首页>
外国专利>
CLUSTER-BASED DETERMINATION OF SIGNATURES FOR DETECTION OF ANOMALOUS DATA TRAFFIC
CLUSTER-BASED DETERMINATION OF SIGNATURES FOR DETECTION OF ANOMALOUS DATA TRAFFIC
展开▼
机译:基于聚类的异常数据流量检测信号确定
展开▼
页面导航
摘要
著录项
相似文献
摘要
Provided are methods and systems for cluster-based determination of signatures for detection of anomalous data traffic. An example method may include capturing, by a network module, data packets routed to a destination. The method may further include grouping, by at least one processor in communication with the network module, the data packets into clusters. The method may also include detecting, by the processor, an anomaly in the data packets and, in response to the detection, determining, by the processor and based on the clusters, one or more signatures associated with the data packets. The method may further include generating, by the processor and based on the signatures, one or more rules for allowing the data packets. The method may further include providing, by the processor, the one or more rules to a policy enforcement point associated with the destination.
展开▼