Skip to Content
Find More Like This
Return to Search

Intrusion detection using secure signatures

United States Patent

September 30, 2014
View the Complete Patent at the US Patent & Trademark Office
Intrusion Detecting Using Secure Signatures
A method and device for intrusion detection using secure signatures comprising capturing network data. A search hash value, value employing at least one one-way function, is generated from the captured network data using a first hash function. The presence of a search hash value match in a secure signature table comprising search hash values and an encrypted rule is determined. After determining a search hash value match, a decryption key is generated from the captured network data using a second hash function, a hash function different form the first hash function. One or more of the encrypted rules of the secure signatures table having a hash value equal to the generated search hash value are then decrypted using the generated decryption key. The one or more decrypted secure signature rules are then processed for a match and one or more user notifications are deployed if a match is identified.
Nelson; Trent Darnel (Ammon, ID), Haile; Jedediah (Idaho Falls, ID)
U.S. Department of Energy (Washington, DC)
13/ 785,349
March 5, 2013
GOVERNMENT INTERESTS The United States Government has rights in this invention pursuant to Contract No. DE-AC07-05ID14517, between the U.S. Department of Energy (DOE) and the Battelle Energy Alliance.