Patent · US Active

Method and apparatus for detecting anomalous network activities

US7930746B1 · kind B1 · utility

34Cited by

7References

18Claims

0Family size

Assignee

AT&T Intellectual Property I, L.P. · US

Inventors

Daniel Sheleheda · Florham Park, US
Michael Singer · Berkeley Heights, US

Key dates

Filing date	Dec 29, 2005
Grant date	Apr 19, 2011
Priority date	—
Expiry date	Dec 8, 2029

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method and apparatus for detecting an anomalous activity in a communications network is described. In one example, short-term event data is received from a plurality of servers. An event detection rule is then executed to process the short-term event data over a predefined time period. Afterwards, at least one alarm message is generated in response to detecting the anomalous activity in accordance with at least one predefined long-term security data mining program. In response, the at least one alarm message is provided to at least one of the plurality of servers.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.