Invention Grant
US07752662B2 Method and apparatus for high-speed detection and blocking of zero day worm attacks
有权
用于高速检测和阻止零日蠕虫攻击的方法和装置
- Patent Title: Method and apparatus for high-speed detection and blocking of zero day worm attacks
- Patent Title (中): 用于高速检测和阻止零日蠕虫攻击的方法和装置
-
Application No.: US10953557Application Date: 2004-09-30
-
Publication No.: US07752662B2Publication Date: 2010-07-06
- Inventor: Amichai Shulman , Michael Boodaei , Shlomo Kremer
- Applicant: Amichai Shulman , Michael Boodaei , Shlomo Kremer
- Applicant Address: US CA Foster City
- Assignee: Imperva, Inc.
- Current Assignee: Imperva, Inc.
- Current Assignee Address: US CA Foster City
- Agency: Sughrue Mion, PLLC
- Main IPC: G06F12/14
- IPC: G06F12/14
Abstract:
A method for detection and blocking of zero day worm attacks is disclosed. A zero day worm attack is the initial appearance of a new or revised Web worm. The method compares a hypertext transfer protocol (HTTP) request sent from an attacking computer (or server) to a predefined behavior profile of a protected Web application in order to detect a worm attack. A zero day worm attack based on the first data packet of an HTTP request can be detected.
Public/Granted literature
- US20050188215A1 Method and apparatus for high-speed detection and blocking of zero day worm attacks Public/Granted day:2005-08-25
Information query
