AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH

AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH

Techniques and mechanisms for using passively collected network data to automatically generate a fingerprint prevalence database without the need for endpoint ground truth. The process first clusters all observations with the same fingerprint string and similar source and destination context. The pr...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Anderson, Blake Harrell, McGrew, David Arthur
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
HANDLING RECORD CARRIERS
PHYSICS
PRESENTATION OF DATA
RECOGNITION OF DATA
RECORD CARRIERS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Anderson, Blake Harrell
McGrew, David Arthur
description Techniques and mechanisms for using passively collected network data to automatically generate a fingerprint prevalence database without the need for endpoint ground truth. The process first clusters all observations with the same fingerprint string and similar source and destination context. The process then annotates each cluster with descriptive information and uses a rule-based system to derive an informative name from that descriptive information, e.g., "winnt amp client" or "cross-platform browser". Optionally, the learned database may be augmented by a user to clarify custom process labels. Additionally, the generated database may be used to report the inferred processes in the same way as databases generated with endpoint ground truth.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US2022360606A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US2022360606A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US2022360606A13</originalsourceid><addsrcrecordid>eNqNirEKwjAUALM4iPoPD5yFmoL7M31NAjEp6UvFqRSJk2ih_j9m8APkhuPg1iJg4nBBtgqdu4EmT7GU14DQFlHsovUMXaQBHXlF0CDjGXuCq2UTEoOOIfkGOCY2W7F6TM8l737eiH1LrMwhz-8xL_N0z6_8GVMvKynrU1XAY_3f9QU23TAa</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH</title><source>esp@cenet</source><creator>Anderson, Blake Harrell ; McGrew, David Arthur</creator><creatorcontrib>Anderson, Blake Harrell ; McGrew, David Arthur</creatorcontrib><description>Techniques and mechanisms for using passively collected network data to automatically generate a fingerprint prevalence database without the need for endpoint ground truth. The process first clusters all observations with the same fingerprint string and similar source and destination context. The process then annotates each cluster with descriptive information and uses a rule-based system to derive an informative name from that descriptive information, e.g., "winnt amp client" or "cross-platform browser". Optionally, the learned database may be augmented by a user to clarify custom process labels. Additionally, the generated database may be used to report the inferred processes in the same way as databases generated with endpoint ground truth.</description><language>eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; HANDLING RECORD CARRIERS ; PHYSICS ; PRESENTATION OF DATA ; RECOGNITION OF DATA ; RECORD CARRIERS</subject><creationdate>2022</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20221110&amp;DB=EPODOC&amp;CC=US&amp;NR=2022360606A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,776,881,25543,76293</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20221110&amp;DB=EPODOC&amp;CC=US&amp;NR=2022360606A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Anderson, Blake Harrell</creatorcontrib><creatorcontrib>McGrew, David Arthur</creatorcontrib><title>AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH</title><description>Techniques and mechanisms for using passively collected network data to automatically generate a fingerprint prevalence database without the need for endpoint ground truth. The process first clusters all observations with the same fingerprint string and similar source and destination context. The process then annotates each cluster with descriptive information and uses a rule-based system to derive an informative name from that descriptive information, e.g., "winnt amp client" or "cross-platform browser". Optionally, the learned database may be augmented by a user to clarify custom process labels. Additionally, the generated database may be used to report the inferred processes in the same way as databases generated with endpoint ground truth.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>HANDLING RECORD CARRIERS</subject><subject>PHYSICS</subject><subject>PRESENTATION OF DATA</subject><subject>RECOGNITION OF DATA</subject><subject>RECORD CARRIERS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2022</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNirEKwjAUALM4iPoPD5yFmoL7M31NAjEp6UvFqRSJk2ih_j9m8APkhuPg1iJg4nBBtgqdu4EmT7GU14DQFlHsovUMXaQBHXlF0CDjGXuCq2UTEoOOIfkGOCY2W7F6TM8l737eiH1LrMwhz-8xL_N0z6_8GVMvKynrU1XAY_3f9QU23TAa</recordid><startdate>20221110</startdate><enddate>20221110</enddate><creator>Anderson, Blake Harrell</creator><creator>McGrew, David Arthur</creator><scope>EVB</scope></search><sort><creationdate>20221110</creationdate><title>AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH</title><author>Anderson, Blake Harrell ; McGrew, David Arthur</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US2022360606A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2022</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>HANDLING RECORD CARRIERS</topic><topic>PHYSICS</topic><topic>PRESENTATION OF DATA</topic><topic>RECOGNITION OF DATA</topic><topic>RECORD CARRIERS</topic><toplevel>online_resources</toplevel><creatorcontrib>Anderson, Blake Harrell</creatorcontrib><creatorcontrib>McGrew, David Arthur</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Anderson, Blake Harrell</au><au>McGrew, David Arthur</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH</title><date>2022-11-10</date><risdate>2022</risdate><abstract>Techniques and mechanisms for using passively collected network data to automatically generate a fingerprint prevalence database without the need for endpoint ground truth. The process first clusters all observations with the same fingerprint string and similar source and destination context. The process then annotates each cluster with descriptive information and uses a rule-based system to derive an informative name from that descriptive information, e.g., "winnt amp client" or "cross-platform browser". Optionally, the learned database may be augmented by a user to clarify custom process labels. Additionally, the generated database may be used to report the inferred processes in the same way as databases generated with endpoint ground truth.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US2022360606A1
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
HANDLING RECORD CARRIERS
PHYSICS
PRESENTATION OF DATA
RECOGNITION OF DATA
RECORD CARRIERS
title AUTOMATICALLY GENERATING A FINGERPRINT PREVALENCE DATABASE WITHOUT GROUND TRUTH
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-23T13%3A21%3A44IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Anderson,%20Blake%20Harrell&rft.date=2022-11-10&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS2022360606A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true