What technology area does this patent fall under?

Primary CPC classification G06F21/554. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue Jun 20 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Security screening of a universal serial bus device

US11681798B2 · US · B2

Patent metadata
Field	Value
Publication number	US-11681798-B2
Application number	US-201916669581-A
Country	US
Kind code	B2
Filing date	Oct 31, 2019
Priority date	Oct 31, 2019
Publication date	Jun 20, 2023
Grant date	Jun 20, 2023

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Universal serial bus (USB) devices are evaluated for access according to characteristics including descriptors and ROM information. Descriptors are cross-references to historic descriptors known to be associated with malicious or approved USB devices. ROM information is analyzed to determine congruity of data. Device drivers and configuration files on the USB device are reviewed for indicators of compromise or threat and assigned a corresponding security score. Security actions are taken according to a security score assigned according to matching descriptors and analyzed ROM information.

First claim

Opening claim text (preview).

What is claimed is: 1. A computer-implemented method comprising: identifying a set of descriptors from descriptor fields on a universal serial bus (USB) device; comparing each descriptor of the set of descriptors with a set of historic descriptors, the set of historic descriptors being individually assigned a first security score; reading read-only memory (ROM) information on the USB device; analyzing the ROM information for congruity wherein a non-congruity is assigned a pre-defined security score; assigning a second security score to the USB device based on the comparing each descriptor and analysis of the ROM information, the second security score based in part on aggregating the assigned first security scores for each historic descriptor matching a descriptor in the set of descriptors to generate a combined security score for the USB device; and responsive to assigning the second security score, taking a security action. 2. The computer-implemented method of claim 1 , wherein the security action is granting access to the computing system. 3. The computer-implemented method of claim 1 further comprising: detecting the USB device inserted into a USB port. 4. The computer-implemented method of claim 3 , wherein the security action is blocking the USB port from use by the USB device. 5. The computer-implemented method of claim 1 , further comprising: determining the security action by reference to a table associating a set of security actions, including the security action, with ranges of values of combined security scores, including the combined security score. 6. A computer-implemented method comprising: reading read-only memory (ROM) information on a universal serial bus (USB) device; identifying, in the ROM information, a set of trails of configuration files; determining a trail of the set of trails matches a pre-determined trail of a known configuration file threat; identifying a security score associated with the pre-determined trail; and taking a security action corresponding to the security score. 7. The computer-implemented method of claim 6 , further comprising: determining the security action by reference to a table associating a set of security actions, including the security action, with a range of security scores, including the security score. 8. The computer-implemented method of claim 6 , further comprising: detecting the USB device inserted into a USB port. 9. The computer-implemented method of claim 8 , wherein the security action is blocking the USB port from use by the USB device. 10. A computer-implemented method comprising: identifying a set of device drivers stored on a universal serial bus (USB) device, determining a device driver of the set of device drivers on the USB device matches a known device driver for a microcontroller device; identifying a security score associated with the matching microcontroller device driver; and taking a security action corresponding to the security score. 11. The computer-implemented method of claim 10 , further comprising: determining the security action by reference to a table associating a set of security actions, including the security action, with a range of security scores, including the security score. 12. The computer-implemented method of claim 10 , further comprising: detecting the USB device inserted into a USB port. 13. The computer-implemented method of claim 10 , wherein the security action is blocking the USB port from use by the USB device. 14. The computer-implemented method of claim 10 , wherein the known device driver comprises a driver for one of: CH3430; FT232RL; ATMEGA16u2; and ATMega32U4. 15. The computer-implemented method of claim 6 , wherein the pre-determined trails of configuration files are associated with “script.bin” files. 16. The computer-implemented method of claim 6 , wherein the pre-determined trail is associated with “.ino” files. 17. The computer-implemented method of claim 6 , wherein the pre-determined trail is associated with “.h” files. 18. The computer-implemented method of claim 6 , wherein the pre-determined trail is associated with “.cpp” files. 19. The computer-implemented method of claim 6 , wherein the pre-determined trail is associated with one or more selected from a group consisting of: “script.bin” files; “.ino” files; “.h” files; and “.cpp” files.

Assignees

Kyndryl Inc

Inventors

Classifications

G06F21/554Primary
involving event detection and direct action · CPC title
G06F2221/034
Test or assess a computer or a system · CPC title
G06F21/83Primary
input devices, e.g. keyboards, mice or controllers thereof · CPC title

Patent family

Related publications grouped by family.

View patent family 75686294

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US11681798B2 cover?: Universal serial bus (USB) devices are evaluated for access according to characteristics including descriptors and ROM information. Descriptors are cross-references to historic descriptors known to be associated with malicious or approved USB devices. ROM information is analyzed to determine congruity of data. Device drivers and configuration files on the USB device are reviewed for indicators …
Who is the assignee on this patent?: Kyndryl Inc
What technology area does this patent fall under?: Primary CPC classification G06F21/554. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue Jun 20 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).