发明名称 |
NETWORK INTRUSION DETECTION |
摘要 |
A system for identifying a network intrusion includes four modules. The first module monitors network transmissions and creates a model of regular network activity. The second module receives the model of regular network activity and sets a threshold for irregular usage based on the model. The third module receives the threshold, compares a value of a candidate inter-nodal transmission of the network to the threshold, and identifies a potential intrusion when the value exceeds the threshold. The fourth module analyzes a transmission behavior of one or more nodes of the candidate inter-nodal transmission and identifies the network intrusion. |
申请公布号 |
US2016255104(A1) |
申请公布日期 |
2016.09.01 |
申请号 |
US201415027234 |
申请日期 |
2014.10.02 |
申请人 |
CYBERFLOW ANALYTICS, INC. Analytics, Inc. |
发明人 |
ESLAMBOLCHI Hossein;GASPARINI Louie;MADHEKAR Chandra;WRIGHT William |
分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
San Diego CA US |