System and method for real-time network traffic analysis

System and method for real-time network traffic analysis

The invention discloses a system and method for real-time network traffic analysis. A system for detecting malicious traffic flow in a network is provided. The system includes a processor. Based on packet information received for a plurality of data packets transmitted over a network, the processor...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: NOBACHT ROBERT, SULLIVAN SHAWN C, SACKMAN RONALD WARD
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses a system and method for real-time network traffic analysis. A system for detecting malicious traffic flow in a network is provided. The system includes a processor. Based on packet information received for a plurality of data packets transmitted over a network, the processor is programmed to calculate an interval of arrival time and a packet duration of the plurality of data packets. The processor is also programmed to filter the packet information to remove noise. The processor is further programmed to generate at least one histogram based on the packet information, the interval of arrival time, and the packet duration. Further, the processor is programmed to generate a power spectral density estimate based on the packet information, the interval of arrival time, and the packet duration. Further, the processor is programmed to analyze the at least one histogram and the power spectral density estimate to detect one or more unexpected data streams. Further, the processor is programmed t