SYSTEMS AND METHODS FOR DETECTING ANOMALOUS BEHAVIOR IN INTERNET-OF-THINGS (IOT) DEVICES
Disclosed herein are systems and methods for detecting anomalous behavior (e.g., attacks) in devices within a network. In an exemplary aspect, a method includes intercepting a first plurality of packets being transmitted in a network with a plurality of devices; identifying, from the first plurality...
Saved in:
| Main Authors | , , , , |
|---|---|
| Format | Patent |
| Language | English |
| Published |
26.09.2024
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Abstract | Disclosed herein are systems and methods for detecting anomalous behavior (e.g., attacks) in devices within a network. In an exemplary aspect, a method includes intercepting a first plurality of packets being transmitted in a network with a plurality of devices; identifying, from the first plurality of packets, a subset of packets corresponding to a device of the network; extracting a plurality of deterministic features from the subset of packets; calculating, based on the subset of packets, a risk score associated with the device based on a deviation of the features from a deterministic profile of the device, a first probability of the subset of packets exhibiting anomalous behavior based on a per-device model, and a second probability of the plurality of packets exhibiting anomalous behavior based on a network model; classifying anomalies into attack categories, and executing a remediation action to resolve anomalous behavior in the device. |
|---|---|
| AbstractList | Disclosed herein are systems and methods for detecting anomalous behavior (e.g., attacks) in devices within a network. In an exemplary aspect, a method includes intercepting a first plurality of packets being transmitted in a network with a plurality of devices; identifying, from the first plurality of packets, a subset of packets corresponding to a device of the network; extracting a plurality of deterministic features from the subset of packets; calculating, based on the subset of packets, a risk score associated with the device based on a deviation of the features from a deterministic profile of the device, a first probability of the subset of packets exhibiting anomalous behavior based on a per-device model, and a second probability of the plurality of packets exhibiting anomalous behavior based on a network model; classifying anomalies into attack categories, and executing a remediation action to resolve anomalous behavior in the device. |
| Author | Gysel, Philipp Bell, Serg Protasov, Stanislav Divakaran, Dinil Mon Wüest, Candid |
| Author_xml | – fullname: Protasov, Stanislav – fullname: Gysel, Philipp – fullname: Bell, Serg – fullname: Divakaran, Dinil Mon – fullname: Wüest, Candid |
| BookMark | eNrjYmDJy89L5WSICI4MDnH1DVZw9HNR8HUN8fB3CVZw8w9ScHENcXUO8fRzB8r4-zr6-IcGKzi5ejiGeQIlPf2AKMQ1yM81RNffTTfEA6guWEHD0z9EE6gxzNPZNZiHgTUtMac4lRdKczMou7mGOHvophbkx6cWFyQmp-allsSHBhsZGJkYGxkbGVg4GhoTpwoA8a0zvQ |
| ContentType | Patent |
| DBID | EVB |
| DatabaseName | esp@cenet |
| DatabaseTitleList | |
