Patent · US Active

Filtering mechanism to reduce false positives of ML-based anomaly detectors and classifiers

US10931692B1 · kind B1 · utility

23Cited by

6References

17Claims

0Family size

Assignee

Cisco Technology, Inc. · US

Inventors

Javier Cruz Mota · Assens, CH
Jean-Philippe Vasseur · Meylan, FR
Grégory Mermoud · Veyras, CH
Andrea Di Pietro · Lausanne, CH

Key dates

Filing date	Jan 20, 2016
Grant date	Feb 23, 2021
Priority date	—
Expiry date	Jun 21, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/144
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

In one embodiment, a device in a network receives information regarding a network anomaly detected by an anomaly detector deployed in the network. The device identifies the detected network anomaly as a false positive based on the information regarding the network anomaly. The device generates an output filter for the anomaly detector, in response to identifying the detected network anomaly as a false positive. The output filter is configured to filter an output of the anomaly detector associated with the false positive. The device causes the generated output filter to be installed at the anomaly detector.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.