DE602007013747D1 - Verfahren und Vorrichtung zur Klassifizierung von Datenverkehr in IP-Netzen - Google Patents
Verfahren und Vorrichtung zur Klassifizierung von Datenverkehr in IP-NetzenInfo
- Publication number
- DE602007013747D1 DE602007013747D1 DE602007013747T DE602007013747T DE602007013747D1 DE 602007013747 D1 DE602007013747 D1 DE 602007013747D1 DE 602007013747 T DE602007013747 T DE 602007013747T DE 602007013747 T DE602007013747 T DE 602007013747T DE 602007013747 D1 DE602007013747 D1 DE 602007013747D1
- Authority
- DE
- Germany
- Prior art keywords
- traffics
- decision tree
- networks
- data traffic
- data flow
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title abstract 2
- 238000003066 decision tree Methods 0.000 abstract 3
- 238000007689 inspection Methods 0.000 abstract 2
- 238000009434 installation Methods 0.000 abstract 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/142—Network analysis or design using statistical or mathematical methods
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/18—Protocol analysers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/02—Capturing of monitoring data
- H04L43/026—Capturing of monitoring data using flow identification
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Algebra (AREA)
- Mathematical Analysis (AREA)
- Computing Systems (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- General Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Mathematical Optimization (AREA)
- Mathematical Physics (AREA)
- Probability & Statistics with Applications (AREA)
- Pure & Applied Mathematics (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Telephonic Communication Services (AREA)
- Circuits Of Receivers In General (AREA)
- Traffic Control Systems (AREA)
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| EP07290995A EP2023533B1 (de) | 2007-08-10 | 2007-08-10 | Verfahren und Vorrichtung zur Klassifizierung von Datenverkehr in IP-Netzen |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| DE602007013747D1 true DE602007013747D1 (de) | 2011-05-19 |
Family
ID=38658708
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| DE602007013747T Active DE602007013747D1 (de) | 2007-08-10 | 2007-08-10 | Verfahren und Vorrichtung zur Klassifizierung von Datenverkehr in IP-Netzen |
Country Status (8)
| Country | Link |
|---|---|
| US (1) | US20100182918A1 (de) |
| EP (1) | EP2023533B1 (de) |
| JP (1) | JP4955107B2 (de) |
| KR (1) | KR101110956B1 (de) |
| CN (1) | CN101772921B (de) |
| AT (1) | ATE505017T1 (de) |
| DE (1) | DE602007013747D1 (de) |
| WO (1) | WO2009021892A1 (de) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113259263A (zh) * | 2021-04-29 | 2021-08-13 | 中电积至(海南)信息技术有限公司 | 一种深度报文检测集群中的数据包调度方法 |
Families Citing this family (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8626954B2 (en) * | 2008-08-28 | 2014-01-07 | Alcatel Lucent | Application-aware M:N hot redundancy for DPI-based application engines |
| US20100250731A1 (en) * | 2009-03-31 | 2010-09-30 | Xiao Haitao | Systems and methods for application identification |
| US20100325051A1 (en) * | 2009-06-22 | 2010-12-23 | Craig Stephen Etchegoyen | System and Method for Piracy Reduction in Software Activation |
| US8736462B2 (en) * | 2009-06-23 | 2014-05-27 | Uniloc Luxembourg, S.A. | System and method for traffic information delivery |
| US20100321207A1 (en) * | 2009-06-23 | 2010-12-23 | Craig Stephen Etchegoyen | System and Method for Communicating with Traffic Signals and Toll Stations |
| US20100321208A1 (en) * | 2009-06-23 | 2010-12-23 | Craig Stephen Etchegoyen | System and Method for Emergency Communications |
| US8452960B2 (en) * | 2009-06-23 | 2013-05-28 | Netauthority, Inc. | System and method for content delivery |
| WO2011108168A1 (ja) * | 2010-03-05 | 2011-09-09 | 日本電気株式会社 | パケット分類器、パケット分類方法、パケット分類プログラム |
| FR2957738B1 (fr) | 2010-03-17 | 2012-04-20 | Thales Sa | Procede d'identification d'un protocole a l'origine d'un flux de donnees |
| US9569326B2 (en) | 2010-04-15 | 2017-02-14 | Ca, Inc. | Rule organization for efficient transaction pattern matching |
