{"schema_version":"1.0","canonical_url":"https://patentable.app/patents/US-9838413","patent":{"patent_number":"US-9838413","title":"Zero day threat detection based on fast flux detection and aggregation","assignee":null,"inventors":[],"filing_date":"2016-05-03T00:00:00.000Z","publication_date":"2017-12-05T00:00:00.000Z","cpc_codes":["H04L","H04L","H04L","H04L","H04L","H04L","H04L"],"num_claims":20,"abstract":"A method in a cloud-based security system includes operating a Domain Name System (DNS) resolution service, proxy, or monitor in the cloud-based security system; receiving DNS records with time-to-live (TTL) parameters; checking the TTL parameters for indication of a fast flux technique; and detecting domains performing the fast flux technique based on the DNS records. A cloud-based security system includes a plurality of nodes communicatively coupled to one or more users; and a Domain Name System (DNS) service providing a resolution service, proxy, or monitor in the cloud-based security system; wherein the DNS service is configured to receive DNS records with time-to-live (TTL) parameters; check the TTL parameters for indication of a fast flux technique; and detect domains performing the fast flux technique based on the DNS records."},"analysis":{"summary":null,"layman_explanation":null,"technical_analysis":null,"business_analysis":null,"faqs":null,"topics":[],"tech_cluster":null},"seo":{"title":"Zero day threat detection based on fast flux detection and aggregation","description":"A method in a cloud-based security system includes operating a Domain Name System (DNS) resolution service, proxy, or monitor in the cloud-based security system; receiving DNS records with time-to-liv","keywords":[]},"attribution":{"source":"Patentable","source_url":"https://patentable.app","canonical_url":"https://patentable.app/patents/US-9838413","license":"CC-BY-4.0-like","license_terms":"AI-generated analysis on this page (summary, layman_explanation, technical_analysis, business_analysis, faqs) may be reused with attribution and a visible link back to the canonical URL above. Patent abstracts, claims, and bibliographic data are USPTO public domain.","required_link":"https://patentable.app/patents/US-9838413","citation_suggestion":"Patentable. \"Zero day threat detection based on fast flux detection and aggregation\" (US-9838413). https://patentable.app/patents/US-9838413","copyright_holder":"Nomic Interactive Technology LLC"},"links":{"html":"https://patentable.app/patents/US-9838413","json":"https://patentable.app/api/llm-context/US-9838413","site":"https://patentable.app","llms_txt":"https://patentable.app/llms.txt"},"generated_at":"2026-06-06T05:17:01.979Z"}