Patent · US Active

Offloading anomaly detection from server to host

US11436075B2 · kind B2 · utility

12Cited by

36References

20Claims

0Family size

Assignee

VMware LLC · US

Inventors

Jayant Jain · Cupertino, US
Russell Lu · Pleasanton, US
Rick Lund · Livermore, US
Alok S. Tiagi · Palo Alto, US
Sushruth Gopal · Sunnyvale, US

Key dates

Filing date	Jul 23, 2019
Grant date	Sep 6, 2022
Priority date	—
Expiry date	Aug 13, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L41/0894
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Some embodiments provide a novel method for collecting and analyzing attributes of data flows associated with machines executing on a plurality of host computers to detect anomalous behavior. In some embodiments, an anomalous behavior is detected for at least one particular flow associated with at least one machine executing on the host computer. In some embodiments, anomaly detection is based on the context data from the guest introspection agent and deep packet inspection. An identifier of the detected anomalous behavior is stored, in some embodiments. The stored attributes are provided, in some embodiments, to a server for further analysis.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.