| 发明名称 | Systems and methods for protecting against unauthorized network intrusions | ||
| 摘要 | The disclosed computer-implemented method for protecting against unauthorized network intrusions may include (1) identifying a signal received by one or more antennas of a network from a transceiver of a device attempting to access the network, (2) detecting one or more signal strengths of the signal received by the antennas of the network in connection with the attempt to access the network, (3) determining, based at least in part on the signal strengths of the signal, that the attempt to access the network is potentially malicious, and then in response to determining that the attempt to access the network is potentially malicious, (4) initiating at least one security measure to address the potentially malicious attempt to access the network. Various other methods, systems, and computer-readable media are also disclosed. | ||
| 申请公布号 | US9621579(B2) | 申请公布日期 | 2017.04.11 |
| 申请号 | US201414550855 | 申请日期 | 2014.11.21 |
| 申请人 | Symantec Corporation | 发明人 | Casaburi Jim;Stockman Steven |
| 分类号 | H04L29/06;H04W12/12;H04W12/08 | 主分类号 | H04L29/06 |
| 代理机构 | FisherBroyles LLP | 代理人 | FisherBroyles LLP |
| 主权项 | 1. A computer-implemented method for protecting against unauthorized network intrusions, at least a portion of the method being performed by a computing device comprising at least one processor, the method comprising: identifying a signal received by one or more antennas of a network from a transceiver of a device attempting to access the network; detecting one or more signal strengths of the signal received by the antennas of the network in connection with the attempt to access the network; generating, based at least in part on the signal strengths of the signal received by the antennas of the network, a signal profile of the signal received by the antennas of the network, wherein the signal profile of the signal comprises a data structure that delineates information about the signal as an electromagnetic waveform that carries information from the transceiver of the device attempting to access the network; determining that the attempt to access the network is potentially malicious by: identifying a policy that specifies suspicious signal profiles that have been previously detected in connection with a threshold number of failed attempts to access the network; anddetermining that the signal profile matches at least one of the suspicious signal profiles specified in the policy; and in response to determining that the attempt to access the network is potentially malicious, initiating at least one security measure to address the potentially malicious attempt to access the network. | ||
| 地址 | Mountain View CA US | ||