-
公开(公告)号:US20240356824A1
公开(公告)日:2024-10-24
申请号:US18683057
申请日:2022-06-30
发明人: Bradley RUTKOWSKI , Yu CHEN , Yehan WANG , Jinyang ZHOU , Boyang ZHENG , Zhenguo YANG , Todd Carlyle LUTTINEN , Jeffrey Kramer MEALIFFE , Yuchao DAI
IPC分类号: H04L43/026 , H04L43/091 , H04L47/24
CPC分类号: H04L43/026 , H04L43/091 , H04L47/24
摘要: A network traffic computing system obtains on-router traffic data, on-server traffic data and application log data. A data processing system extracts features from the data sources, splits the extracted features based upon destination and source ports and performs component-level aggregation of the features. The aggregated data is surfaced for monitoring and traffic control.
-
公开(公告)号:US12088487B2
公开(公告)日:2024-09-10
申请号:US18270417
申请日:2021-09-29
发明人: Xifa Sun , Yashuai Lei
IPC分类号: G06F15/173 , H04L43/026 , H04L43/0817 , H04L43/0888
CPC分类号: H04L43/0888 , H04L43/026 , H04L43/0817
摘要: A traffic monitoring method for an Open Stack tenant network, including: detecting a traffic in/out state of a first virtual machine by using a callback function; when it is detected that the virtual machine transmits first traffic to a second virtual machine in the same host, matching a first data flow corresponding to the first traffic by using target flow table entries in an integrated bridge, and transmitting a copied first data flow to a traffic monitoring platform; when it is detected that the first virtual machine transmits second traffic to a third virtual machine in a remote host, matching a second data flow corresponding to the second traffic by using the target flow table entries, and transmitting a copied second data flow to a physical bridge; and when the integrated bridge receives the third data flow, transmitting the third data flow to the traffic monitoring platform.
-
公开(公告)号:US12069505B2
公开(公告)日:2024-08-20
申请号:US17853558
申请日:2022-06-29
IPC分类号: H04W28/02 , H04L9/40 , H04L41/16 , H04L43/026 , H04L43/045 , H04L47/2441
CPC分类号: H04W28/0236 , H04L41/16 , H04L43/026 , H04L43/045 , H04L47/2441 , H04L63/1425
摘要: In one embodiment, a first networking device in a network coordinates, with a second networking device in the network, capture of packet maps for a traffic flow in the network associated with a particular application. The packet maps comprise multi-dimensional histograms indexed by identified properties of packets of the traffic flow and time. The first networking device inspects packets of the traffic flow, to identify properties of packets of the traffic flow. The first networking device generates a first packet map for the traffic flow based on the properties of the packets of the traffic flow identified by the first networking device. The first networking device causes a comparison between the first packet map and a second packet map generated by the second networking device to be used as a measure of application experience for the particular application.
-
公开(公告)号:US12068950B2
公开(公告)日:2024-08-20
申请号:US17819708
申请日:2022-08-15
发明人: Daphne Sang , Harish Patil
IPC分类号: H04L45/00 , H04L41/0894 , H04L43/026 , H04L45/745 , H04L47/10 , H04L47/20 , H04L47/2483
CPC分类号: H04L45/38 , H04L41/0894 , H04L43/026 , H04L45/745 , H04L47/10 , H04L47/20 , H04L47/2483
摘要: In a network control plane, a pattern matching database is built and maintained for identifying an application or application level protocol. In addition, pattern matching databases for predicting a subsequent flow for application layer/level protocols or data protocols are built and maintained. After flow differentiation in network traffic mirrored from a data plane, the network traffic flow is scanned in a first stage and then in a second stage if a signaling protocol message is detected in the first stage scan. For the second stage, one of the application/data protocol pattern databases is selected for scanning based on the signaling protocol message detected in the first stage scanning. If a match is found from the stage 2 scanning, a mapping between the signaling protocol identifier and an identifier for a predicted application traffic flow is created and communicated to the data plane for policy selection and enforcement.
