-
公开(公告)号:US08688655B2
公开(公告)日:2014-04-01
申请号:US13218530
申请日:2011-08-26
CPC分类号: G06F17/30324
摘要: A method for providing a compressed index for a stream of binary data records comprises steps of indexing a field from each record in a bitmap index, compressing stored bits in each column of the bitmap index by replacing a group of successive bits with a code and outputting the code. There is provided at least one of a first code for replacing a sequence of a first filling, a literal and a second filling, and a second code for replacing a sequence of a first literal, a filling and a second literal. In this context, a filling is a sequence of bits with the same value and a literal is a sequence of bits with different values.
摘要翻译: 一种用于为二进制数据记录流提供压缩索引的方法包括以下步骤:从位图索引中的每个记录中对字段进行索引,通过用代码替换一组连续位来压缩位图索引的每列中的存储位,并输出 代码。 提供了用于替换第一填充,文字和第二填充的序列的第一代码和用于替换第一文字,填充和第二文字的序列的第二代码中的至少一个。 在这种情况下,填充是具有相同值的位序列,文字是具有不同值的位序列。
-
公开(公告)号:US20120054160A1
公开(公告)日:2012-03-01
申请号:US13218530
申请日:2011-08-26
IPC分类号: G06F7/00
CPC分类号: G06F17/30324
摘要: A method for providing a compressed index for a stream of binary data records comprises steps of indexing a field from each record in a bitmap index, compressing stored bits in each column of the bitmap index by replacing a group of successive bits with a code and outputting the code. There is provided at least one of a first code for replacing a sequence of a first filling, a literal and a second filling, and a second code for replacing a sequence of a first literal, a filling and a second literal. In this context, a filling is a sequence of bits with the same value and a literal is a sequence of bits with different values.
摘要翻译: 一种用于为二进制数据记录流提供压缩索引的方法包括以下步骤:从位图索引中的每个记录中对字段进行索引,通过用代码替换一组连续位来压缩位图索引的每列中的存储位,并输出 代码。 提供了用于替换第一填充,文字和第二填充的序列的第一代码和用于替换第一文字,填充和第二文字的序列的第二代码中的至少一个。 在这种情况下,填充是具有相同值的位序列,文字是具有不同值的位序列。
-
公开(公告)号:US08989198B2
公开(公告)日:2015-03-24
申请号:US13609813
申请日:2012-09-11
申请人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
发明人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
CPC分类号: H04L61/6068 , H04L29/1232 , H04L29/12933 , H04L61/2092 , H04L67/34
摘要: Mechanisms are provided for automatic address range detection for an IP network. Flow data is obtained comprising the source or destination IP addresses for the flow and one of: the other of the source or destination IP addresses; or direction data identifying the flow direction across the network boundary. A tree is generated representing IP addresses in the flow data. IP addresses with initial portions in common are represented in the tree with a node in common. Weights are assigned to nodes in the tree based on occurrences of the represented IP addresses in the flow data. The IP address range of the network is detected by identifying, based on the assigned weights, the node associated with the last initial address portion common to all IP addresses in the network. A device is automatically configured with the IP address range to differentiate IP addresses inside and outside the network.
摘要翻译: 为IP网络的自动地址范围检测提供了机制。 获得流数据,其包括用于流的源或目的地IP地址和以下之一:源或目的地IP地址中的另一个; 或方向数据标识跨越网络边界的流向。 生成表示流数据中的IP地址的树。 具有共同的初始部分的IP地址在树中被表示为具有共同的节点。 基于流数据中所表示的IP地址的出现,权重被分配给树中的节点。 通过基于分配的权重,识别与网络中所有IP地址共同的最后初始地址部分相关联的节点来检测网络的IP地址范围。 设备自动配置IP地址范围,以区分网络内外的IP地址。
-
公开(公告)号:US20120163196A1
公开(公告)日:2012-06-28
申请号:US13390037
申请日:2010-08-03
申请人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
发明人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
CPC分类号: H04L61/6068 , H04L29/1232 , H04L29/12933 , H04L61/2092 , H04L67/34
摘要: Mechanisms are provided for automatic address range detection for an IP network. Flow data is obtained comprising one of the source and destination IP addresses for the flow and one of (a) the other of the source and destination IP addresses and (b) direction data indicative of the flow direction across the network boundary. A tree data structure is generated representing the IP addresses in the flow data. IP addresses with initial portions in common are represented in the tree with at least one node in common. Weights are assigned to nodes in the tree in dependence on occurrences of the represented IP addresses in at least a subset of the flow data. The IP address range of the network is then detected by identifying, in dependence on the assigned weights, the node associated with the last initial address portion common to all IP addresses in the network. A device is automatically configured with the IP address range to permit distinction between IP addresses inside and outside the network in operation of the device, e.g. for filtering or traffic classification.
