SYSTEMS, METHODS, AND APPARATUS FOR NETWORK INTRUSION DETECTION BASED ON MONITORING NETWORK TRAFFIC

摘要

Systems (200), methods (500), and apparatus for network intrusion detection are provided. A device may include at least one memory (252) and at least one processor (250). The at least one memory (252) may be configured to store computer-executable instructions that facilitate traffic inspection of communications received by the device (205). The at least one processor (250) may be configured to access the at least one memory (252) and execute the computer-executable instructions to (i) identify (520) one or more network traffic parameters associated with a network traffic profile for the device (205); (ii) evaluate ((525), based at least in part upon the one or more network traffic parameters, at least one communication received by the device (205); and (iii) determine (530), based at least in part upon the evaluation, whether the at least one communication satisfies the traffic profile.