-
公开(公告)号:US20240267307A1
公开(公告)日:2024-08-08
申请号:US18165860
申请日:2023-02-07
申请人: MICRO FOCUS LLC
IPC分类号: H04L43/026 , G06V20/40 , H04L43/028 , H04L65/61
CPC分类号: H04L43/026 , G06V20/41 , G06V20/47 , H04L43/028 , H04L65/61
摘要: A plurality of captured packets are received. The plurality of captured packets are from a plurality of packet flows. A packet flow is a communication session between two devices. For example, a packet flow may be a communication session between a client and a server. The plurality of captured packets are sorted into individual packet flows. The individual packet flows are converted into individual videos. For example, each packet from each packet flow is stored as a separate video frame in an individual video. A machine learning algorithm is applied to the individual videos to perform analytic tasks on the individual videos. For example, the machine learning algorithm may be used to identify anomalies within a packet flow and/or between packet flows.
-
公开(公告)号:US12040990B2
公开(公告)日:2024-07-16
申请号:US16951440
申请日:2020-11-18
发明人: Alexander Clemm , Uma S. Chunduri
IPC分类号: H04L47/41 , G06F9/50 , H04L43/026 , H04L47/20 , H04L69/22
CPC分类号: H04L47/41 , G06F9/5016 , H04L43/026 , H04L47/20 , H04L69/22
摘要: A mechanism is disclosed for performing implementing an operational flow profile. An initial packet is received that is associated with a flow. The initial packet contains a header including conditional commands related to an operational flow profile. The conditional commands are executed to initialize a state of an operational flow profile by allocating memory to store results of an aggregation function applied to the flow. A subsequent packet associated with the flow is received. The aggregation function is applied to the subsequent packet. Results of the aggregation function are stored to update the state of the operational flow profile.
-
公开(公告)号:US20240236007A9
公开(公告)日:2024-07-11
申请号:US17768837
申请日:2020-04-10
发明人: Won Ki HONG , Jae Hyoung YOO , Ji Bum HONG
IPC分类号: H04L47/2441 , G06N20/20 , H04L41/16 , H04L43/026
CPC分类号: H04L47/2441 , G06N20/20 , H04L41/16 , H04L43/026
摘要: A traffic categorization method and device are disclosed. A traffic categorization method according to one embodiment of the present invention may comprise the steps of: receiving flow data comprising information about a flow; scaling for the flow data; generating input data by removing, on the basis of a correlation, overlapping data from the scaled flow data; and categorizing a network traffic on the basis of the input data.
-
公开(公告)号:US20240235966A9
公开(公告)日:2024-07-11
申请号:US17971273
申请日:2022-10-21
IPC分类号: H04L43/026 , H04L43/062 , H04L61/4511
CPC分类号: H04L43/026 , H04L43/062 , H04L61/4511
摘要: In one embodiment, a device obtains telemetry data regarding Domain Name System (DNS) traffic in a network. The device associates, based on the telemetry data, the DNS traffic with a particular online application. The device identifies a traffic pattern of the DNS traffic associated with the particular online application. The device makes, based on the traffic pattern, a determination that an application experience of one or more users of the particular online application is degraded.
-
公开(公告)号:US20240205303A1
公开(公告)日:2024-06-20
申请号:US18594998
申请日:2024-03-04
申请人: People.ai, Inc.
