公开(公告)号：US20190121971A1

公开(公告)日：2019-04-25

申请号：US16161769

申请日：2018-10-16

Applicant: NEC Laboratories America, Inc.

Inventor： LuAn Tang ,  Zhengzhang Chen ,  Zhichun Li ,  Zhenyu Wu ,  Jumpei Kamimura ,  Haifeng Chen

IPC: G06F21/55 ,  H04L12/24 ,  H04L29/06

Abstract: A computer-implemented method for implementing alert interpretation in enterprise security systems is presented. The computer-implemented method includes employing a plurality of sensors to monitor streaming data from a plurality of computing devices, generating alerts based on the monitored streaming data, and employing an alert interpretation module to interpret the alerts in real-time, the alert interpretation module including a process-star graph constructor for retrieving relationships from the streaming data to construct process-star graph models and an alert cause detector for analyzing the alerts based on the process-star graph models to determine an entity that causes an alert.

公开(公告)号：US20190121970A1

公开(公告)日：2019-04-25

申请号：US16161701

申请日：2018-10-16

Applicant: NEC Laboratories America, Inc.

Inventor： LuAn Tang ,  Zhengzhang Chen ,  Zhichun Li ,  Zhenyu Wu ,  Jumpei Kamimura ,  Haifeng Chen

IPC: G06F21/55 ,  H04L12/24 ,  H04L29/06

Abstract: A computer-implemented method for implementing alert interpretation in enterprise security systems is presented. The computer-implemented method includes employing a plurality of sensors to monitor streaming data from a plurality of computing devices, generating alerts based on the monitored streaming data, employing an alert interpretation module to interpret the alerts in real-time, matching problematic entities to the streaming data, retrieving following events, and generating an aftermath graph on a visualization component.

公开(公告)号：US20190098048A1

公开(公告)日：2019-03-28

申请号：US16101794

申请日：2018-08-13

Applicant: NEC Laboratories America, Inc.

Inventor： Cristian Lumezanu ,  Nipun Arora ,  Haifeng Chen ,  Bo Zong ,  Daeki Cho ,  Mingda Li

IPC: H04L29/06 ,  H04L12/733 ,  H04L12/741 ,  H04L12/26 ,  G06N3/08 ,  G06K9/62

Abstract: Methods and systems for mitigating a spoofing-based attack include calculating a travel distance between a source Internet Protocol (IP) address and a target IP address from a received packet based on time-to-live information from the received packet. An expected travel distance between the source IP address and the target IP address is estimated based on a sparse set of known source/target distances. It is determined that the received packet has a spoofed source IP address based on a comparison between the calculated travel distance and the expected travel distance. A security action is performed responsive to the determination that the received packet has a spoofed source IP address.

公开(公告)号：US20190095417A1

公开(公告)日：2019-03-28

申请号：US16145580

申请日：2018-09-28

Applicant: NEC Laboratories America, Inc.

Inventor： Jianwu Xu ,  Hui Zhang ,  Haifeng Chen ,  Tanay Kumar Saha

IPC: G06F17/27

Abstract: A computer-implemented method, system, and computer program product are provided for content aware heterogeneous log pattern comparative analysis. The method includes receiving, by a processor-device, a plurality of heterogeneous logs. The method also includes extracting, by the processor-device, a plurality of log syntactic patterns from the plurality of heterogenous logs. The method additionally includes generating, by the processor-device, latent representation vectors for each of the plurality of log syntactic patterns. The method further includes predicting, by the processor-device, an anomaly from the clustered latent representation vectors. The method also includes controlling an operation of a processor-based machine to react in accordance with the anomaly.

公开(公告)号：US10238298B2

公开(公告)日：2019-03-26

申请号：US14979034

申请日：2015-12-22

Applicant: NEC Laboratories America, Inc.

Inventor： Ting Wang ,  Yi Weng

IPC: A61B5/05 ,  A61B5/00

Abstract: A method and system for remote sensing. The method includes applying an orbital angular momentum (OAM) mode on a light beam to generate an OAM light beam having an optical OAM spectrum, exposing a target object to the OAM light beam such that the target object absorbs energy of the OAM light beam to generate ultrasonic emissions, the ultrasonic emissions having a reflected OAM spectrum associated with the target object, and generating a high resolution image of the target object based on the reflected OAM spectrum.

