首页>
外国专利>
Techniques for securely detecting compromises of enterprise end stations utilizing tunnel tokens
Techniques for securely detecting compromises of enterprise end stations utilizing tunnel tokens
展开▼
机译:使用隧道令牌安全地检测企业终端站的危害的技术
展开▼
页面导航
摘要
著录项
相似文献
摘要
A token tunnel server (TTS) within an enterprise network receives packets from a source address directed to a destination address (both of the enterprise network) that were caused to be originated by an attacker. The packets carry data including a token that was placed upon an end station of the enterprise and that appears to be useful for accessing an enterprise server, despite the apparent enterprise server not actually being deployed within the enterprise network. The TTS transmits packets carrying the data (that do not include the source address) across a public network outside of the enterprise network to a tunnel gateway server (TGS). The TGS sends the data to a trap server that acts as the apparent enterprise server. Actions of the attacker with regard to the trap server can be monitored while the source address is not provided to the TGS.
展开▼