Patents by Inventor Stephen J. Dill

Stephen J. Dill has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 9106689
    Abstract: An intrusion detection method, system and computer-readable media are disclosed. The system can include a processor programmed to perform computer network intrusion detection. The intrusion detection can include an identification module and a detection module. The identification module can be adapted to perform semi-supervised machine learning to identify key components of a network attack and develop MDL models representing those attack components. The detection module can cluster the MDL models and use the clustered MDL models to classify network activity and detect polymorphic or zero-day attacks.
    Type: Grant
    Filed: May 6, 2011
    Date of Patent: August 11, 2015
    Assignee: Lockheed Martin Corporation
    Inventors: Eric Steinbrecher, Jeremy Impson, Bruce Barnett, Scott Charles Evans, Bernhard Scholz, Weizhong Yan, Thomas Markham, Stephen J. Dill
  • Patent number: 8495736
    Abstract: A method and apparatus that provides information assurance attributes through a data providence architecture is disclosed. The method may include receiving a message having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments; calculating a degree of trust based on any discrepancies identified in the examination of each data provenance record of the message and any attachments, and outputting the degree of trust to the user.
    Type: Grant
    Filed: January 5, 2010
    Date of Patent: July 23, 2013
    Assignee: Lockheed Martin Corporation
    Inventors: Stephen J. Dill, Bruce Barnett, Andrew Crapo, Abha Moitra
  • Patent number: 8452962
    Abstract: A method and apparatus that simulates a workflow and analyzes the behavior of information assurance attributes through a data providence architecture is disclosed. The method may include injecting one or more faults into a simulated workflow, receiving a message in the simulated workflow having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments; calculating a degree of trust based on any discrepancies identified in the examination of each data provenance record of the message and any attachments, analyzing the calculated degree of trust with respect to the one or more injected faults and the information assurance attributes, and outputting the analysis to a user.
    Type: Grant
    Filed: January 5, 2010
    Date of Patent: May 28, 2013
    Assignee: Lockheed Martin Corporation
    Inventors: Stephen J. Dill, Bruce Barnett, Andrew Crapo, Abha Moitra
  • Publication number: 20120284793
    Abstract: An intrusion detection method, system and computer-readable media are disclosed. The system can include a processor programmed to perform computer network intrusion detection. The intrusion detection can include an identification module and a detection module. The identification module can be adapted to perform semi-supervised machine learning to identify key components of a network attack and develop MDL models representing those attack components. The detection module can cluster the MDL models and use the clustered MDL models to classify network activity and detect polymorphic or zero-day attacks.
    Type: Application
    Filed: May 6, 2011
    Publication date: November 8, 2012
    Applicant: Lockheed Martin Corporation
    Inventors: Eric Steinbrecher, Jeremy Impson, Bruce Barnett, Scott Charles Evans, Bernhard Scholz, Weizhong Yang, Thomas Markham, Stephen J. Dill
  • Patent number: 8281141
    Abstract: A method and apparatus that monitors and analyzes degree of trust and information assurance attributes information in a data providence architecture workflow is disclosed. The method may include receiving a message having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments; calculating a degree of trust based on any discrepancies identified in the examination of each data provenance record of the message and any attachments, and presenting the degree of trust and information assurance attributes information to the user on a display.
    Type: Grant
    Filed: January 5, 2010
    Date of Patent: October 2, 2012
    Assignee: Lockheed Martin Corporation
    Inventors: Stephen J. Dill, Bruce Barnett, Andrew Crapo, Abha Moitra
  • Patent number: 8166122
    Abstract: A method and apparatus that generate a figure of merit for use in transmission of messages in a multi-level secure environment. The method may include receiving a message having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments, generating a figure of merit based on objective and subjective information, substituting the figure of merit for the data provenance information, and transmitting the figure of merit with the message across the security domain.
    Type: Grant
    Filed: January 5, 2010
    Date of Patent: April 24, 2012
    Assignee: Lockheed Martin Corporation
    Inventors: Stephen J. Dill, Bruce Barnett, Andrew Crapo, Abha Moitra
  • Publication number: 20100250932
    Abstract: A method and apparatus that simulates a workflow and analyzes the behavior of information assurance attributes through a data providence architecture is disclosed. The method may include injecting one or more faults into a simulated workflow, receiving a message in the simulated workflow having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments; calculating a degree of trust based on any discrepancies identified in the examination of each data provenance record of the message and any attachments, analyzing the calculated degree of trust with respect to the one or more injected faults and the information assurance attributes, and outputting the analysis to a user.
    Type: Application
    Filed: January 5, 2010
    Publication date: September 30, 2010
    Applicant: LOCKHEED MARTIN CORPORATION
    Inventors: Stephen J. DILL, Bruce BARNETT, Andrew CRAPO, Abha MOITRA
  • Publication number: 20100250689
    Abstract: A method and apparatus that generate a figure of merit for use in transmission of messages in a multi-level secure environment. The method may include receiving a message having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments, generating a figure of merit based on objective and subjective information, substituting the figure of merit for the data provenance information, and transmitting the figure of merit with the message across the security domain.
    Type: Application
    Filed: January 5, 2010
    Publication date: September 30, 2010
    Applicant: LOCKHEED MARTIN CORPORATION
    Inventors: Stephen J. DILL, Bruce BARNETT, Andrew CRAPO, Abha MOITRA
  • Publication number: 20100251374
    Abstract: A method and apparatus that monitors and analyzes degree of trust and information assurance attributes information in a data providence architecture workflow is disclosed. The method may include receiving a message having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments; calculating a degree of trust based on any discrepancies identified in the examination of each data provenance record of the message and any attachments, and presenting the degree of trust and information assurance attributes information to the user on a display.
    Type: Application
    Filed: January 5, 2010
    Publication date: September 30, 2010
    Applicant: LOCKHEED MARTIN CORPORATION
    Inventors: Stephen J. DILL, Bruce BARNETT, Andrew CRAPO, Abha MOITRA
  • Publication number: 20100251367
    Abstract: A method and apparatus that provides information assurance attributes through a data providence architecture is disclosed. The method may include receiving a message having a data provenance wrapper, examining each data provenance record of the message and any attachments for discrepancies, identifying any discrepancies in the examination of each data provenance record of the message and any attachments; calculating a degree of trust based on any discrepancies identified in the examination of each data provenance record of the message and any attachments, and outputting the degree of trust to the user.
    Type: Application
    Filed: January 5, 2010
    Publication date: September 30, 2010
    Applicant: LOCKHEED MARTIN CORPORATION
    Inventors: Stephen J. DILL, Bruce BARNETT, Andrew CRAPO, Abha MOITRA