ADAPTIVE NETWORK SECURITY POLICIES
    2.
    发明申请
    ADAPTIVE NETWORK SECURITY POLICIES 审中-公开
    自适应网络安全政策

    公开(公告)号:US20160205143A1

    公开(公告)日:2016-07-14

    申请号:US14912665

    申请日:2013-08-19

    Abstract: A method and system for dynamic identification of network security policies are provided. The method comprises inspecting network traffic using a number of network inspection technologies; executing a first network security system to implement a first number of security policies to respond to a first number of threats identified by the number of network inspection technologies; executing a second network security system to implement a second number of security policies to respond to a second number of threats identified by the number of network inspection technologies; obtaining security intelligence from the first and second network security system; and adaptively reassessing the first and second number of security policies based on the security intelligence.

    Abstract translation: 提供了一种动态识别网络安全策略的方法和系统。 该方法包括使用多种网络检测技术检测网络流量; 执行第一网络安全系统以实施第一数量的安全策略以响应由网络检查技术的数量识别的第一数量的威胁; 执行第二网络安全系统以实施第二数量的安全策略以响应由网络检查技术的数量识别的第二数量的威胁; 从第一和第二网络安全系统获取安全智能; 并基于安全智能自适应地重新评估第一和第二数量的安全策略。

    NETWORK FLOW CLASSIFICATION
    3.
    发明申请
    NETWORK FLOW CLASSIFICATION 审中-公开
    网络流程分类

    公开(公告)号:US20170053214A1

    公开(公告)日:2017-02-23

    申请号:US15307619

    申请日:2014-04-28

    Abstract: Network flow classification can include clustering a network flow database into a number of at least one of applications and network flows. Network flow classification can include classifying the number of the at least one of applications and network flows.

    Abstract translation: 网络流分类可以包括将网络流数据库聚类成多个应用和网络流中的至少一个。 网络流分类可以包括对应用和网络流中的至少一个的数量进行分类。

    Data packet stream fingerprint
    6.
    发明授权

    公开(公告)号:US09674052B2

    公开(公告)日:2017-06-06

    申请号:US13623335

    申请日:2012-09-20

    CPC classification number: H04L43/028

    Abstract: Techniques for identifying stream fingerprints are provided. A stream of data packets may be received. In one aspect, a stream fingerprint may be determined based on the stream of data packets. An application associated with the stream may be determined based on the stream fingerprint. In another aspect, a stream may be partially matched while a fully matched stream fingerprint has not been determined. As additional packets are received, the stream may become fully matched.

    NETWORK INFRASTRUCTURE DEVICE TO IMPLEMENT PRE-FILTER RULES

    公开(公告)号:US20180115471A1

    公开(公告)日:2018-04-26

    申请号:US15565810

    申请日:2015-04-23

    Abstract: Example embodiments disclosed herein relate to implementing pre-filter rules at a network infrastructure device. In one example, the network infrastructure device receives a packet flow including a first pre-filter tag including information from implementation of a first subset of a set of pre-filter rules. In the example, the network infrastructure device includes logic to implement a second subset of the pre-filter rules. The second subset of pre-filter rules are different from the first subset of pre-filter rules. The second subset of pre-filter rules are implemented on the packet flow to yield a pre-filter result.

Patent Agency Ranking