公开(公告)号：US11005814B2

公开(公告)日：2021-05-11

申请号：US15316688

申请日：2014-06-10

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Joseph A. Curcio ,  Jechun Chiu ,  Bruce E. Lavigne ,  Wei Lu ,  Shaun Wakumoto ,  Mauricio Sanchez ,  Matthew Laswell

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/64 ,  H04L12/26

Abstract: An example of a computing system is described herein. The computing system includes a plurality of network security devices. The computing system also includes a network switch configured to direct network traffic. The computing system further includes a controller coupled to the network switch. The controller is to instruct the network switch in directing network traffic to the plurality of network security devices.

公开(公告)号：US20160205143A1

公开(公告)日：2016-07-14

申请号：US14912665

申请日：2013-08-19

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Harry Bryson ,  Malcom Dodds ,  Wei Lu ,  Julian Palmer

IPC: H04L29/06

CPC classification number: H04L63/205 ,  H04L63/02 ,  H04L63/1425 ,  H04L63/1433 ,  H04W12/00505

Abstract: A method and system for dynamic identification of network security policies are provided. The method comprises inspecting network traffic using a number of network inspection technologies; executing a first network security system to implement a first number of security policies to respond to a first number of threats identified by the number of network inspection technologies; executing a second network security system to implement a second number of security policies to respond to a second number of threats identified by the number of network inspection technologies; obtaining security intelligence from the first and second network security system; and adaptively reassessing the first and second number of security policies based on the security intelligence.

Abstract translation: 提供了一种动态识别网络安全策略的方法和系统。 该方法包括使用多种网络检测技术检测网络流量; 执行第一网络安全系统以实施第一数量的安全策略以响应由网络检查技术的数量识别的第一数量的威胁; 执行第二网络安全系统以实施第二数量的安全策略以响应由网络检查技术的数量识别的第二数量的威胁; 从第一和第二网络安全系统获取安全智能; 并基于安全智能自适应地重新评估第一和第二数量的安全策略。

公开(公告)号：US20170053214A1

公开(公告)日：2017-02-23

申请号：US15307619

申请日：2014-04-28

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Gowtham Bellala ,  Jung Gun Lee ,  Wei Lu

IPC: G06N99/00 ,  G06N5/04 ,  H04L29/06

Abstract: Network flow classification can include clustering a network flow database into a number of at least one of applications and network flows. Network flow classification can include classifying the number of the at least one of applications and network flows.

Abstract translation: 网络流分类可以包括将网络流数据库聚类成多个应用和网络流中的至少一个。 网络流分类可以包括对应用和网络流中的至少一个的数量进行分类。

公开(公告)号：US10796243B2

公开(公告)日：2020-10-06

申请号：US15307619

申请日：2014-04-28

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Gowtham Bellala ,  Jung Gun Lee ,  Wei Lu

IPC: G06N20/00 ,  H04L29/06 ,  G06K9/62 ,  G06N5/04

Abstract: Network flow classification can include clustering a network flow database into a number of at least one of applications and network flows. Network flow classification can include classifying the number of the at least one of applications and network flows.

公开(公告)号：US10785130B2

公开(公告)日：2020-09-22

申请号：US15565810

申请日：2015-04-23

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Joseph A. Curcio ,  Bruce E. LaVigne ,  Wei Lu

IPC: H04L29/08 ,  H04L12/26 ,  H04L12/833 ,  H04L29/06 ,  H04L12/851 ,  H04L12/721 ,  H04L12/813

Abstract: Example embodiments disclosed herein relate to implementing pre-filter rules at a network infrastructure device. In one example, the network infrastructure device receives a packet flow including a first pre-filter tag including information from implementation of a first subset of a set of pre-filter rules. In the example, the network infrastructure device includes logic to implement a second subset of the pre-filter rules. The second subset of pre-filter rules are different from the first subset of pre-filter rules. The second subset of pre-filter rules are implemented on the packet flow to yield a pre-filter result.

公开(公告)号：US09674052B2

公开(公告)日：2017-06-06

申请号：US13623335

申请日：2012-09-20

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Wei Lu ,  Blaine Kubesh ,  Jianhua Xie

IPC: H04L12/26

CPC classification number: H04L43/028

Abstract: Techniques for identifying stream fingerprints are provided. A stream of data packets may be received. In one aspect, a stream fingerprint may be determined based on the stream of data packets. An application associated with the stream may be determined based on the stream fingerprint. In another aspect, a stream may be partially matched while a fully matched stream fingerprint has not been determined. As additional packets are received, the stream may become fully matched.

公开(公告)号：US20180115471A1

公开(公告)日：2018-04-26

申请号：US15565810

申请日：2015-04-23

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Joseph A. Curcio ,  Bruce E. LaVigne ,  Wei Lu

IPC: H04L12/26 ,  H04L12/833 ,  H04L29/06 ,  H04L12/851

Abstract: Example embodiments disclosed herein relate to implementing pre-filter rules at a network infrastructure device. In one example, the network infrastructure device receives a packet flow including a first pre-filter tag including information from implementation of a first subset of a set of pre-filter rules. In the example, the network infrastructure device includes logic to implement a second subset of the pre-filter rules. The second subset of pre-filter rules are different from the first subset of pre-filter rules. The second subset of pre-filter rules are implemented on the packet flow to yield a pre-filter result.