Network anomaly detection
MJ Lefebvre, M Carver, E Ellett, W Negm… - US Patent …, 2016 - Google Patents
Methods, systems, and apparatus, including computer programs encoded on computer
storage media, for determining network related anomaly scores. One of the methods …
storage media, for determining network related anomaly scores. One of the methods …
Anomaly detection based on relationships between multiple time series
AJ Oliner, J La, C Kinross, H Zhang, J Leverich… - US Patent …, 2019 - Google Patents
In some implementations, sequences of time series values determined from machine data
are obtained. Each sequence corresponds to a respective time series. A plurality of …
are obtained. Each sequence corresponds to a respective time series. A plurality of …
Integrating multiple data sources for malware classification
2014-03-25 Assigned to LOS ALAMOS NATIONAL SECURITY, LLC reassignment LOS
ALAMOS NATIONAL SECURITY, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE …
ALAMOS NATIONAL SECURITY, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE …
Signature creation for unknown attacks
A Di Pietro, JP Vasseur, JC Mota - US Patent 9,705,914, 2017 - Google Patents
In one embodiment, a device in a network generates an expected traffic model based on a
training set of data used to train a machine learning attack detector. The device provides the …
training set of data used to train a machine learning attack detector. The device provides the …
Threat detection using endpoint variance
KD Ray, MD Harris, SN Reed, NRT Watkiss… - US Patent …, 2017 - Google Patents
BACKGROUND Antivirus and advanced persistent threat (APT) protection systems typically
rely on platform-dependent attributes of various computing objects, or other detailed …
rely on platform-dependent attributes of various computing objects, or other detailed …
Explaining network anomalies using decision trees
In an embodiment, the method comprises receiving an identification of an anomaly
associated with a false positive identification of a security threat by the intrusion detection …
associated with a false positive identification of a security threat by the intrusion detection …
Pre-cognitive security information and event management
SKJ DURAIRAJ, A Singla - US Patent 10,789,367, 2020 - Google Patents
According to an example, pre-cognitive SIEM may include using trained classifiers to detect
an anomaly in input events, and generating a predictive attack graph based on the detected …
an anomaly in input events, and generating a predictive attack graph based on the detected …
Detection of anomalous events
EM Ferragut, JA Laska, RA Bridges - US Patent 9,361,463, 2016 - Google Patents
BACKGROUND Anomaly detection is the search for items or events which do not conform to
an expected pattern. The detected patterns are called anomalies and translate to critical and …
an expected pattern. The detected patterns are called anomalies and translate to critical and …
Detection of anomaly in network flow data
Disclosed is a method 101 to be used on collected network data flow 116 associated with a
network 100; the method 101 includes: an anomaly-detection operation 103 including:(A) …
network 100; the method 101 includes: an anomaly-detection operation 103 including:(A) …
Unstructured security threat information analysis
E Hovor, S Modi, S Sengupta, RR Ramnani… - US Patent …, 2017 - Google Patents
Methods, systems, and apparatus, including computer programs encoded on computer
storage media, for creating structured data using data received from unstructured textual …
storage media, for creating structured data using data received from unstructured textual …