Invention Grant
US08776236B2 System and method for providing storage device-based advanced persistent threat (APT) protection
有权
提供基于存储设备的高级持续威胁(APT)保护的系统和方法
- Patent Title: System and method for providing storage device-based advanced persistent threat (APT) protection
- Patent Title (中): 提供基于存储设备的高级持续威胁(APT)保护的系统和方法
-
Application No.: US13444460Application Date: 2012-04-11
-
Publication No.: US08776236B2Publication Date: 2014-07-08
- Inventor: James L. Sowder
- Applicant: James L. Sowder
- Applicant Address: US VA Falls Church
- Assignee: Northrop Grumman Systems Corporation
- Current Assignee: Northrop Grumman Systems Corporation
- Current Assignee Address: US VA Falls Church
- Agency: Andrews Kurth LLP
- Agent Sean S. Wooden; Matthew J. Esserman
- Main IPC: H04L29/06
- IPC: H04L29/06
Abstract:
An embodiment of a system and method for providing storage device-based advanced persistent threat (APT) protection receives a file write request of a file object, writes the file object to a temporary storage device, computes a hash value of the file object in the temporary storage device, and compares the hash value of the file object to hash values stored in an APT database to determine if the hash value of the file object exists in the APT database. If the hash value of the file object exists in the APT database, an embodiment writes the file object to a quarantine storage location and clears the file object from the temporary storage device. If the hash value of the file object does not exist in the APT database, an embodiment executes an APT analysis on the file object to determine if the file object presents an APT.
Public/Granted literature
- US20130276122A1 SYSTEM AND METHOD FOR PROVIDING STORAGE DEVICE-BASED ADVANCED PERSISTENT THREAT (APT) PROTECTION Public/Granted day:2013-10-17
Information query
