-
公开(公告)号:US07461404B2
公开(公告)日:2008-12-02
申请号:US10701400
申请日:2003-11-03
IPC分类号: G06F12/14
CPC分类号: H04L63/1408 , H04L63/1416 , H04L69/16 , H04L69/166
摘要: A system for detecting network intrusions and other conditions in a network is described. The system includes a plurality of collector devices that are disposed to collect data and statistical information on packets that are sent between nodes on a network. An aggregator device is disposed to receive data and statistical information from the plurality of collector devices. The aggregator device produces a connection table that maps each node on the network to a record that stores information about traffic to or from the node. The aggregator runs processes that determine network events from aggregating of anomalies into network events.
摘要翻译: 描述了一种用于检测网络中的网络入侵和其他条件的系统。 该系统包括多个收集器装置,其被设置为收集关于在网络上的节点之间发送的分组的数据和统计信息。 设置聚合器装置以从多个收集器装置接收数据和统计信息。 聚合器设备产生连接表,其将网络上的每个节点映射到存储关于到节点或从节点的流量的信息的记录。 聚合器运行确定网络事件的过程,从异常聚合到网络事件。
-
公开(公告)号:US07657934B2
公开(公告)日:2010-02-02
申请号:US10066252
申请日:2002-01-31
IPC分类号: H04L9/00
CPC分类号: H04L63/1408 , H04L63/1425 , H04L63/1458
摘要: A monitoring device is disposed to thwart denial of service attacks on a data center. The monitoring device is a device that collects statistical information on packets that are sent between a network and the data center for a plurality of customers by examining traffic as if the device was disposed on links that are downstream from links that the provisioned monitor is disposed on.
摘要翻译: 设置监控设备以阻止对数据中心的拒绝服务攻击。 监视装置是通过检查流量来收集关于在多个客户的网络和数据中心之间发送的分组的统计信息的装置,就好像该设备被布置在所配置的监视器所在的链路的下游的链路上 。
-
公开(公告)号:US07827272B2
公开(公告)日:2010-11-02
申请号:US10701155
申请日:2003-11-03
IPC分类号: G06F15/173 , G06F15/16 , G06F12/16
CPC分类号: H04L41/0893 , H04L41/0213 , H04L41/12 , H04L43/00 , H04L43/06 , H04L43/0894 , H04L43/16 , H04L63/1425
摘要: A system for detecting network intrusions and other conditions in a network is described. The system includes a plurality of collector devices that are disposed to collect data and statistical information on packets that are sent between nodes on a network. An aggregator device is disposed to receive data and statistical information from the plurality of collector devices. The aggregator device produces a connection table that maps each node on the network to a record that stores information about traffic to or from the node. The aggregator runs processes that determine network events from aggregating of anomalies into network events.
摘要翻译: 描述了一种用于检测网络中的网络入侵和其他条件的系统。 该系统包括多个收集器装置,其被设置为收集关于在网络上的节点之间发送的分组的数据和统计信息。 设置聚合器装置以从多个收集器装置接收数据和统计信息。 聚合器设备产生连接表,其将网络上的每个节点映射到存储关于到节点或从节点的流量的信息的记录。 聚合器运行确定网络事件的过程,从异常聚合到网络事件。
-
公开(公告)号:US08191136B2
公开(公告)日:2012-05-29
申请号:US10701381
申请日:2003-11-03
IPC分类号: H04L29/06
CPC分类号: H04L41/0893 , H04L41/0213 , H04L41/22 , H04L43/06 , H04L43/0894 , H04L43/16 , H04L63/1458
摘要: A system for detecting network intrusions and other conditions in a network is described. The system includes a plurality of collector devices that are disposed to collect data and statistical information on packets that are sent between nodes on a network. An aggregator device is disposed to receive data and statistical information from the plurality of collector devices. The aggregator device produces a connection table that maps each node on the network to a record that stores information about traffic to or from the node. The aggregator runs processes that determine network events from aggregating of anomalies into network events.
摘要翻译: 描述了一种用于检测网络中的网络入侵和其他条件的系统。 该系统包括多个收集器装置,其被设置为收集关于在网络上的节点之间发送的分组的数据和统计信息。 设置聚合器装置以从多个收集器装置接收数据和统计信息。 聚合器设备产生连接表,其将网络上的每个节点映射到存储关于到节点或从节点的流量的信息的记录。 聚合器运行确定网络事件的过程,从异常聚合到网络事件。
-
-
-
搜索结果
4 条记录 (耗时 0.024 秒)