摘要翻译: 为IP网络的自动地址范围检测提供了机制。 获得流数据,其包括用于流的源和目的地IP地址之一,(a)源和目的地IP地址中的另一个以及(b)指示跨越网络边界的流向的方向数据。 生成表示流数据中的IP地址的树数据结构。 具有公共初始部分的IP地址在树中被表示为具有至少一个共同的节点。 根据在流数据的至少一个子集中所表示的IP地址的出现,权重被分配给树中的节点。 然后,通过根据所分配的权重,通过与网络中所有IP地址共同的最后一个初始地址部分相关联的节点来识别网络的IP地址范围。 自动配置设备的IP地址范围,以允许在设备操作中区分网络内部和外部的IP地址。 用于过滤或流量分类。
-
公开(公告)号:US20130058224A1
公开(公告)日:2013-03-07
申请号:US13609813
申请日:2012-09-11
申请人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
发明人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
CPC分类号: H04L61/6068 , H04L29/1232 , H04L29/12933 , H04L61/2092 , H04L67/34
摘要: Mechanisms are provided for automatic address range detection for an IP network. Flow data is obtained comprising the source or destination IP addresses for the flow and one of: the other of the source or destination IP addresses; or direction data identifying the flow direction across the network boundary. A tree is generated representing IP addresses in the flow data. IP addresses with initial portions in common are represented in the tree with a node in common. Weights are assigned to nodes in the tree based on occurrences of the represented IP addresses in the flow data. The IP address range of the network is detected by identifying, based on the assigned weights, the node associated with the last initial address portion common to all IP addresses in the network. A device is automatically configured with the IP address range to differentiate IP addresses inside and outside the network.
摘要翻译: 为IP网络的自动地址范围检测提供了机制。 获得流数据,其包括用于流的源或目的地IP地址和以下之一:源或目的地IP地址中的另一个; 或方向数据标识跨越网络边界的流向。 生成表示流数据中的IP地址的树。 具有共同的初始部分的IP地址在树中被表示为具有共同的节点。 基于流数据中所表示的IP地址的出现,权重被分配给树中的节点。 通过基于分配的权重,识别与网络中所有IP地址共同的最后初始地址部分相关联的节点来检测网络的IP地址范围。 设备自动配置IP地址范围,以区分网络内外的IP地址。
-
6.发明申请SYSTEMS, METHODS AND COMPUTER PROGRAM PRODUCTS FOR EXTRACTING PORT-LEVEL INFORMATION OF WEB SERVICES WITH FLOW-BASED NETWORK MONITORING 有权使用流量网络监控提取WEB服务端口级信息的系统,方法和计算机程序产品公开(公告)号:US20090177768A1
公开(公告)日:2009-07-09
申请号:US11971652
申请日:2008-01-09
IPC分类号: G06F15/173
CPC分类号: G06F11/30 , G06F17/30873 , H04L41/0293 , H04L41/5058
摘要: Systems, methods, and computer program products for extracting port-level information of Web services with flow-based network monitoring. Exemplary embodiments include a method for extracting port-level information of Web services with flow-based network monitoring, the method including identifying a registry machine, coupling the registry machine to a traffic meter and flow monitor dynamically configuring the traffic meter, including exporting a first n bytes of a traffic payload exporting a sub-second traffic flow start and end times, extracting service provider information from traffic flow exports, including analyzing the exported n bytes of the traffic payload to extract port-level information at the flow monitor, extracting a value of an access point element, mapping a logical service provider address to a physical address and inserting the service into a Web Service Provider Registry within the flow meter, thereby populating the Web Service Provider Registry.
摘要翻译: 系统,方法和计算机程序产品,用于基于流网络监控提取Web服务的端口级信息。 示例性实施例包括用于基于流的网络监控来提取Web服务的端口级信息的方法,所述方法包括识别注册机器,将注册机器耦合到流量计和动态配置流量计的流量监视器,包括导出第一 n字节的流量有效载荷导出子秒流量开始和结束时间,从流量导出中提取服务提供商信息,包括分析流量有效负载的导出n字节以在流量监视器处提取端口级信息,提取 接入点元素的值,将逻辑服务提供商地址映射到物理地址并将该服务插入到流量计内的Web服务提供商注册表中,由此填充Web服务提供商注册表。
-
公开(公告)号:US09112945B2
公开(公告)日:2015-08-18
申请号:US13390037
申请日:2010-08-03
申请人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
发明人: Bernhard Jansen , Andreas Kind , Marc P. Stoecklin
CPC分类号: H04L61/6068 , H04L29/1232 , H04L29/12933 , H04L61/2092 , H04L67/34
摘要: Mechanisms are provided for automatic address range detection for an IP network. Flow data is obtained comprising one of the source and destination IP addresses for the flow and one of (a) the other of the source and destination IP addresses and (b) direction data indicative of the flow direction across the network boundary. A tree data structure is generated representing the IP addresses in the flow data. IP addresses with initial portions in common are represented in the tree with at least one node in common. Weights are assigned to nodes in the tree in dependence on occurrences of the represented IP addresses in at least a subset of the flow data. The IP address range of the network is then detected by identifying, in dependence on the assigned weights, the node associated with the last initial address portion common to all IP addresses in the network. A device is automatically configured with the IP address range to permit distinction between IP addresses inside and outside the network in operation of the device, e.g. for filtering or traffic classification.
