Invention Grant
- Patent Title: Technologies for annotating process and user information for network flows
-
Application No.: US17503097Application Date: 2021-10-15
-
Publication No.: US11700190B2Publication Date: 2023-07-11
- Inventor: Navindra Yadav , Abhishek Ranjan Singh , Anubhav Gupta , Shashidhar Gandham , Jackson Ngoc Ki Pang , Shih-Chun Chang , Hai Trong Vu
- Applicant: Cisco Technology, Inc.
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Polsinelli
- Main IPC: G06F16/23
- IPC: G06F16/23 ; H04L43/045 ; H04L9/40 ; G06F9/455 ; G06N20/00 ; G06F21/55 ; G06F21/56 ; G06F16/28 ; G06F16/2457 ; G06F16/248 ; G06F16/29 ; G06F16/16 ; G06F16/17 ; G06F16/11 ; G06F16/13 ; G06F16/174 ; G06F16/9535 ; G06N99/00 ; H04L9/32 ; H04L41/0668 ; H04L43/0805 ; H04L43/0811 ; H04L43/0852 ; H04L43/106 ; H04L45/00 ; H04L45/50 ; H04L67/12 ; H04L43/026 ; H04L61/5007 ; H04L67/01 ; H04L67/51 ; H04L67/75 ; H04L67/1001 ; H04W72/54 ; H04L43/062 ; H04L43/10 ; H04L47/2441 ; H04L41/0893 ; H04L43/08 ; H04L43/04 ; H04W84/18 ; H04L67/10 ; H04L41/046 ; H04L43/0876 ; H04L41/12 ; H04L41/16 ; H04L41/0816 ; G06F21/53 ; H04L41/22 ; G06F3/04842 ; G06F3/04847 ; H04L41/0803 ; H04L43/0829 ; H04L43/16 ; H04L1/24 ; H04L9/08 ; H04J3/06 ; H04J3/14 ; H04L47/20 ; H04L47/32 ; H04L43/0864 ; H04L47/11 ; H04L69/22 ; H04L45/74 ; H04L47/2483 ; H04L43/0882 ; H04L41/0806 ; H04L43/0888 ; H04L43/12 ; H04L47/31 ; G06F3/0482 ; G06T11/20 ; H04L43/02 ; H04L47/28 ; H04L69/16 ; H04L45/302 ; H04L67/50
Abstract:
Systems, methods, and computer-readable media for annotating process and user information for network flows. In some embodiments, a capturing agent, executing on a first device in a network, can monitor a network flow associated with the first device. The first device can be, for example, a virtual machine, a hypervisor, a server, or a network device. Next, the capturing agent can generate a control flow based on the network flow. The control flow may include metadata that describes the network flow. The capturing agent can then determine which process executing on the first device is associated with the network flow and label the control flow with this information. Finally, the capturing agent can transmit the labeled control flow to a second device, such as a collector, in the network.
Public/Granted literature
- US20220038353A1 TECHNOLOGIES FOR ANNOTATING PROCESS AND USER INFORMATION FOR NETWORK FLOWS Public/Granted day:2022-02-03
Information query
