WO2022007574 BLOCK-BASED ANOMALY DETECTION

Settings

Stemming

Single Family Member

Include NPL

Feedback

Goto Application

Publication Number WO/2022/007574

Publication Date 13.01.2022

International Application No. PCT/CN2021/099067

International Filing Date 09.06.2021

IPC

CPC

View more classifications

View less classifications

Applicants

KYNDRYL, INC. [US]/[US]

Inventors

LAKKUNDI, Abdul Kareem
ARADHYA, Siddalinga
KULKARNI, Santosh

Agents

CCPIT PATENT AND TRADEMARK LAW OFFICE

Priority Data

16/925,461

10.07.2020

Publication Language English (en)

Filing Language English (EN)

Designated States

View all

Title

(EN) BLOCK-BASED ANOMALY DETECTION

(FR) DÉTECTION D'ANOMALIE BASÉE SUR DES BLOCS

Abstract

(EN) A plurality of blocks of a first storage device are monitored. The first storage device is related to a computer system. A subset of blocks of the plurality a compared to a first storage signature of the first storage device. Based on the comparing of the subset of blocks to the first storage signature, a security anomaly is determined on the computer system. In response to the security anomaly, a security action is performed. The security action is related to the computer system.

(FR) Une pluralité de blocs d'un premier dispositif de stockage sont surveillés. Le premier dispositif de stockage est associé à un système informatique. Un sous-ensemble de blocs de la pluralité est comparé à une première signature de stockage du premier dispositif de stockage. Sur la base de la comparaison du sous-ensemble de blocs à la première signature de stockage, une anomalie de sécurité est déterminée sur le système informatique. En réponse à l'anomalie de sécurité, une action de sécurité est effectuée. L'action de sécurité est liée au système informatique.

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
11	Error detection; Error correction; Monitoring

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
11	Error detection; Error correction; Monitoring

G	PHYSICS
06	COMPUTING; CALCULATING; COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50	Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
55	Detecting local intrusion or implementing counter-measures
56	Computer malware detection or handling, e.g. anti-virus arrangements
561	Virus type analysis

G	PHYSICS
06	COMPUTING; CALCULATING; COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50	Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
55	Detecting local intrusion or implementing counter-measures
56	Computer malware detection or handling, e.g. anti-virus arrangements
562	Static detection
564	by virus signature recognition

G	PHYSICS
06	COMPUTING; CALCULATING; COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
50	Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
55	Detecting local intrusion or implementing counter-measures
56	Computer malware detection or handling, e.g. anti-virus arrangements
562	Static detection
565	by checking file integrity

Processing

National Phase Entries

Authority File

Settings

Feedback

Goto Application

1. WO2022007574 - BLOCK-BASED ANOMALY DETECTION

G	PHYSICS
06	COMPUTING; CALCULATING; COUNTING
N	COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
20	Machine learning