{"schema_version":"1.0","canonical_url":"https://patentable.app/patents/US-9853995","patent":{"patent_number":"US-9853995","title":"System and method for restricting pathways to harmful hosts in computer networks","assignee":null,"inventors":[],"filing_date":"2012-11-08T00:00:00.000Z","publication_date":"2017-12-26T00:00:00.000Z","cpc_codes":["H04L","H04L","H04L","H04L"],"num_claims":23,"abstract":"System and method for detecting malicious activity in a computer network that includes hosts and connectors between the hosts. Network pathways to a plurality of investigated hosts are explored. A graph is formed based on results of the exploring of the network pathways. The graph represents topology of explored portions of the computer network, including connectors (e.g., communication links) between the investigated hosts and intermediary hosts situated along explored pathways that include the investigated hosts, and an indication of a prevalence of connectors in pathways to each of the investigated hosts. The prevalence of connectors along pathways to each of the investigated hosts is compared against a threshold, and any suspicious host situated along pathways to a common investigated host that is associated with a connector having a low prevalence that is below the prevalence threshold is identified. An access restriction can be associated with the suspicious host."},"analysis":{"summary":"The System and Method for Restricting Pathways to Harmful Hosts in Computer Networks patent introduces a novel approach to detecting and mitigating malicious activity in computer networks. The core innovation lies in proactively identifying potential threats based on network topology and connector prevalence, rather than relying solely on reactive measures. This is achieved by exploring network pathways to a plurality of investigated hosts and forming a graph representing the topology of explored portions of the computer network. The graph includes connectors between the investigated hosts and intermediary hosts, along with an indication of the prevalence of connectors in pathways to each of the investigated hosts. The prevalence of connectors along pathways to each of the investigated hosts is then compared against a threshold. Any suspicious host situated along pathways to a common investigated host that is associated with a connector having a low prevalence that is below the prevalence threshold is identified. An access restriction can then be associated with the suspicious host.\n\nThis system solves the problem of increasingly sophisticated cyberattacks that are able to bypass traditional security measures. By proactively analyzing network topology and connector prevalence, this technology can identify and isolate suspicious hosts before they can cause significant damage. The business value lies in the reduced risk of data breaches, ransomware attacks, and other forms of cybercrime. This technology has the potential to revolutionize network security by providing a more proactive and adaptive defense against cyber threats. The market opportunity is significant, as any organization that relies on computer networks to conduct its business can benefit from the enhanced security provided by this technology. The implementation of System and Method for Restricting Pathways to Harmful Hosts in Computer Networks can significantly reduce the risk of cyberattacks and improve the overall security posture of an organization.","layman_explanation":"The System and Method for Restricting Pathways to Harmful Hosts in Computer Networks patent addresses the growing problem of cyberattacks by providing a more proactive and effective way to detect and prevent malicious activity. Traditional security measures often rely on identifying known threats or detecting suspicious behavior after an attack has already begun. This approach is becoming increasingly ineffective as attackers develop more sophisticated techniques to bypass these defenses.\n\nThis patent describes a system that analyzes the pathways through which data travels within a computer network. It creates a map of the network and identifies the connections between different devices. By examining the patterns of communication, the system can identify unusual or suspicious pathways. For example, if a device is communicating with another device through a pathway that is rarely used, the system may flag this as a potential threat.\n\nThis technology matters because it provides a more proactive way to protect computer networks from cyberattacks. By identifying potential threats before they can cause damage, the system can help organizations avoid costly data breaches and other security incidents. This has significant market impact and opportunities. Imagine a city's water system. This patent is like having sensors throughout the pipes that detect unusual flow patterns, indicating a potential leak or contamination. This early detection allows the city to address the problem before it becomes a major crisis.\n\nIn the future, this technology could be used to create even more sophisticated security systems that can automatically adapt to changing threats. As market adoption increases, the cost of implementation will decrease, making it accessible to a wider range of organizations. This will lead to a more secure and resilient digital infrastructure.","technical_analysis":"The System and Method for Restricting Pathways to Harmful Hosts in Computer Networks patent describes a system for detecting malicious activity in a computer network by analyzing network pathways and connector prevalence. The technical architecture involves several key components: a network exploration module, a graph construction module, an analysis module, and an access restriction module.