公开(公告)号：US20220400126A1

公开(公告)日：2022-12-15

申请号：US17342785

申请日：2021-06-09

申请人： Arista Networks, Inc.

发明人： Keith Amidon ,  David Pearson ,  Jeff Polakow ,  Matthew Park ,  Gary Golomb

IPC分类号： H04L29/06

摘要： An automated framework provides security monitoring and analysis in a network by autonomously detecting actual and potential threats to the network. In response to detection of a threat, the framework instantiates a Situation to provide directed monitoring of the threat. The Situation invokes specific skills based on the state of the Situation to monitor network traffic for activity specific to the threat that instantiated the Situation. As data is collected, additional skills may be invoked based on the additional data to collect new data, and previously invoked skills may be terminated depending on the additional data to avoid collecting information that is no-longer relevant.

公开(公告)号：US12069074B2

公开(公告)日：2024-08-20

申请号：US17342785

申请日：2021-06-09

申请人： Arista Networks, Inc.

发明人： Keith Amidon ,  David Pearson ,  Jeff Polakow ,  Matthew Park ,  Gary Golomb

IPC分类号： H04L9/40

CPC分类号： H04L63/1425 ,  H04L63/1416

摘要： An automated framework provides security monitoring and analysis in a network by autonomously detecting actual and potential threats to the network. In response to detection of a threat, the framework instantiates a Situation to provide directed monitoring of the threat. The Situation invokes specific skills based on the state of the Situation to monitor network traffic for activity specific to the threat that instantiated the Situation. As data is collected, additional skills may be invoked based on the additional data to collect new data, and previously invoked skills may be terminated depending on the additional data to avoid collecting information that is no-longer relevant.