IPC分类号: H04L67/50 , G06F7/14 , G06F11/30 , G06F11/34 , G06F16/11 , G06F16/17 , G06F16/178 , G06F16/182 , G06F16/21 , G06F16/215 , G06F16/22 , G06F16/23 , G06F16/245 , G06F16/2455 , G06F16/2457 , G06F16/2458 , G06F16/25 , G06F16/26 , G06F16/27 , G06F16/28 , G06F16/29 , G06F16/31 , G06F16/335 , G06F16/35 , G06F16/901 , G06F16/903 , G06F16/9035 , G06F16/906 , G06F16/9535 , G06F21/62 , G06F40/20 , G06F40/205 , G06F40/237 , G06F40/295 , G06N3/08 , G06N5/025 , G06N5/04 , G06N7/02 , G06N20/00 , G06Q10/04 , G06Q10/0631 , G06Q10/0639 , G06Q10/10 , G06Q10/107 , G06Q10/109 , G06Q10/1091 , G06Q10/1093 , G06Q50/22 , G16H15/00 , G16H50/20 , G16H50/30 , H04L12/14 , H04L41/14 , H04L43/00 , H04L43/026 , H04L43/045 , H04L43/062 , H04L43/065 , H04L43/067 , H04L43/0876 , H04L51/046 , H04L51/212 , H04L51/234 , H04L51/42 , H04L61/45 , H04L67/125 , H04L67/30 , H04L67/303 , H04L67/306 , H04L101/37 , H04M3/22 , H04M3/436 , H04M3/56 , H04M15/00
CPC分类号: H04L67/535 , G06F7/14 , G06F11/3024 , G06F11/3452 , G06F11/3495 , G06F16/122 , G06F16/1734 , G06F16/178 , G06F16/182 , G06F16/212 , G06F16/215 , G06F16/219 , G06F16/22 , G06F16/221 , G06F16/2228 , G06F16/2264 , G06F16/2272 , G06F16/23 , G06F16/235 , G06F16/2365 , G06F16/2379 , G06F16/2386 , G06F16/245 , G06F16/24558 , G06F16/24564 , G06F16/2457 , G06F16/24575 , G06F16/24578 , G06F16/2477 , G06F16/254 , G06F16/256 , G06F16/26 , G06F16/27 , G06F16/273 , G06F16/28 , G06F16/285 , G06F16/288 , G06F16/289 , G06F16/29 , G06F16/313 , G06F16/337 , G06F16/355 , G06F16/901 , G06F16/9024 , G06F16/90344 , G06F16/9035 , G06F16/906 , G06F16/9535 , G06F21/6218 , G06F21/6245 , G06F40/20 , G06F40/237 , G06F40/295 , G06N3/08 , G06N5/025 , G06N5/04 , G06N7/02 , G06Q10/04 , G06Q10/063114 , G06Q10/06312 , G06Q10/06315 , G06Q10/06393 , G06Q10/06398 , G06Q10/107 , G06Q10/109 , G06Q10/1091 , G06Q10/1095 , G06Q50/22 , G16H50/20 , H04L41/14 , H04L43/026 , H04L43/045 , H04L43/062 , H04L43/065 , H04L43/067 , H04L43/0876 , H04L43/14 , H04L51/046 , H04L51/212 , H04L51/234 , H04L51/42 , H04L61/45 , H04L67/125 , H04L67/30 , H04L67/303 , H04L67/306 , H04M3/436 , H04M15/755 , G06F40/205 , G06N20/00 , G06Q10/10 , G16H15/00 , G16H50/30 , H04L12/1407 , H04L2101/37 , H04M3/2218 , H04M3/56
摘要: The present disclosure relates to generating a filtered data set. Data from a plurality of systems of record of a plurality of data source providers may be accessed. A master data set generated using the data accessed from the plurality of systems of record may be maintained. Restriction policies including one or more rules for restricting sharing of data may be maintained. A filtered data set may be generated for a data source provider responsive to an application of restriction policies of other data source providers to the master data set. The filtered data set may be provisioned.
