首页>
外国专利>
ADVANCED DETECTION OF IDENTITY-BASED ATTACKS TO ASSURE IDENTITY FIDELITY IN INFORMATION TECHNOLOGY ENVIRONMENTS
ADVANCED DETECTION OF IDENTITY-BASED ATTACKS TO ASSURE IDENTITY FIDELITY IN INFORMATION TECHNOLOGY ENVIRONMENTS
展开▼
机译:基于身份的攻击的高级检测,以确保信息技术环境中的身份保真度
展开▼
页面导航
摘要
著录项
相似文献
摘要
A system and method for the detection and mitigation of Kerberos golden ticket, silver ticket, and related identity-based cyberattacks by passively monitoring and analyzing Kerberos and authentication operations within the network. The system and method provide real-time detections of identity attacks using time-series data and data pipelines, and by transforming the stateless Kerberos protocol into stateful protocol. A packet capturing agent is deployed on the network where captured time-series Kerberos and related event and log information is processed in distributed computational graph (DCG) stages where declarative rules determine if an attack is being carried out and what type of attack it is.
展开▼