Abstract

A system and method is provided for detecting malicious data such as, for example, viruses in a computer network. More speci? cally, system and method utilizes? lters to detect pre identi? ed patterns or threat signatures in a data stream. In one embodiment, a deep packet inspection system for detecting a plurality of malicious programs in a data packet received from a netWork, Wherein each malicious program has a unique pattern comprising a plurality of segments, includes a plurality of pattern detection modules con? gured to receive one or more data packets in parallel, Wherein each of the plurality of pattern detection modules has an output, and one or more long pattern state machines coupled to the outputs of the plurality of pattern detection modules. The deep packet inspection system is con? gured to detect a pattern of any length at any location Within a data packet.

Date

August 7, 2008

Authors

W Mangione-Smith, YH Cho

Inventors

William Mangione-Smith, Young H Cho

Patent_office

US

Application_number

11574878