-
公开(公告)号:US20150052243A1
公开(公告)日:2015-02-19
申请号:US14456094
申请日:2014-08-11
Applicant: NEC Laboratories America, Inc.
Inventor: Cristian Lumezanu , Kyriakos Zanfis , Guofei Jiang
IPC: H04L12/26
CPC classification number: H04L43/04 , H04L41/046 , H04L41/147 , H04L43/026
Abstract: Systems and methods for network management, including adaptively installing one or more monitoring rules in one or more network devices on a network using an intelligent network middleware, detecting application traffic on the network transparently using an application demand monitor, and predicting future network demands of the network by analyzing historical and current demands. The one or more monitoring rules are updated once counters are collected; and network paths are determined and optimized to meet network demands and maximize utilization and application performance with minimal congestion on the network.
Abstract translation: 网络管理系统和方法,包括使用智能网络中间件在网络上的一个或多个网络设备中自适应地安装一个或多个监控规则,使用应用需求监控器透明地检测网络上的应用流量,以及预测未来网络需求 分析历史和当前需求的网络。 收集计数器后,更新一个或多个监控规则; 并确定和优化网络路径以满足网络需求并最大程度地利用和应用性能,同时网络拥塞最小。
-
公开(公告)号:US08924787B2
公开(公告)日:2014-12-30
申请号:US13736158
申请日:2013-01-08
Applicant: NEC Laboratories America, Inc.
Inventor: Cristian Lumezanu , Guofei Jiang , Yueping Zhang , Vishal Singh , Ahsan Arefin
CPC classification number: G06F11/3476 , G06F11/0793 , G06F11/3006 , G06F11/3017 , G06F11/302 , G06F11/3055 , H04L41/142 , H04L41/145 , H04L43/04
Abstract: A debugging system used for a data center in a network is disclosed. The system includes a monitoring engine to monitor network traffic by collecting traffic information from a network controller, a modeling engine to model an application signature, an infrastructure signature, and a task signature using a monitored log, a debugging engine to detect a change in the application signature between a working status and a non-working status using a reference log and a problem log, and to validate the change using the task signature, and a providing unit to provide toubleshooting information, wherein an unknown change in the application signature is correlated to a known problem class by considering a dependency to a change in the infrastructure signature. Other methods and systems also are disclosed.
Abstract translation: 公开了一种用于网络中的数据中心的调试系统。 该系统包括监视引擎,通过从网络控制器收集交通信息,建模引擎来模拟应用签名,基础设施签名和使用监控日志的任务签名来监视网络流量;调试引擎,用于检测网络流量的变化 使用参考日志和问题日志在工作状态和非工作状态之间的应用签名,以及使用所述任务签名来验证所述改变;以及提供单元,用于提供故障排除信息,其中所述应用签名中的未知变化被相关 通过考虑对基础设施签名的改变的依赖性来解决已知的问题类。 还公开了其它方法和系统。
-
93.发明授权Method for scalable analysis of android applications for security vulnerability 有权Android应用程序可扩展分析方法的安全漏洞的方法公开(公告)号:US08875298B2
公开(公告)日:2014-10-28
申请号:US13768439
申请日:2013-02-15
Applicant: NEC Laboratories America, Inc.
Inventor: Zhichun Li , Long Lu , Zhenyu Wu , Guofei Jiang
CPC classification number: G06F21/577 , G06F11/3604 , G06F21/562 , G06F2221/033
Abstract: A method for scalable analysis of Android applications for security includes applying Android application analytics to an Android application, which in turn includes applying an application taint tracking to the Android application and applying application repacking detection to the Android application, and determining security vulnerabilities in the Android application responsive to the analytics.
Abstract translation: Android应用程序的可扩展分析方法包括将Android应用程序分析应用于Android应用程序,Android应用程序分析应用程序将应用程序污染跟踪应用于Android应用程序,并将应用程序重新包装检测应用于Android应用程序,并确定Android中的安全漏洞 响应分析的应用程序。
-
公开(公告)号:US20130176852A1
公开(公告)日:2013-07-11
申请号:US13736146
申请日:2013-01-08
Applicant: NEC LABORATORIES AMERICA, INC.
Inventor: Cristian Lumezanu , Guofei Jiang , Yueping Zhang , Vishal Singh , Ye Wang
IPC: H04L12/56
CPC classification number: H04L47/12 , H04L43/026 , H04L43/16 , H04L47/2441 , H04L47/41 , H04L63/1425 , Y02D50/30
Abstract: A device used in a network is disclosed. The device includes a network monitor to monitor a network state and to collect statistics for flows going through the network, a flow aggregation unit to aggregate flows into clusters and identify flows that can cause a network problem, and an adaptive control unit to adaptively regulate the identified flow according to network feedback. Other methods and systems also are disclosed.
Abstract translation: 公开了一种在网络中使用的设备。 该设备包括网络监视器,用于监控网络状态并收集通过网络的流量的统计信息;流量聚合单元,用于将流聚集成群集,识别可能导致网络问题的流;以及自适应控制单元, 根据网络反馈确定流量。 还公开了其它方法和系统。
-
公开(公告)号:US10929765B2
公开(公告)日:2021-02-23
申请号:US15678751
申请日:2017-08-16
Applicant: NEC Laboratories America, Inc.
