公开(公告)号：US20100138919A1

公开(公告)日：2010-06-03

申请号：US12513501

申请日：2007-11-02

申请人： Tao Peng ,  Christopher Andrew Leckie ,  Ramamohanarao Kotagiri

发明人： Tao Peng ,  Christopher Andrew Leckie ,  Ramamohanarao Kotagiri

IPC分类号： G06F21/00 ,  G06F15/173

CPC分类号： H04L63/1408 ,  H04L29/12009 ,  H04L61/00 ,  H04L63/1458 ,  H04L2463/146

摘要： A process for detecting anomalous network traffic in a communications network, the process including: generating reference address distribution data representing a statistical distribution of source addresses of packets received over a first time period, the received packets being considered to represent normal network traffic; generating second address distribution data representing a statistical distribution of source addresses of packets received over a second time period; and determining whether the packets received over the second time period represent normal network traffic on the basis of a comparison of the second address distribution data and the reference address distribution data.

摘要翻译： 一种用于检测通信网络中的异常网络业务的过程，所述过程包括：产生表示在第一时间段内接收的分组的源地址的统计分布的参考地址分布数据，所接收的分组被认为是表示正常网络业务; 生成表示在第二时间段内接收的分组的源地址的统计分布的第二地址分布数据; 并且基于所述第二地址分配数据与所述参考地址分布数据的比较来确定在所述第二时间段中接收到的分组是否表示正常网络业务。

公开(公告)号：US06307841B1

公开(公告)日：2001-10-23

申请号：US09029008

申请日：1998-05-15

申请人： Christopher David Rowles ,  Christopher Andrew Leckie ,  Michael Colin Flower ,  Catherine Rye Senjen

发明人： Christopher David Rowles ,  Christopher Andrew Leckie ,  Michael Colin Flower ,  Catherine Rye Senjen

IPC分类号： G08C1500

CPC分类号： H04L43/00 ,  H04L43/06 ,  H04L43/0811 ,  H04L43/0829 ,  H04L43/16

摘要： A network analysis system obtains parameter data generated by telecommunications network equipment, in which the parameter data represents operational parameters of the network. The network analysis system processes the parameter data to generate symptom data from test procedures that are applied to the parameter data. Fault data is generated that is representative of faults that may have occurred, on the basis of the symptom data and relationship data representative of the relationship between the symptom data and the faults. The relationship between a symptom and a fault represents likelihood of the symptom being caused by the fault. The system also generates occurrence data that is representative of faults that probably have occurred, on the basis of the fault data.

摘要翻译： 网络分析系统获取由电信网络设备生成的参数数据，其中参数数据表示网络的运行参数。 网络分析系统处理参数数据，以生成应用于参数数据的测试程序的症状数据。 根据症状数据和表示症状数据与故障之间关系的关系数据，生成代表可能发生的故障的故障数据。 症状与故障之间的关系表示症状是故障引起的可能性。 该系统还根据故障数据生成代表可能发生的故障的发生数据。