Patent · US Active

Network application signatures for binary protocols

US8578024B1 · kind B1 · utility

31Cited by

0References

22Claims

0Family size

Assignee

Narus, Inc. · US

Inventors

Ram Keralapura · San Jose, US
Ruben Torres · Sunnyvale, US
Marios Iliofotou · Sunnyvale, US
Alok Tongaonkar · San Jose, US
Antonio Nucci · San Jose, US

Key dates

Filing date	Jan 5, 2012
Grant date	Nov 5, 2013
Priority date	—
Expiry date	May 13, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L69/22
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method for profiling network traffic of a network, including defining a set of features each corresponding to a set of pre-determined bit positions for selecting a pre-determined number of data bits from each flow in a flow set generated by a network application to form a feature value assigned to the feature for the each flow, identifying the feature as a deterministic feature based on a frequency of occurrence of the feature value, extracting a set of paths from the flow set based on a number of deterministic features, generating a state machine based on the set of paths, and analyzing a new flow associated with a server in the network to determine the server as executing the network application.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.