| KR20120072120A (ko) * | 2010-12-23 | 2012-07-03 | 한국전자통신연구원 | 악성 파일 진단 장치 및 방법, 악성 파일 감시 장치 및 방법 |
| JP5812282B2 (ja) * | 2011-12-16 | 2015-11-11 | 公立大学法人大阪市立大学 | トラヒック監視装置 |
| AU2012100463B4 (en) | 2012-02-21 | 2012-11-08 | Uniloc Usa, Inc. | Renewable resource distribution management system |
| CN103546444B (zh) * | 2012-07-16 | 2016-12-21 | 清华大学 | 层次化加密代理通道检测方法 |
| US9973520B2 (en) * | 2014-07-15 | 2018-05-15 | Cisco Technology, Inc. | Explaining causes of network anomalies |
| US10560362B2 (en) * | 2014-11-25 | 2020-02-11 | Fortinet, Inc. | Application control |
| US10361931B2 (en) | 2016-06-30 | 2019-07-23 | At&T Intellectual Property I, L.P. | Methods and apparatus to identify an internet domain to which an encrypted network communication is targeted |
| CN108173704A (zh) * | 2017-11-24 | 2018-06-15 | 中国科学院声学研究所 | 一种基于表征学习的网络流量分类的方法及装置 |
| US10542025B2 (en) | 2017-12-26 | 2020-01-21 | International Business Machines Corporation | Automatic traffic classification of web applications and services based on dynamic analysis |
| CN109275045B (zh) * | 2018-09-06 | 2020-12-25 | 东南大学 | 基于dfi的移动端加密视频广告流量识别方法 |
| US11159515B2 (en) | 2020-03-31 | 2021-10-26 | Atlassian Pty Ltd. | Systems and methods for integrating systems over untrusted networks |
| US11277410B2 (en) * | 2020-03-31 | 2022-03-15 | Atlassian Pty Ltd. | Systems and methods for integrating systems over untrusted networks |
| US11240229B2 (en) | 2020-03-31 | 2022-02-01 | Atlassian Pty Ltd. | Systems and methods for integrating systems over untrusted networks |
| CN114500387A (zh) * | 2022-02-14 | 2022-05-13 | 重庆邮电大学 | 基于机器学习的移动应用流量识别方法及系统 |
| KR102403376B1 (ko) | 2022-02-23 | 2022-05-30 | 경희대학교 산학협력단 | 결정 트리에 기반하는 트래픽 분류 장치 및 그 방법 |
| CN114756622B (zh) * | 2022-03-16 | 2024-07-02 | 西安电子科技大学 | 一种基于数据湖的政务数据共享交换系统 |
| CN114722159B (zh) * | 2022-06-01 | 2022-08-23 | 中科航迈数控软件(深圳)有限公司 | 针对数控机床制造资源的多源异构数据处理方法及系统 |
Family Cites Families (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7075926B2 (en) * | 2000-05-24 | 2006-07-11 | Alcatel Internetworking, Inc. (Pe) | Programmable packet processor with flow resolution logic |
| US7032072B1 (en) * | 2001-12-31 | 2006-04-18 | Packeteer, Inc. | Method and apparatus for fast lookup of related classification entities in a tree-ordered classification hierarchy |
| US7424744B1 (en) * | 2002-03-05 | 2008-09-09 | Mcafee, Inc. | Signature based network intrusion detection system and method |
| US7292531B1 (en) * | 2002-12-31 | 2007-11-06 | Packeteer, Inc. | Methods, apparatuses and systems facilitating analysis of the performance of network traffic classification configurations |
| KR100849345B1 (ko) * | 2003-10-30 | 2008-07-29 | 삼성전자주식회사 | 고속 패킷 데이터 시스템에서의 서비스 품질 제공 방법 |
| US7664048B1 (en) * | 2003-11-24 | 2010-02-16 | Packeteer, Inc. | Heuristic behavior pattern matching of data flows in enhanced network traffic classification |
| KR100623552B1 (ko) * | 2003-12-29 | 2006-09-18 | 한국정보보호진흥원 | 자동침입대응시스템에서의 위험수준 분석 방법 |
| US7554983B1 (en) * | 2004-12-20 | 2009-06-30 | Packeteer, Inc. | Probing hosts against network application profiles to facilitate classification of network traffic |
| WO2006103396A1 (en) * | 2005-04-01 | 2006-10-05 | British Telecommunications Public Limited Company | Adaptive classifier, and method of creation of classification parameters therefor |
| US20060274899A1 (en) * | 2005-06-03 | 2006-12-07 | Innomedia Pte Ltd. | System and method for secure messaging with network address translation firewall traversal |
| FR2887385B1 (fr) | 2005-06-15 | 2007-10-05 | Advestigo Sa | Procede et systeme de reperage et de filtrage d'informations multimedia sur un reseau |
| US7782793B2 (en) | 2005-09-15 | 2010-08-24 | Alcatel Lucent | Statistical trace-based methods for real-time traffic classification |
| US8490194B2 (en) * | 2006-01-31 | 2013-07-16 | Robert Moskovitch | Method and system for detecting malicious behavioral patterns in a computer, using machine learning |
| CN100454851C (zh) * | 2006-03-17 | 2009-01-21 | 华为技术有限公司 | Diameter协议接口的性能测量方法及测量设备和系统 |
