott LLP
Main IPC: H04L29/06
IPC: H04L29/06

Techniques for detecting compromises of enterprise end stations utilizing noisy tokens

Abstract:

Noisy tokens can be placed in locations of client end stations such that local operations performed upon the noisy tokens generate network traffic. A traffic monitoring module (TMM) can determine normal activity patterns of network traffic resulting from one or more of the placed noisy tokens being activated by one or more non-malicious operations, and identify that other network traffic resulting from one or more of the noisy tokens being activated does not meet the one or more normal activity patterns. In response, the TMM can cause an alert to be generated.

Public/Granted literature

US20170244749A1 TECHNIQUES FOR DETECTING COMPROMISES OF ENTERPRISE END STATIONS UTILIZING NOISY TOKENS Public/Granted day:2017-08-24

Information query

Espacenet