METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC

METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC

The present invention relates to a method and an apparatus for detecting anomalies of a DNS traffic in a network comprising analysing, through a network analyser connected to said network, each data packets exchanged in the network, isolating, through the network analyser, from each of the analysed...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: CARCANO, ANDREA, DI PINTO, ALESSANDRO, MARCHESE, MARIO, GAGGERO, GIOVANNI BATTISTA, FAUSTO, ALESSANDRO, PATRONE, FABIO, CARULLO, MORENO
Format: Patent
Sprache:eng ; pol
Schlagworte:
CALCULATING
COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator CARCANO, ANDREA
DI PINTO, ALESSANDRO
MARCHESE, MARIO
GAGGERO, GIOVANNI BATTISTA
FAUSTO, ALESSANDRO
PATRONE, FABIO
CARULLO, MORENO
description The present invention relates to a method and an apparatus for detecting anomalies of a DNS traffic in a network comprising analysing, through a network analyser connected to said network, each data packets exchanged in the network, isolating, through the network analyser, from each of the analysed data packets the related DNS packet, evaluating, through a computerized data processing unit, each of the DNS packets generating a DNS packet status, signaling, through the computerized data processing unit, an anomaly of the DNS traffic when the DNS packet status defines a critical state, wherein the evaluating further comprises assessing, through the computerized data processing unit, each of the DNS packet by a plurality of evaluating algorithms generating a DNS packet classification for each of the evaluating algorithms, aggregating, through the computerized data processing unit, the DNS packet classifications generating the DNS packet status, and wherein the critical state is identified when the DNS packet status is comprised in a critical state database stored in a storage medium.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_PL4020887TT3</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>PL4020887TT3</sourcerecordid><originalsourceid>FETCH-epo_espacenet_PL4020887TT33</originalsourceid><addsrcrecordid>eNrjZLD1dQ3x8HdRcPQD4oAAxyDHkNBgBTf_IAUX1xBX5xBPP3egnL-vo4-na7CCv5uCo4KLX7BCSJCjm5unMw8Da1piTnEqL5TmZlB0cw1x9tBNLciPTy0uSExOzUstiQ_wMTEwMrCwMA8JMTYmRg0ABsgp3g</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC</title><source>esp@cenet</source><creator>CARCANO, ANDREA ; DI PINTO, ALESSANDRO ; MARCHESE, MARIO ; GAGGERO, GIOVANNI BATTISTA ; FAUSTO, ALESSANDRO ; PATRONE, FABIO ; CARULLO, MORENO</creator><creatorcontrib>CARCANO, ANDREA ; DI PINTO, ALESSANDRO ; MARCHESE, MARIO ; GAGGERO, GIOVANNI BATTISTA ; FAUSTO, ALESSANDRO ; PATRONE, FABIO ; CARULLO, MORENO</creatorcontrib><description>The present invention relates to a method and an apparatus for detecting anomalies of a DNS traffic in a network comprising analysing, through a network analyser connected to said network, each data packets exchanged in the network, isolating, through the network analyser, from each of the analysed data packets the related DNS packet, evaluating, through a computerized data processing unit, each of the DNS packets generating a DNS packet status, signaling, through the computerized data processing unit, an anomaly of the DNS traffic when the DNS packet status defines a critical state, wherein the evaluating further comprises assessing, through the computerized data processing unit, each of the DNS packet by a plurality of evaluating algorithms generating a DNS packet classification for each of the evaluating algorithms, aggregating, through the computerized data processing unit, the DNS packet classifications generating the DNS packet status, and wherein the critical state is identified when the DNS packet status is comprised in a critical state database stored in a storage medium.</description><language>eng ; pol</language><subject>CALCULATING ; COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS ; COMPUTING ; COUNTING ; ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; PHYSICS ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2024</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20241112&amp;DB=EPODOC&amp;CC=PL&amp;NR=4020887T3$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,776,881,25543,76293</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20241112&amp;DB=EPODOC&amp;CC=PL&amp;NR=4020887T3$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>CARCANO, ANDREA</creatorcontrib><creatorcontrib>DI PINTO, ALESSANDRO</creatorcontrib><creatorcontrib>MARCHESE, MARIO</creatorcontrib><creatorcontrib>GAGGERO, GIOVANNI BATTISTA</creatorcontrib><creatorcontrib>FAUSTO, ALESSANDRO</creatorcontrib><creatorcontrib>PATRONE, FABIO</creatorcontrib><creatorcontrib>CARULLO, MORENO</creatorcontrib><title>METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC</title><description>The