| Database_xml | – sequence: 1 dbid: EVB name: esp@cenet url: http://worldwide.espacenet.com/singleLineSearch?locale=en_EP sourceTypes: Open Access Repository |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Medicine Chemistry Sciences |
| ExternalDocumentID | US2024323208A1 |
| GroupedDBID | EVB |
| ID | FETCH-epo_espacenet_US2024323208A13 |
| IEDL.DBID | EVB |
| IngestDate | Fri Oct 25 05:35:51 EDT 2024 |
| IsOpenAccess | true |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-epo_espacenet_US2024323208A13 |
| Notes | Application Number: US202318186381 |
| OpenAccessLink | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20240926&DB=EPODOC&CC=US&NR=2024323208A1 |
| ParticipantIDs | epo_espacenet_US2024323208A1 |
| PublicationCentury | 2000 |
| PublicationDate | 20240926 |
| PublicationDateYYYYMMDD | 2024-09-26 |
| PublicationDate_xml | – month: 09 year: 2024 text: 20240926 day: 26 |
| PublicationDecade | 2020 |
| PublicationYear | 2024 |
| RelatedCompanies | Acronis International GmbH |
| RelatedCompanies_xml | – name: Acronis International GmbH |
| Score | 3.5619814 |
| Snippet | Disclosed herein are systems and methods for detecting anomalous behavior (e.g., attacks) in devices within a network. In an exemplary aspect, a method... |
| SourceID | epo |
| SourceType | Open Access Repository |
| SubjectTerms | ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION |
| Title | SYSTEMS AND METHODS FOR DETECTING ANOMALOUS BEHAVIOR IN INTERNET-OF-THINGS (IOT) DEVICES |
| URI | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20240926&DB=EPODOC&locale=&CC=US&NR=2024323208A1 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV3dS8MwEA9jivqmU_FjSkAp-lDc1q_kYUiXprZi22HSMZ_G-jEQpBuu4r_vtW66p70l-ZEjObjcXXJ3QehWtyiYBZSo-Yz2VN3MdDVJTUMl00TLZiSxUlIlJweh6cX689gYN9DHOhemrhP6XRdHBIlKQd7L-rxe_F9iOXVs5fIheYeh-aMr-46y8o5BPdGeqTiDPh9GTsQUxvqxUMLXGtPAeugQG3ylHTCkrSoAjI8GVV7KYlOpuIdodwj0ivIINfKihfbZ-u-1FtoLVk_e0FxJ3_IYjcWbkDwQ2A4dHHDpRY7A4MVhh0vOpB8-ARIF9ksUCzzgnj3yAfRD_Fv3lks1clVZ3U8JfOdH8h4mjnzGxQm6cblkngpLnPxxZBKLzf1op6hZzIv8DOFu3rWIMe3SjBDdAGWcdTQ6A7nUralG0845am-jdLEdvkQHVbcKl-iZbdQsP7_yK9DJZXJds_IH7SSG8g |
| link.rule.ids | 230,309,783,888,25578,76884 |
| linkProvider | European Patent Office |
| linkToHtml | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV1LS8NAEB5KFetNq-Kj6oIS9BBsm_ehSJpsTLRJirsp9VSaR0GQtNiIf99JbLWn3pb92GF3YHYeOzMLcCtrBpoFhi5mM6Mrymoqi3GiKqI-jaV0psdaopfFyX6gupH8PFbGNfhY18JUfUK_q-aIKFEJyntR3deL_yCWXeVWLh_id5yaPzq8Zwsr7xjVk9FVBbvfo8PQDi3BsnoRE4LXCpPQemjrJvpKO2hk62WnfTrql3Upi02l4hzA7hDp5cUh1LK8CQ1r_fdaE_b81ZM3DlfStzyCMXtjnPqMmIFNfMrd0GYEvThiU04t7gVPiIS-OQgjRvrUNUcegl5AfvveUi6GjsjL-BQjd17I73HhyLMoO4Ybh3LLFXGLkz-OTCK2eR7pBOr5PM9OgXSyjqYr046R4vkUVMZpWzJmKJeyNpWMpH0GrW2UzrfD19BwuT-YDLzg5QL2S6hMneiqLagXn1_ZJernIr6q2PoDaZGJ4g |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Apatent&rft.title=SYSTEMS+AND+METHODS+FOR+DETECTING+ANOMALOUS+BEHAVIOR+IN+INTERNET-OF-THINGS+%28IOT%29+DEVICES&rft.inventor=Protasov%2C+Stanislav&rft.inventor=Gysel%2C+Philipp&rft.inventor=Bell%2C+Serg&rft.inventor=Divakaran%2C+Dinil+Mon&rft.inventor=W%C3%BCest%2C+Candid&rft.date=2024-09-26&rft.externalDBID=A1&rft.externalDocID=US2024323208A1 |