-
公开(公告)号:US20240205118A1
公开(公告)日:2024-06-20
申请号:US18593403
申请日:2024-03-01
发明人: Sunil Kumar Gupta , Navindra Yadav , Michael Standish Watts , Ali Parandehgheibi , Shashidhar Gandham , Ashutosh Kulshreshtha , Khawar Deen
IPC分类号: H04L43/045 , G06F3/0482 , G06F3/04842 , G06F3/04847 , G06F9/455 , G06F16/11 , G06F16/13 , G06F16/16 , G06F16/17 , G06F16/174 , G06F16/23 , G06F16/2457 , G06F16/248 , G06F16/28 , G06F16/29 , G06F16/9535 , G06F21/53 , G06F21/55 , G06F21/56 , G06N20/00 , G06N99/00 , G06T11/20 , H04J3/06 , H04J3/14 , H04L1/24 , H04L7/10 , H04L9/08 , H04L9/32 , H04L9/40 , H04L41/046 , H04L41/0668 , H04L41/0803 , H04L41/0806 , H04L41/0816 , H04L41/0893 , H04L41/12 , H04L41/16 , H04L41/22 , H04L43/02 , H04L43/026 , H04L43/04 , H04L43/062 , H04L43/08 , H04L43/0805 , H04L43/0811 , H04L43/0829 , H04L43/0852 , H04L43/0864 , H04L43/0876 , H04L43/0882 , H04L43/0888 , H04L43/10 , H04L43/106 , H04L43/12 , H04L43/16 , H04L45/00 , H04L45/302 , H04L45/50 , H04L45/74 , H04L47/11 , H04L47/20 , H04L47/2441 , H04L47/2483 , H04L47/28 , H04L47/31 , H04L47/32 , H04L61/5007 , H04L67/01 , H04L67/10 , H04L67/1001 , H04L67/12 , H04L67/50 , H04L67/51 , H04L67/75 , H04L69/16 , H04L69/22 , H04W72/54 , H04W84/18
CPC分类号: H04L43/045 , G06F3/0482 , G06F3/04842 , G06F3/04847 , G06F9/45558 , G06F16/122 , G06F16/137 , G06F16/162 , G06F16/17 , G06F16/173 , G06F16/174 , G06F16/1744 , G06F16/1748 , G06F16/2322 , G06F16/235 , G06F16/2365 , G06F16/24578 , G06F16/248 , G06F16/285 , G06F16/288 , G06F16/29 , G06F16/9535 , G06F21/53 , G06F21/552 , G06F21/556 , G06F21/566 , G06N20/00 , G06N99/00 , G06T11/206 , H04J3/0661 , H04J3/14 , H04L1/242 , H04L7/10 , H04L9/0866 , H04L9/3239 , H04L9/3242 , H04L41/046 , H04L41/0668 , H04L41/0803 , H04L41/0806 , H04L41/0816 , H04L41/0893 , H04L41/12 , H04L41/16 , H04L41/22 , H04L43/02 , H04L43/026 , H04L43/04 , H04L43/062 , H04L43/08 , H04L43/0805 , H04L43/0811 , H04L43/0829 , H04L43/0841 , H04L43/0858 , H04L43/0864 , H04L43/0876 , H04L43/0882 , H04L43/0888 , H04L43/10 , H04L43/106 , H04L43/12 , H04L43/16 , H04L45/306 , H04L45/38 , H04L45/46 , H04L45/507 , H04L45/66 , H04L45/74 , H04L47/11 , H04L47/20 , H04L47/2441 , H04L47/2483 , H04L47/28 , H04L47/31 , H04L47/32 , H04L61/5007 , H04L63/0227 , H04L63/0263 , H04L63/06 , H04L63/0876 , H04L63/1408 , H04L63/1416 , H04L63/1425 , H04L63/1433 , H04L63/1441 , H04L63/145 , H04L63/1458 , H04L63/1466 , H04L63/16 , H04L63/20 , H04L67/01 , H04L67/10 , H04L67/1001 , H04L67/12 , H04L67/51 , H04L67/75 , H04L69/16 , H04L69/22 , H04W72/54 , H04W84/18 , G06F2009/4557 , G06F2009/45587 , G06F2009/45591 , G06F2009/45595 , G06F2221/033 , G06F2221/2101 , G06F2221/2105 , G06F2221/2111 , G06F2221/2115 , G06F2221/2145 , H04L67/535
摘要: A method provides for receiving network traffic from a host having a host IP address and operating in a data center, and analyzing a malware tracker for IP addresses of hosts having been infected by a malware to yield an analysis. When the analysis indicates that the host IP address has been used to communicate with an external host infected by the malware to yield an indication, the method includes assigning a reputation score, based on the indication, to the host. The method can further include applying a conditional policy associated with using the host based on the reputation score. The reputation score can include a reduced reputation score from a previous reputation score for the host.
-
-
-
-
-
-
-
-
-
搜索结果
394 条记录 (耗时 0.022 秒)
