Methods and apparatus to identify malicious activity in a network

作者： Baris Coskun

DOI:

关键词: Data mining 、 Reference group 、 Feature (computer vision) 、 Reduction (complexity) 、 Mathematics

摘要: Methods, apparatus, systems and articles of manufacture are disclosed to learn malicious activity. An example method includes assigning weights a distance function respective statistical features; iteratively calculating, with processor, the adjust (1) cause reduction in first calculated according for pair entities reference group associated activity (2) an increase second one included entity not group; determining whether feature is indicative based on adjusted weight determined after calculating number iterations.

google.com 本地加速

freepatentsonline.com 本地加速

google.com LINK 下载加速

freepatentsonline.com LINK 下载加速

lens.org UNKNOWN 下载加速

freepatentsonline.com UNKNOWN 下载加速

参考文章(35)

Ursula Schwuttke, Robert Angelino, Multiparameter network fault detection system using probabilistic and aggregation analysis ,(2004)

Patrick Droz, Andreas Kind, Robert Haas, Operating a network monitoring entity ,(2007)

David Hammond, Handling potentially malicious communication activity ,(2014)

Christopher Lee Richter, Cameron Blair Cooper, Method, system, and storage medium for adaptive monitoring and filtering traffic to and from social networking sites ,(2013)

Phillip H. Zakas, System and method of characterizing and managing electronic traffic ,(2005)

Wilfried Teiken, Ian M. Molloy, Youngja Park, Suresh N. Chari, Detecting Anomalous User Behavior Using Generative Models of User Actions ,(2013)

Joseph E. Johnson, Methods and systems for determining entropy metrics for networks ,(2006)

Christopher Petersen, Phillip Villella, Log collection, structuring and processing ,(2006)

Craig S. Etchegoyen, Device reputation management ,(2014)

David Rowell, Jack Kohn, Gunes Aybay, Tracking fragmented data flows ,(2009)