Patent · US Active

Techniques for detecting anomalous network traffic

US9225736B1 · kind B1 · utility

12Cited by

0References

12Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Kevin Roundy · El Segundo, US
Jie Fu · Beijing, CN
Tao Cheng · Urbana, US
Zhi Kai Li · Zigong, CN
Fanglu Guo · Los Angeles, US
Sandeep Bhatkar · Sunnyvale, US

Key dates

Filing date	Jun 27, 2013
Grant date	Dec 29, 2015
Priority date	—
Expiry date	Jun 27, 2033

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1416
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques for detecting anomalous network traffic are disclosed. In one particular embodiment, the techniques may be realized as a method for detecting anomalous network traffic comprising the steps of receiving a list including a plurality of processes and, for each process, a list of approved types of network traffic; monitoring network traffic of each process on the list of processes; upon detecting network traffic for a process on the list of processes, determining that the type of network traffic detected is not on the list of approved types for that process; and identifying the process as infected based on determining that the type of network traffic detected is not on the list of approved types for that process.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.