Inventor: Biplob Debnath , Hui Zhang , Jianwu Xu , Nipun Arora , Guofei Jiang , Bo Zong
Abstract: A computer-implemented method for automatically analyzing log contents received via a network and detecting content-level anomalies is presented. The computer-implemented method includes building a statistical model based on contents of a set of training logs and detecting, based on the set of training logs, content-level anomalies for a set of testing logs. The method further includes maintaining an index and metadata, generating attributes for fields, editing model capability to incorporate user domain knowledge, detecting anomalies using field attributes, and improving anomaly quality by using user feedback.
-
Patent Agency Ranking
公开(公告)号:US10860582B2
公开(公告)日:2020-12-08
申请号:US15364489
申请日:2016-11-30
Applicant: NEC Laboratories America, Inc.
Inventor: Xusheng Xiao , Zhichun Li , Fengyuan Xu , Peng Gao , Guofei Jiang
IPC: G06F16/00 , G06F16/2453 , G06F16/2458 , G06F16/2455 , G06F21/00 , G06F21/55 , G06F16/245 , G06F16/242
Abstract: Systems and a method are provided. A system includes a Temporal Behavior Query Language (TBQL) server having a processor and a memory operably coupled to the processor. The TBQL server configured to construct a TBQL query using a grammar inference technique based on syntactic sugar to expedite query construction. The TBQL server is further configured to execute the TBQL query to generate TBQL query results.
-
公开(公告)号:US10740170B2
公开(公告)日:2020-08-11
申请号:US15830579
申请日:2017-12-04
Applicant: NEC Laboratories America, Inc.
Inventor: Biplob Debnath , Hui Zhang , Guofei Jiang
Abstract: A computer-implemented method, computer program product, and computer processing system are provided. The method includes preprocessing, by a processor, a set of heterogeneous logs by splitting each of the logs into tokens to obtain preprocessed logs. Each of the logs in the set is associated with a timestamp and textual content in one or more fields. The method further includes generating, by the processor, a set of regular expressions from the preprocessed logs. The method also includes performing, by the processor, an unsupervised parsing operation by applying the regular expressions to the preprocessed logs to obtain a set of parsed logs and a set of unparsed logs, if any. The method additionally includes storing, by the processor, the set of parsed logs in a log analytics database and the set of unparsed logs in a debugging database.
-
公开(公告)号:US10679135B2
公开(公告)日:2020-06-09
申请号:US15340255
申请日:2016-11-01
Applicant: NEC Laboratories America, Inc.
Inventor: Hui Zhang , Haifeng Chen , Jianwu Xu , Kenji Yoshihira , Guofei Jiang
Abstract: Systems and methods are disclosed for detecting periodic event behaviors from machine generated logging by: capturing heterogeneous log messages, each log message including a time stamp and text content with one or more fields; recognizing log formats from log messages; transforming the text content into a set of time series data, one time series for each log format; during a training phase, analyzing the set of time series data and building a category model for each periodic event type in heterogeneous logs; and during live operation, applying the category model to a stream of time series data from live heterogeneous log messages and generating a flag on a time series data point violating the category model and generating an alarm report for the corresponding log message.
-
公开(公告)号:US10574674B2
公开(公告)日:2020-02-25
申请号:US15644018
申请日:2017-07-07
Applicant: NEC Laboratories America, Inc. , NEC Corporation
Inventor: Kangkook Jee , Zhichun Li , Guofei Jiang , Lauri Korts-Parn , Zhenyu Wu , Yixin Sun , Junghwan Rhee
Abstract: A system and computer-implemented method are provided for host level detection of malicious Domain Name System (DNS) activities in a network environment having multiple end-hosts. The system includes a set of DNS resolver agents configured to (i) gather DNS activities from each of the multiple end-hosts by recording DNS queries and DNS responses corresponding to the DNS queries, and (ii) associate the DNS activities with Program Identifiers (PIDs) that identify programs that issued the DNS queries. The system further includes a backend server configured to detect one or more of the malicious DNS activities based on the gathered DNS activities and the PIDs.
-
100.发明授权公开(公告)号:US10340734B2
公开(公告)日:2019-07-02
申请号:US15680796
申请日:2017-08-18
Applicant: NEC Laboratories America, Inc.
Inventor: Tan Yan , Dongjin Song , Haifeng Chen , Guofei Jiang , Tingyang Xu
Abstract: A power generator system with anomaly detection and methods for detecting anomalies include a power generator that includes one or more physical components configured to provide electrical power. Sensors are configured to make measurements of a state of respective physical components, outputting respective time series of said measurements. A monitoring system includes a fitting module configured to determine a predictive model for each pair of a set of time series, an anomaly detection module configured to compare new values of each pair of time series to values predicted by the respective predictive model to determine if the respective predictive model is broken and to determine a number of broken predictive model, and an alert module configured to generate an anomaly alert if the number of broken predictive models exceeds a threshold.
-
-
-
-
-
-
-
-
-
Search Results
176
records
(took 0.017 seconds)
