WIPO logo
Mobile | Deutsch | Español | Français | 日本語 | 한국어 | Português | Русский | 中文 | العربية |
PATENTSCOPE

Search International and National Patent Collections
World Intellectual Property Organization
Search
 
Browse
 
Translate
 
Options
 
News
 
Login
 
Help
 
Machine translation
1. (WO2017176673) BLUE PRINT GRAPHS FOR FUSING OF HETEROGENEOUS ALERTS
Latest bibliographic data on file with the International Bureau    Submit observation

Pub. No.:    WO/2017/176673    International Application No.:    PCT/US2017/025843
Publication Date: 12.10.2017 International Filing Date: 04.04.2017
IPC:
H04L 29/06 (2006.01), H04L 12/26 (2006.01)
Applicants: NEC LABORATORIES AMERICA, INC. [US/US]; 4 Independence Way Suite 200 Princeton, New Jersey 08540 (US)
Inventors: TANG, LuAn; (US).
CHEN, Zhengzhang; (US).
JIANG, Guofei; (US).
LI, Zhichun; (US).
CHEN, Haifeng; (US).
YOSHIHIRA, Kenji; (US)
Agent: KOLODKA, Joseph; (US)
Priority Data:
62/317,781 04.04.2016 US
15/477,625 03.04.2017 US
Title (EN) BLUE PRINT GRAPHS FOR FUSING OF HETEROGENEOUS ALERTS
(FR) GRAPHES DÉTAILLÉS POUR LA FUSION D'ALERTES HÉTÉROGÈNES
Abstract: front page image
(EN)Methods and systems for reporting anomalous events include building a process graph that models states of process-level events in a network. A topology graph is built that models source and destination relationships between connection events in the network. A set of alerts is clustered based on the process graph and the topology graph. Clustered alerts that exceed a threshold level of trustworthiness are reported.
(FR)L'invention concerne des procédés et des systèmes de création de rapports d'événements anormaux, comprenant la création d'un graphe de processus qui modélise des états d'événements de niveau processus dans un réseau. Un graphe de topologie est créé, qui modélise des relations source/destination entre des événements de connexion dans le réseau. Un ensemble d'alertes est regroupé sur la base du graphe de processus et du graphe de topologie. Des alertes groupées qui dépassent un niveau de seuil de fiabilité sont rapportées.
Designated States: AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JP, KE, KG, KH, KN, KP, KR, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW.
African Regional Intellectual Property Organization (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW)
Eurasian Patent Organization (AM, AZ, BY, KG, KZ, RU, TJ, TM)
European Patent Office (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR)
African Intellectual Property Organization (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG).
Publication Language: English (EN)
Filing Language: English (EN)