OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST

OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST

Some embodiments provide a novel method for collecting and analyzing attributes of data flows associated with machines executing on a plurality of host computers to detect anomalous behavior. In some embodiments, an anomalous behavior is detected for at least one particular flow associated with at l...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Lund, Rick, Tiagi, Alok S, Jain, Jayant, Lu, Russell, Gopal, Sushruth
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Lund, Rick
Tiagi, Alok S
Jain, Jayant
Lu, Russell
Gopal, Sushruth
description Some embodiments provide a novel method for collecting and analyzing attributes of data flows associated with machines executing on a plurality of host computers to detect anomalous behavior. In some embodiments, an anomalous behavior is detected for at least one particular flow associated with at least one machine executing on the host computer. In some embodiments, anomaly detection is based on the context data from the guest introspection agent and deep packet inspection. An identifier of the detected anomalous behavior is stored, in some embodiments. The stored attributes are provided, in some embodiments, to a server for further analysis.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US2021026720A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US2021026720A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US2021026720A13</originalsourceid><addsrcrecordid>eNrjZDDwd3Pz8Xd08fRzV3D08_d19IlUcHENcXUO8fT3U3AL8vdVCHYNCnMNUgjxV_DwDw7hYWBNS8wpTuWF0twMym6uIc4euqkF-fGpxQWJyal5qSXxocFGBkaGBkZm5kYGjobGxKkCAMhuJyw</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST</title><source>esp@cenet</source><creator>Lund, Rick ; Tiagi, Alok S ; Jain, Jayant ; Lu, Russell ; Gopal, Sushruth</creator><creatorcontrib>Lund, Rick ; Tiagi, Alok S ; Jain, Jayant ; Lu, Russell ; Gopal, Sushruth</creatorcontrib><description>Some embodiments provide a novel method for collecting and analyzing attributes of data flows associated with machines executing on a plurality of host computers to detect anomalous behavior. In some embodiments, an anomalous behavior is detected for at least one particular flow associated with at least one machine executing on the host computer. In some embodiments, anomaly detection is based on the context data from the guest introspection agent and deep packet inspection. An identifier of the detected anomalous behavior is stored, in some embodiments. The stored attributes are provided, in some embodiments, to a server for further analysis.</description><language>eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRIC DIGITAL DATA PROCESSING ; ELECTRICITY ; PHYSICS ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2021</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20210128&amp;DB=EPODOC&amp;CC=US&amp;NR=2021026720A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,309,781,886,25569,76552</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20210128&amp;DB=EPODOC&amp;CC=US&amp;NR=2021026720A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Lund, Rick</creatorcontrib><creatorcontrib>Tiagi, Alok S</creatorcontrib><creatorcontrib>Jain, Jayant</creatorcontrib><creatorcontrib>Lu, Russell</creatorcontrib><creatorcontrib>Gopal, Sushruth</creatorcontrib><title>OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST</title><description>Some embodiments provide a novel method for collecting and analyzing attributes of data flows associated with machines executing on a plurality of host computers to detect anomalous behavior. In some embodiments, an anomalous behavior is detected for at least one particular flow associated with at least one machine executing on the host computer. In some embodiments, anomaly detection is based on the context data from the guest introspection agent and deep packet inspection. An identifier of the detected anomalous behavior is stored, in some embodiments. The stored attributes are provided, in some embodiments, to a server for further analysis.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>ELECTRICITY</subject><subject>PHYSICS</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2021</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZDDwd3Pz8Xd08fRzV3D08_d19IlUcHENcXUO8fT3U3AL8vdVCHYNCnMNUgjxV_DwDw7hYWBNS8wpTuWF0twMym6uIc4euqkF-fGpxQWJyal5qSXxocFGBkaGBkZm5kYGjobGxKkCAMhuJyw</recordid><startdate>20210128</startdate><enddate>20210128</enddate><creator>Lund, Rick</creator><creator>Tiagi, Alok S</creator><creator>Jain, Jayant</creator><creator>Lu, Russell</creator><creator>Gopal, Sushruth</creator><scope>EVB</scope></search><sort><creationdate>20210128</creationdate><title>OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST</title><author>Lund, Rick ; Tiagi, Alok S ; Jain, Jayant ; Lu, Russell ; Gopal, Sushruth</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US2021026720A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2021</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>ELECTRICITY</topic><topic>PHYSICS</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>Lund, Rick</creatorcontrib><creatorcontrib>Tiagi, Alok S</creatorcontrib><creatorcontrib>Jain, Jayant</creatorcontrib><creatorcontrib>Lu, Russell</creatorcontrib><creatorcontrib>Gopal, Sushruth</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Lund, Rick</au><au>Tiagi, Alok S</au><au>Jain, Jayant</au><au>Lu, Russell</au><au>Gopal, Sushruth</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST</title><date>2021-01-28</date><risdate>2021</risdate><abstract>Some embodiments provide a novel method for collecting and analyzing attributes of data flows associated with machines executing on a plurality of host computers to detect anomalous behavior. In some embodiments, an anomalous behavior is detected for at least one particular flow associated with at least one machine executing on the host computer. In some embodiments, anomaly detection is based on the context data from the guest introspection agent and deep packet inspection. An identifier of the detected anomalous behavior is stored, in some embodiments. The stored attributes are provided, in some embodiments, to a server for further analysis.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US2021026720A1
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title OFFLOADING ANOMALY DETECTION FROM SERVER TO HOST
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-15T16%3A51%3A16IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Lund,%20Rick&rft.date=2021-01-28&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS2021026720A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true