公开(公告)号：US10235758B2

公开(公告)日：2019-03-19

申请号：US15402652

申请日：2017-01-10

Applicant: NEC Laboratories America, Inc.

Inventor： Paul Vernaza

IPC: G06K9/62 ,  G06T7/11 ,  G06N3/02

Abstract: Methods and systems for data segmentation include determining initial segmentation scores for each unit of an input data set using a neural network, with each unit being assigned an initial segmentation score for each of multiple segmentation classes. Final segmentation scores are determined for each unit of the input data set by enforcing a smoothness criterion. The input data set is segmented in accordance with the final segmentation scores.

公开(公告)号：US10235231B2

公开(公告)日：2019-03-19

申请号：US15351449

申请日：2016-11-15

Applicant: NEC Laboratories America, Inc.

Inventor： Kai Zhang ,  Jianwu Xu ,  Hui Zhang ,  Guofei Jiang

IPC: G06N5/04 ,  G06N7/00 ,  G06F11/07 ,  G06F11/34

Abstract: An exemplary method for detecting one or more anomalies in a system includes building a temporal causality graph describing functional relationship among local components in normal period; applying the causality graph as a propagation template to predict a system status by iteratively applying current system event signatures; and detecting the one or more anomalies of the system by examining related patterns on the template causality graph that specifies normal system behaviors. The system can align event patterns on the causality graph to determine an anomaly score.

公开(公告)号：US10234511B2

公开(公告)日：2019-03-19

申请号：US14846149

申请日：2015-09-04

Applicant: NEC Laboratories America, Inc.

Inventor： Ali Hooshmand ,  Ratnesh Sharma

IPC: G01R31/36 ,  H01M10/42

Abstract: Systems and methods for optimal sizing of one or more grid-scale batteries for frequency regulation service, including determining a desired battery output power for the one or more batteries for a particular period of time. A battery size is optimized for the one or more batteries for the particular period of time, and the optimizing is repeated using different time periods to generate a set of optimal battery sizes based on at least one of generated operational constraints or quality criteria constraints for the one or more batteries. A most optimal battery is selected from the set of optimal battery sizes.

公开(公告)号：US20190073406A1

公开(公告)日：2019-03-07

申请号：US16034663

申请日：2018-07-13

Applicant: NEC Laboratories America, Inc.

Inventor： Jianwu Xu ,  Tanay Kumar Saha ,  Haifeng Chen ,  Hui Zhang

IPC: G06F17/30 ,  G06F7/08

Abstract: A method and system are provided for processing computer log messages for log visualization and log retrieval. The method includes collecting log messages from one or more computer system components, performing a log tokenization process on the log messages to generate tokens, transforming the tokens into log vectors associated with a metric space, performing dimensionality reduction on the metric space to project the metric space into a lower dimensional sub-space, storing similarity distances between respective pairs of the log vectors, and in response to receiving a query associated with a query log message for reducing operational inefficiencies of the one or more computer system components, employing the similarity distances to retrieve one or more similar log messages corresponding to the query log message for reducing the operational inefficiencies of the one or more computer system components.

公开(公告)号：US20190065853A1

公开(公告)日：2019-02-28

申请号：US16051980

申请日：2018-08-01

Applicant: NEC Laboratories America, Inc.

Inventor： Kihyuk Sohn ,  Luan Tran ,  Xiang Yu ,  Manmohan Chandraker

IPC: G06K9/00 ,  G06K9/62 ,  G06N3/08 ,  G06N3/04 ,  G06N5/04 ,  G06N99/00

Abstract: Systems and methods for vehicle surveillance include a camera for capturing target images of vehicles. An object recognition system is in communication with the camera, the object recognition system including a processor for executing a synthesizer module for generating a plurality of viewpoints of a vehicle depicted in a source image, and a domain adaptation module for performing domain adaptation between the viewpoints of the vehicle and the target images to classifying vehicles of the target images regardless of the viewpoint represented in the target images. A display is in communication with the object recognition system for displaying each of the target images with labels corresponding to the vehicles of the target images.