首页>
外国专利>
Traffic anomaly analysis for the detection of aberrant network code
Traffic anomaly analysis for the detection of aberrant network code
展开▼
机译:流量异常分析以检测异常网络代码
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method for detecting nodes in an enterprise network infected with aberrant code is presented in which traffic conversation information representative of traffic conversation in the enterprise network over an analysis period is obtained. Analysis of the obtained traffic conversation information identifies suspected infected nodes in the enterprise network that exhibit behavior outside of the normal behavior associated with the one or more traffic conversation factors. Anomaly analysis may be performed on traffic conversation information associated with the suspected infected nodes to identify any existing infected nodes in the enterprise network.
展开▼