Invention Grant
US08707440B2 System and method for passively identifying encrypted and interactive network sessions
有权
用于被动识别加密和交互式网络会话的系统和方法
- Patent Title: System and method for passively identifying encrypted and interactive network sessions
- Patent Title (中): 用于被动识别加密和交互式网络会话的系统和方法
-
Application No.: US12729036Application Date: 2010-03-22
-
Publication No.: US08707440B2Publication Date: 2014-04-22
- Inventor: Ron Gula , Renaud Deraison , Matthew T. Hayton
- Applicant: Ron Gula , Renaud Deraison , Matthew T. Hayton
- Applicant Address: US MD Columbia
- Assignee: Tenable Network Security, Inc.
- Current Assignee: Tenable Network Security, Inc.
- Current Assignee Address: US MD Columbia
- Agency: Pillsbury Winthrop Shaw Pittman LLP
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F12/14 ; G06F12/16 ; G08B23/00 ; G06F21/00 ; G06F21/56
Abstract:
The system and method for passively identifying encrypted and interactive network sessions described herein may distribute a passive vulnerability scanner in a network, wherein the passive vulnerability scanner may observe traffic travelling across the network and reconstruct a network session from the observed traffic. The passive vulnerability scanner may then analyze the reconstructed network session to determine whether the session was encrypted or interactive (e.g., based on randomization, packet timing characteristics, or other qualities measured for the session). Thus, the passive vulnerability scanner may monitor the network in real-time to detect any devices in the network that run encrypted or interactive services or otherwise participate in encrypted or interactive sessions, wherein detecting encrypted and interactive sessions in the network may be used to manage changes and potential vulnerabilities in the network.
Public/Granted literature
- US20110231935A1 SYSTEM AND METHOD FOR PASSIVELY IDENTIFYING ENCRYPTED AND INTERACTIVE NETWORK SESSIONS Public/Granted day:2011-09-22
Information query
