发明名称 |
NETWORK INTRUSION DETECTION |
摘要 |
A system for identifying a network intrusion includes four modules. The first module monitors network transmissions and creates a model of regular network activity. The second module receives the model of regular network activity and sets a threshold for irregular usage based on the model. The third module receives the threshold, compares a value of a candidate inter-nodal transmission of the network to the threshold, and identifies a potential intrusion when the value exceeds the threshold. The fourth module analyzes a transmission behavior of one or more nodes of the candidate inter-nodal transmission and identifies the network intrusion. |
申请公布号 |
EP3053046(A4) |
申请公布日期 |
2017.03.08 |
申请号 |
EP20140850450 |
申请日期 |
2014.10.02 |
申请人 |
Cyberflow Analytics, Inc. |
发明人 |
ESLAMBOLCHI, Hossein;GASPARINI, Louie;MADHEKAR, Chandra;WRIGHT, William |
分类号 |
G06F12/14;G06F21/55;H04L29/06 |
主分类号 |
G06F12/14 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|