\n\nThe network exploration module is responsible for exploring network pathways to a plurality of investigated hosts. This can be achieved using various techniques, such as traceroute or path discovery protocols. The graph construction module then forms a graph based on the results of the network exploration. The graph represents the topology of explored portions of the computer network, including connectors between the investigated hosts and intermediary hosts. The analysis module analyzes the graph to determine the prevalence of connectors in pathways to each of the investigated hosts. This involves calculating the number of pathways that pass through each connector and comparing it against a threshold. The access restriction module then associates an access restriction with any suspicious host situated along pathways to a common investigated host that is associated with a connector having a low prevalence that is below the prevalence threshold.\n\nThe implementation details involve careful consideration of performance and scalability. The graph construction and analysis process can be computationally intensive, especially in large networks. Therefore, the system must be optimized to handle the volume of data and the complexity of the network topology. One potential optimization is to use distributed computing techniques to parallelize the graph construction and analysis process. Another optimization is to use caching to store frequently accessed data, such as connector prevalence values. The integration patterns involve seamless integration with existing network infrastructure and security systems. The system should be able to collect network data from various sources and integrate with existing security tools, such as firewalls and intrusion detection systems.\n\nThe performance characteristics of the system are crucial for its effectiveness. The system should be able to detect malicious activity in real-time or near real-time. The code-level implications involve careful coding practices to ensure security and reliability. The code should be thoroughly tested and reviewed to prevent vulnerabilities and ensure that the system functions as intended.","business_analysis":"The System and Method for Restricting Pathways to Harmful Hosts in Computer Networks patent presents a significant market opportunity in the cybersecurity industry. The increasing sophistication of cyberattacks has created a growing demand for more effective security solutions. This technology offers a proactive approach to threat detection and prevention, which can significantly reduce the risk of data breaches and other forms of cybercrime.\n\nThe market opportunity size is substantial, as any organization that relies on computer networks to conduct its business can benefit from this technology. This includes enterprises of all sizes, government agencies, and critical infrastructure providers. The competitive advantages of this technology include its proactive approach, its ability to analyze network topology and connector prevalence, and its adaptability to changing network conditions. These advantages differentiate this technology from traditional security measures, which often rely on reactive techniques such as signature-based detection.\n\nThe revenue potential is significant, as the technology can be sold as a standalone product or integrated into existing security solutions. The business models include licensing, subscription, and managed services. The strategic positioning of the technology is as a proactive threat detection and prevention solution that complements existing security measures. The ROI projections are based on the reduced risk of data breaches and other forms of cybercrime. A successful implementation of this technology can significantly reduce the financial impact of cyberattacks. The System and Method for Restricting Pathways to Harmful Hosts in Computer Networks patent represents a significant investment opportunity in the cybersecurity industry. The technology offers a proactive and adaptive defense against cyber threats, which can provide significant value to organizations of all sizes.","faqs":null,"topics":["network security","cybersecurity","threat detection","malicious activity","network topology","system","method","restricting"],"tech_cluster":null},"seo":{"title":"Network Security: System and Method for Restricting Pathways to Harmful Hosts in Computer Networks","description":"Discover how the System and Method for Restricting Pathways to Harmful Hosts in Computer Networks proactively secures networks by analyzing pathways and isolating suspicious hosts.","keywords":["network security","cybersecurity","threat detection","malicious activity","network topology","patent","patent US-9853995"]},"attribution":{"source":"Patentable","source_url":"https://patentable.app","canonical_url":"https://patentable.app/patents/US-9853995","license":"CC-BY-4.0-like","license_terms":"AI-generated analysis on this page (summary, layman_explanation, technical_analysis, business_analysis, faqs) may be reused with attribution and a visible link back to the canonical URL above. Patent abstracts, claims, and bibliographic data are USPTO public domain.","required_link":"https://patentable.app/patents/US-9853995","citation_suggestion":"Patentable. \"System and method for restricting pathways to harmful hosts in computer networks\" (US-9853995). https://patentable.app/patents/US-9853995","copyright_holder":"Nomic Interactive Technology LLC"},"links":{"html":"https://patentable.app/patents/US-9853995","json":"https://patentable.app/api/llm-context/US-9853995","site":"https://patentable.app","llms_txt":"https://patentable.app/llms.txt"},"generated_at":"2026-05-31T07:43:04.511Z"}