Pre-Grant Publication Number: 20070208822
Please help the USPTO examine the application by evaluating the relevance of the publicly submitted prior art to the patent application.
Peer-to-Patent forwards the Top 10 most relevant prior art submissions and their annotations to the United States Patent and Trademark Office.
Review this prior art and click on the thumbs up (or down) to indicate whether this submission should be forwarded to the USPTO.
If you login then you can add an annotation by typing in the box at the bottom of the screen to comment on the relevance of the prior art to the claims of the patent application.
Review this prior art and click on the thumbs up (or down) to indicate whether this submission should be forwarded to the USPTO.
If you login then you can add an annotation by typing in the box at the bottom of the screen to comment on the relevance of the prior art to the claims of the patent application.
Prior Art Detail
Summary / Description
| Summary / Description | First articulation on the idea of a client honeypot (which is what Honeymonkey represents). |
Basic Information
| Type of Prior Art | Online Publication |
| URL | http://www.securityfocus.com/ar... |
| Author/Creator | Lance Spitzner |
| Title | SF new column announcement: Time to Dump IE |
| Publication Date | June 17, 2004 |
| Publisher | Honeypot Mailing List |
| Directions to Document Location | |
| Additional Information | |
Notes / To Do
| Notes | While this is only a post to a mailing list, it articulates the base concept of a client honeypot, which is the core claim of this patent application. |
Excerpt
Excerpt What would be interesting is using a 'client' honeypot. Take a clean install of a Win32 system, then have IE on it connect to hundreds of random websites. See if any of the websites makes 'unauthorized' modifications to your 'client' honeypot :)
|
Relevance
Claims
1
A system comprising:
a browser that is capable of visiting network locations as represented by uniform resource locators (URLs); and
a browser-based vulnerability exploit detector that directs the browser to visit a given URL by making an information request to the given URL; the browser-based vulnerability exploit detector adapted to detect if the given URL accomplishes an exploit on the system after the browser makes the information request to the given URL.
Relevance
The mailing list post describes the concept of using a browser to visit a set of URLs and assessing whether an attack has occurred by checking unauthorized modifications to the system. This is identical to the system described in this patent application.
The mailing list post describes the concept of using a browser to visit a set of URLs and assessing whether an attack has occurred by checking unauthorized modifications to the system. This is identical to the system described in this patent application.
Claim Chart
All
16
A method comprising:
requesting information from a targeted network location as represented by a uniform resource locator (URL);
receiving a response from the targeted URL;
tracing events that occur on a machine;
ascertaining if an illicit event occurred based on the traced events; and
determining that an exploit has been accomplished by the targeted URL if an illicit event is ascertained to have occurred.
Relevance
The mailing list post describes that unauthorized modifications need to be monitored that occurr during/ after the visitation of a URL. This is identical to claim 16.
The mailing list post describes that unauthorized modifications need to be monitored that occurr during/ after the visitation of a URL. This is identical to claim 16.
Claim Chart
All