present invention relates to a method and an apparatus for detecting anomalies of a DNS traffic in a network comprising analysing, through a network analyser connected to said network, each data packets exchanged in the network, isolating, through the network analyser, from each of the analysed data packets the related DNS packet, evaluating, through a computerized data processing unit, each of the DNS packets generating a DNS packet status, signaling, through the computerized data processing unit, an anomaly of the DNS traffic when the DNS packet status defines a critical state, wherein the evaluating further comprises assessing, through the computerized data processing unit, each of the DNS packet by a plurality of evaluating algorithms generating a DNS packet classification for each of the evaluating algorithms, aggregating, through the computerized data processing unit, the DNS packet classifications generating the DNS packet status, and wherein the critical state is identified when the DNS packet status is comprised in a critical state database stored in a storage medium.</description><subject>CALCULATING</subject><subject>COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>PHYSICS</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2024</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZLD1dQ3x8HdRcPQD4oAAxyDHkNBgBTf_IAUX1xBX5xBPP3egnL-vo4-na7CCv5uCo4KLX7BCSJCjm5unMw8Da1piTnEqL5TmZlB0cw1x9tBNLciPTy0uSExOzUstiQ_wMTEwMrCwMA8JMTYmRg0ABsgp3g</recordid><startdate>20241112</startdate><enddate>20241112</enddate><creator>CARCANO, ANDREA</creator><creator>DI PINTO, ALESSANDRO</creator><creator>MARCHESE, MARIO</creator><creator>GAGGERO, GIOVANNI BATTISTA</creator><creator>FAUSTO, ALESSANDRO</creator><creator>PATRONE, FABIO</creator><creator>CARULLO, MORENO</creator><scope>EVB</scope></search><sort><creationdate>20241112</creationdate><title>METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC</title><author>CARCANO, ANDREA ; DI PINTO, ALESSANDRO ; MARCHESE, MARIO ; GAGGERO, GIOVANNI BATTISTA ; FAUSTO, ALESSANDRO ; PATRONE, FABIO ; CARULLO, MORENO</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_PL4020887TT33</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng ; pol</language><creationdate>2024</creationdate><topic>CALCULATING</topic><topic>COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>PHYSICS</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>CARCANO, ANDREA</creatorcontrib><creatorcontrib>DI PINTO, ALESSANDRO</creatorcontrib><creatorcontrib>MARCHESE, MARIO</creatorcontrib><creatorcontrib>GAGGERO, GIOVANNI BATTISTA</creatorcontrib><creatorcontrib>FAUSTO, ALESSANDRO</creatorcontrib><creatorcontrib>PATRONE, FABIO</creatorcontrib><creatorcontrib>CARULLO, MORENO</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>CARCANO, ANDREA</au><au>DI PINTO, ALESSANDRO</au><au>MARCHESE, MARIO</au><au>GAGGERO, GIOVANNI BATTISTA</au><au>FAUSTO, ALESSANDRO</au><au>PATRONE, FABIO</au><au>CARULLO, MORENO</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC</title><date>2024-11-12</date><risdate>2024</risdate><abstract>The present invention relates to a method and an apparatus for detecting anomalies of a DNS traffic in a network comprising analysing, through a network analyser connected to said network, each data packets exchanged in the network, isolating, through the network analyser, from each of the analysed data packets the related DNS packet, evaluating, through a computerized data processing unit, each of the DNS packets generating a DNS packet status, signaling, through the computerized data processing unit, an anomaly of the DNS traffic when the DNS packet status defines a critical state, wherein the evaluating further comprises assessing, through the computerized data processing unit, each of the DNS packet by a plurality of evaluating algorithms generating a DNS packet classification for each of the evaluating algorithms, aggregating, through the computerized data processing unit, the DNS packet classifications generating the DNS packet status, and wherein the critical state is identified when the DNS packet status is comprised in a critical state database stored in a storage medium.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng ; pol
recordid cdi_epo_espacenet_PL4020887TT3
source esp@cenet
subjects CALCULATING
COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title METHOD AND APPARATUS FOR DETECTING ANOMALIES OF A DNS TRAFFIC
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-26T19%3A29%3A51IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=CARCANO,%20ANDREA&rft.date=2024-11-12&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EPL4020887TT3%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true