Patents Assigned to Skybox Security, Inc.
  • Patent number: 8997236
    Abstract: A method, system and computer program product for evaluating an IDP entity, the method includes evaluating an effect of at least one IDP rule applied by the IDP entity on legitimate traffic, based upon a network model; evaluating an effect of at least one IDP rule applied by the IDP entity based upon a network model and an attack model; determining an effectiveness of the IDP entity in response to the evaluated effects.
    Type: Grant
    Filed: August 6, 2012
    Date of Patent: March 31, 2015
    Assignee: Skybox Security Inc.
    Inventors: Amnon Lotem, Gideon Cohen, Ilan Horn, Moshe Meiseles
  • Patent number: 8904542
    Abstract: A method for evaluating potential attacks of worms, the method includes: associating, in response to information representative of a network and of worm entities, between worm entities and potential worm sources to provide associated worm sources; determining potential worm attacks that start from the associated worm sources; and evaluating at least one potential worm attack security metric associated with the potential worm attacks.
    Type: Grant
    Filed: January 20, 2013
    Date of Patent: December 2, 2014
    Assignee: Skybox Security Inc.
    Inventors: Lotem Amnon, Gideon Cohen, Moshe Meiseles, Ilan Horn
  • Patent number: 8621552
    Abstract: A method for evaluating a deployment of a network access change request, the method includes: (a) formatting a network access change request to provide a formatted network access change request; wherein the formatted network access change request includes multiple formatted request items; wherein the multiple formatted request items includes a requested access type, an address of an access source, an address of an access destination; (b) determining multiple relationships between the multiple formatted request items and corresponding items of at least one entity out of a network model and a current network policy; and (c) responding to the network access change request in response to the multiple determined relationships.
    Type: Grant
    Filed: May 21, 2008
    Date of Patent: December 31, 2013
    Assignee: Skybox Security Inc.
    Inventors: Amnon Lotem, Alexander Haiut, Ravid Circus, Moshe Raab, Amos Arev, Gideon Cohen, Tal Sheffer
  • Patent number: 8239951
    Abstract: A method, system and computer program product for evaluating an IDP entity, the method includes evaluating an effect of at least one IDP rule applied by the IDP entity on legitimate traffic, based upon a network model; evaluating an effect of at least one IDP rule applied by the IDP entity based upon a network model and an attack model; determining an effectiveness of the IDP entity in response to the evaluated effects.
    Type: Grant
    Filed: May 26, 2006
    Date of Patent: August 7, 2012
    Assignee: Skybox Security, Inc.
    Inventors: Amnon Lotem, Gideon Cohen, Ilan Horn, Moshe Meiseles
  • Patent number: 8099760
    Abstract: The present invention provides systems and methods for risk detection and analysis in a computer network. Computerized, automated systems and methods can be provided. Raw vulnerability information and network information can be utilized in determining actual vulnerability information associated with network nodes. Methods are provided in which computer networks are modeled, and the models utilized in performing attack simulations and determining risks associated with vulnerabilities. Risks can be evaluated and prioritized, and fix information can be provided.
    Type: Grant
    Filed: April 28, 2005
    Date of Patent: January 17, 2012
    Assignee: Skybox Security, Inc.
    Inventors: Gideon Cohen, Moshe Meiseles, Eran Reshef