US 12,267,367 B2
Intrusion detection and prevention system rule automation and optimization
Brandon William Scherer, Omaha, NE (US); and John Scott Kula, Sinking Spring, PA (US)
Assigned to Charles Schwab & Co., Inc, San Francisco, CA (US)
Filed by TD Ameritrade IP Company, Inc., Omaha, NE (US)
Filed on Dec. 16, 2022, as Appl. No. 18/067,241.
Application 18/067,241 is a continuation of application No. 17/033,628, filed on Sep. 25, 2020, granted, now 11,563,777.
Prior Publication US 2023/0119649 A1, Apr. 20, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) [H04L 63/1433 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A network intrusion system for a protected network, the network intrusion system comprising:
at least one memory, wherein the memory stores instructions; and
at least one processor configured to execute the instructions and cause the network intrusion system to perform,
receiving a rule describing a set of associated network vulnerabilities;
determining whether there is a match between any of the set of associated network vulnerabilities and a set of cumulative vulnerabilities present in at least one of a plurality of network devices in the protected network; and
in response to determining that there is no match, transmitting a command signal to a network security processor, wherein the command signal instructs the network security processor to disable the rule.