公开(公告)号：US10986067B2

公开(公告)日：2021-04-20

申请号：US16323829

申请日：2017-07-03

Applicant: Nokia Solutions and Networks Oy

Inventor： Mehrnoosh Monshizadeh ,  Vikramajeet Khatri ,  Kimmo Kalervo Hatonen ,  Aapo Kalliola

IPC: H04L29/06 ,  H04W12/121 ,  H04W12/122 ,  H04W28/10

Abstract: A network apparatus of a communication system classifies traffic flows containing packets based on packet features. The network apparatus provides a copy of a packet contained in a traffic flow to a cluster node, and controls the cluster node to select at least one detector node based on the features of the packet and to forward said copy to the selected detector node to find out based on said copy whether the packet is malicious or not. In response to receiving from the detector node a flow indication on the traffic flow, the network apparatus controls a switch node to perform at least one flow control action on the traffic flow, the action including one or more of flow removal, flow modification and flow installation.