Learning internal ranges from network traffic data to augment anomaly detection systems

Invention Grant

US10404728B2 Learning internal ranges from network traffic data to augment anomaly detection systems 有权

Please log in to see more content

Patent Title: Learning internal ranges from network traffic data to augment anomaly detection systems
Application No.: US15263487

Application Date: 2016-09-13
Publication No.: US10404728B2

Publication Date: 2019-09-03
Inventor: Laurent Sartran , Sébastien Gay , Pierre-André Savalle , Grégory Mermoud , Jean-Philippe Vasseur
Applicant: Cisco Technology, Inc.
Applicant Address: US CA San Jose
Assignee: Cisco Technology, Inc.
Current Assignee: Cisco Technology, Inc.
Current Assignee Address: US CA San Jose
Agency: Behmke Innovation Group LLC
Agent James Behmke; Stephen D. LeBarron
Main IPC: H04L29/06
IPC: H04L29/06 ; H04L12/24 ; H04L12/26

Learning internal ranges from network traffic data to augment anomaly detection systems

Abstract:

In one embodiment, a device in a network receives traffic records indicative of network traffic between different sets of host address pairs. The device identifies one or more address grouping constraints for the sets of host address pairs. The device determines address groups for the host addresses in the sets of host address pairs based on the one or more address grouping constraints. The device provides an indication of the address groups to an anomaly detector.

Public/Granted literature

US20180077182A1 LEARNING INTERNAL RANGES FROM NETWORK TRAFFIC DATA TO AUGMENT ANOMALY DETECTION SYSTEMS Public/Granted day:2018-03-15

Information query

Espacenet