摘要翻译: 为IP网络的自动地址范围检测提供了机制。 获得流数据,其包括用于流的源和目的地IP地址之一,(a)源和目的地IP地址中的另一个以及(b)指示跨越网络边界的流向的方向数据。 生成表示流数据中的IP地址的树数据结构。 具有公共初始部分的IP地址在树中被表示为具有至少一个共同的节点。 根据在流数据的至少一个子集中所表示的IP地址的出现,权重被分配给树中的节点。 然后,通过根据所分配的权重,通过与网络中所有IP地址共同的最后一个初始地址部分相关联的节点来识别网络的IP地址范围。 自动配置设备的IP地址范围,以允许在设备操作中区分网络内部和外部的IP地址。 用于过滤或流量分类。
-
8.发明授权Systems, methods and computer program products for extracting port-level information of web services with flow-based network monitoring 有权系统,方法和计算机程序产品,用于基于流网络监控提取Web服务的端口级信息公开(公告)号:US07792959B2
公开(公告)日:2010-09-07
申请号:US11971652
申请日:2008-01-09
IPC分类号: G06F15/173 , G06F15/16
CPC分类号: G06F11/30 , G06F17/30873 , H04L41/0293 , H04L41/5058
摘要: Systems, methods, and computer program products for extracting port-level information of Web services with flow-based network monitoring. Exemplary embodiments include a method for extracting port-level information of Web services with flow-based network monitoring, the method including identifying a registry machine, coupling the registry machine to a traffic meter and flow monitor dynamically configuring the traffic meter, including exporting a first n bytes of a traffic payload exporting a sub-second traffic flow start and end times, extracting service provider information from traffic flow exports, including analyzing the exported n bytes of the traffic payload to extract port-level information at the flow monitor, extracting a value of an access point element, mapping a logical service provider address to a physical address and inserting the service into a Web Service Provider Registry within the flow meter, thereby populating the Web Service Provider Registry.
摘要翻译: 系统,方法和计算机程序产品,用于基于流网络监控提取Web服务的端口级信息。 示例性实施例包括用于基于流的网络监控来提取Web服务的端口级信息的方法,所述方法包括识别注册机器,将注册机器耦合到流量计和动态配置流量计的流量监视器,包括导出第一 n字节的流量有效载荷导出子秒流量开始和结束时间,从流量导出中提取服务提供商信息,包括分析流量有效负载的导出n字节以在流量监视器处提取端口级信息,提取 接入点元素的值,将逻辑服务提供商地址映射到物理地址并将该服务插入到流量计内的Web服务提供商注册表中,由此填充Web服务提供商注册表。
-
公开(公告)号:US09392009B2
公开(公告)日:2016-07-12
申请号:US12281357
申请日:2007-03-01
申请人: Patrick Droz , Robert Haas , Andreas Kind
发明人: Patrick Droz , Robert Haas , Andreas Kind
CPC分类号: H04L63/1425 , H04L43/04 , H04W76/27
摘要: Network flow records from various administrative domains are provided to a network monitoring entity. The network monitoring entity analyzes the network flow records in a way to locate a source of malicious network flow.
摘要翻译: 来自各个管理域的网络流记录被提供给网络监控实体。 网络监控实体以定位恶意网络流源的方式分析网络流记录。
-
公开(公告)号:US07843827B2
公开(公告)日:2010-11-30
申请号:US11641431
申请日:2006-12-19
申请人: Paul T. Hurley , Andreas Kind
发明人: Paul T. Hurley , Andreas Kind
IPC分类号: H04L12/26
CPC分类号: H04L43/00 , H04L41/0213 , H04L43/022
摘要: A method for configuring network device adapted to process network traffic comprising a plurality of network flows and to export network flow information. For configuring the network device, a copy of the network traffic that is processed by the network device is created. A simulation of a process of collecting the network flow information using the copy of the network traffic is performed. Based on the results of the simulation, a preferred information collection scheme is determined. The network device is then configured to collect the network flow information to be exported according to the preferred information collection scheme.
摘要翻译: 一种用于配置适于处理包括多个网络流的网络流量并且输出网络流信息的网络设备的方法。 为了配置网络设备,创建了由网络设备处理的网络流量的副本。 执行使用网络业务的副本收集网络流信息的过程的模拟。 基于模拟结果,确定优选的信息收集方案。 然后,网络设备被配置为根据优选信息收集方案收集要导出的网络流信息。
-
-
-
-
-
-
-
-
-
搜索结果
54 条记录 (耗时 0.022 秒)
