METHOD AND DEVICE FOR IDENTIFYING MALICIOUS SERVICES IN A NETWORK

摘要

A computer-assisted method and a computer system comprising an execution environment for at least one service of a consumer and/or of a provider (CApp, PApp) are described, the computer system being incorporated in a network of distributed services as a certified subscriber such that the computer system can communicate with at least one additional computer system and has access to at least one storage unit having a contract register (CR), in which contracts (C) having comparative interaction patterns are provided. The computer system has at least one data connection to an observer (O), which is designed to capture observation data of interaction patterns during the communication (req, res) with the additional computer system. The computer system has at least one direct data connection to an interface (c1) and/or one indirect data connection to an interface (c1) via the observer, a direct data connection to a gate (G) via a forwarder (F) of the gate (G), and an indirect data connection to the gate (G) via the observer (O) and a matcher (M) or via the observer, a matcher (M) and the interface (c1). The matcher (M) is designed to request keys (key) required for a comparison from a certified authority (CA), to access signed and/or cryptographically secured contracts (C) in the contract register (CR) by means of said keys, and to select, from among said contracts, contracts (C) that fit the interaction patterns of the observed communication (req, res).