Anomaly detection systems for a computer network

Multiplex communications – Diagnostic testing – Fault detection

Reexamination Certificate

Rate now

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

C370S241000

Reexamination Certificate

active

07808916

ABSTRACT:
Methodologies and systems for detecting an anomaly in a flow of data or data stream are described herein. To detect an anomaly, an anomaly detection server may create a baseline based on historical or other known non-anomalous data within the data stream. The anomaly detection server then generates one or more test values based on current data in the data stream, and compares the test value(s) to the baseline to determine whether they vary by more than a predetermined amount. If the deviation exceeds the predetermined amount, an alarm is triggered. The anomaly detection server may continually adjust the baseline based on the current data in the data stream, and may renormalize the baseline periodically if desired or necessary.

REFERENCES:
patent: 5150318 (1992-09-01), Kontani et al.
patent: 5195049 (1993-03-01), Kontani et al.
patent: 5331642 (1994-07-01), Valley et al.
patent: 5359649 (1994-10-01), Rosu et al.
patent: 6038388 (2000-03-01), Hogden et al.
patent: 6091846 (2000-07-01), Lin et al.
patent: 6267013 (2001-07-01), Stark et al.
patent: 6439062 (2002-08-01), Stark et al.
patent: 6483938 (2002-11-01), Hennessey et al.
patent: 6735703 (2004-05-01), Kilpatrick et al.
patent: 6742124 (2004-05-01), Kilpatrick et al.
patent: 6889218 (2005-05-01), Nassehi
patent: 7072305 (2006-07-01), Gregson
patent: 2002/0194119 (2002-12-01), Wright et al.
patent: 2002/0198759 (2002-12-01), Gilday et al.
patent: 2003/0086422 (2003-05-01), Klinker et al.
patent: 2004/0215976 (2004-10-01), Jain
patent: 2005/0169185 (2005-08-01), Qiu et al.
patent: 2005/0169186 (2005-08-01), Qiu et al.
patent: 2005/0209823 (2005-09-01), Nguyen et al.
patent: 2006/0176824 (2006-08-01), Laver et al.
patent: 2007/0140128 (2007-06-01), Klinker et al.
patent: 2007/0150949 (2007-06-01), Futamura et al.
patent: 2007/0268182 (2007-11-01), Bourdelais et al.
patent: 2008/0249742 (2008-10-01), Scott et al.
Debin Gao, et al., “On Gray-Box Program Tracking for Anomaly Detection,” 16 pages.
Sarah Sorenson, “Competitive Overview of Statistical Anomaly Detection,” Juniper Networks, Inc., 2004, pp. 1-7.
Lubomir Nistor, “Rules definition for anomaly based intrusion detection,” v1.1, 2002-2003, pp. 1-9.
Matthew V. Mahoney, et al., “PHAD: Packet Header Anomaly Detection for Identifying Hostile Network Traffic,” Florida Institute of Technology Technical Report CS-2001-04, pp. 1-17.
“What is anomaly detection?,” printed from http://www.imperva.com/application—defense—center/glossary/anomaly, printed on Oct. 27, 2005, 1 page.
“Anomaly detection with cfenvd and cfenvgraph,” printed from http://www.cfengine.org/docs/cfengine-Anomalies.html, on Oct. 27, 2005, pp. 1-15.
Christopher Kruegel, et al., “Anomaly Detection of Web-based Attacks,” CCS'03, Oct. 27-31, 2005, 11 pages.
Henry Hamping Feng, et al., “Anomaly Detecting Using Call Stack Information,” University of Massachusetts and Georgia Institute of Technology, 14 pages.
Gaia Maselli, et al., “Design and Implementation of an Anomaly Detection System: an Empirical Approach,” pp. 1-20.
“Esphion: Anomaly Detection 101,” printed from http://esphion.blogs.com/esphion/2005/10/anomaly—detecti.html, on Oct. 27, 2005, pp. 1-5.
Dragos Margineantu, et al., “International Work Shop on Data Mining Methods for Anomaly Detection,” Aug. 21, 2005, 87 pages.
U.S. Official Action dated Mar. 25, 2009 in U.S. Appl. No. 11/275,351.

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

Anomaly detection systems for a computer network does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Anomaly detection systems for a computer network, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Anomaly detection systems for a computer network will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFUS-PAI-O-4201704

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.