Hierarchical attack detection in a network

Invention Grant

US09674207B2 Hierarchical attack detection in a network 有权

Please log in to see more content

Patent Title: Hierarchical attack detection in a network
Application No.: US14338794

Application Date: 2014-07-23
Publication No.: US09674207B2

Publication Date: 2017-06-06
Inventor: Andrea Di Pietro , Jean-Philippe Vasseur , Javier Cruz Mota
Applicant: Cisco Technology, Inc.
Applicant Address: US CA San Jose
Assignee: Cisco Technology, Inc.
Current Assignee: Cisco Technology, Inc.
Current Assignee Address: US CA San Jose
Agency: Parker Ibrahim & Berg LLC
Agent James M. Behmke; Kenneth J. Heywood
Main IPC: H04L29/06
IPC: H04L29/06

Hierarchical attack detection in a network

Abstract:

In one embodiment, a device in a network identifies a set of traffic flow records that triggered an attack detector. The device selects a subset of the traffic flow records and calculates aggregated metrics for the subset. The device provides the aggregated metrics for the subset to the attack detector to generate an attack detection determination for the subset of traffic flow records. The device identifies one or more attack traffic flows from the set of traffic flow records based on the attack detection determination for the subset of traffic flow records.

Public/Granted literature

US20160028752A1 HIERARCHICAL ATTACK DETECTION IN A NETWORK Public/Granted day:2016-01-28

Information query

Espacenet