| CN100596135C (zh) * | 2006-06-09 | 2010-03-24 | 华为技术有限公司 | 一种确定内容提供商优先级的系统和方法 |
| US20080285577A1 (en) * | 2007-05-15 | 2008-11-20 | Yehuda Zisapel | Systems and Methods for Providing Network-Wide, Traffic-Aware Dynamic Acceleration and Admission Control for Peer-to-Peer Based Services |
-
2007
- 2007-08-10 EP EP07290995A patent/EP2023533B1/de not_active Ceased
- 2007-08-10 AT AT07290995T patent/ATE505017T1/de not_active IP Right Cessation
- 2007-08-10 DE DE602007013747T patent/DE602007013747D1/de active Active
-
2008
- 2008-08-06 WO PCT/EP2008/060363 patent/WO2009021892A1/fr active Application Filing
- 2008-08-06 US US12/452,890 patent/US20100182918A1/en not_active Abandoned
- 2008-08-06 CN CN200880102014.7A patent/CN101772921B/zh not_active Expired - Fee Related
- 2008-08-06 JP JP2010519464A patent/JP4955107B2/ja not_active Expired - Fee Related
- 2008-08-06 KR KR1020107002924A patent/KR101110956B1/ko not_active IP Right Cessation
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113259263A (zh) * | 2021-04-29 | 2021-08-13 | 中电积至(海南)信息技术有限公司 | 一种深度报文检测集群中的数据包调度方法 |
| CN113259263B (zh) * | 2021-04-29 | 2022-11-22 | 积至(海南)信息技术有限公司 | 一种深度报文检测集群中的数据包调度方法 |
Also Published As
| Publication number | Publication date |
|---|---|
| US20100182918A1 (en) | 2010-07-22 |
| KR20100035657A (ko) | 2010-04-05 |
| ATE505017T1 (de) | 2011-04-15 |
| JP2010536216A (ja) | 2010-11-25 |
| JP4955107B2 (ja) | 2012-06-20 |
| EP2023533B1 (de) | 2011-04-06 |
| CN101772921B (zh) | 2014-02-12 |
| KR101110956B1 (ko) | 2012-02-20 |
| CN101772921A (zh) | 2010-07-07 |
| EP2023533A1 (de) | 2009-02-11 |
| WO2009021892A1 (fr) | 2009-02-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| ATE505017T1 (de) | Verfahren und vorrichtung zur klassifizierung von datenverkehr in ip-netzen | |
| WO2012162419A3 (en) | Systems and methods for analyzing network metrics | |
| EP1689124A3 (de) | Verfahren und Vorrichtung zum zentralisierten Überwachen und Analysieren virtueller privater Netze | |
| GB2484878A (en) | Automatic address range detection for IP networks | |
| ATE410875T1 (de) | Verfahren zur zuordnung einer ip-adresse zu einem gerät | |
| KR20200052881A (ko) | 멀웨어 호스트 넷플로우 분석 시스템 및 방법 | |
| ATE479256T1 (de) | Prioritätsflussabwicklung in zustandslosen domänen | |
| WO2009151739A3 (en) | Methods for collecting and analyzing network performance data | |
| ATE418759T1 (de) | Verfahren und vorrichtungen zum verifizieren von kontextteilnehmern in einem kontextverwaltungssystem in einer vernetzten umgebung | |
| DE602005024000D1 (de) | Verfahren und Vorrichtung zum Aufbau einer Verbindung zwischen einer mobilen Vorrichtung und einem Netzwerk | |
| ATE513404T1 (de) | Vorrichtung, system und verfahren zur analyse von segmenten in einer übertragungssteuerungsprotokoll (tcp)-sitzung | |
| DE602006012318D1 (de) | Verfahren und vorrichtung zur wiederherstellung eines gemeinsam genutzten vermaschten netzes | |
| ATE333178T1 (de) | Verfahren zum bereitstellen von diensten mit garantierter dienstqualität in einem ip- zugangsnetz | |
| ATE445275T1 (de) | Verfahren, system und vorrichtung zur verkehrsverwaltung in einem mpls-netzwerk | |
| WO2009018141A3 (en) | Traffic predictor for network-accessible information modules | |
| DE602006013125D1 (de) | Verfahren und vorrichtung zum durchführen einer vorbestimmten funktion in einem managementgerät | |
| ATE399409T1 (de) | Verfahren, vorrichtung und system zur überwachung der netzwerkleistung | |
| DE602006004628D1 (de) | Vorrichtung und Verfahren zur Erfassung von Information zur Leitweglenkung in einem Netzwerk basierend auf einer maschenförmigen Topologie | |
| Kawai et al. | Identification of communication devices from analysis of traffic patterns | |
| ATE544270T1 (de) | Verfahren und vorrichtung zur überlastungsregelung | |
| DE60117554D1 (de) | Verfahren und vorrichtung zur effizienten hashing in netze | |
| ATE468680T1 (de) | Verfahren zur wap-datenextraktion unter verwendung von mobilen identifikationsnummern | |
| EP2012464A3 (de) | Verfahren und Vorrichtungen zur Ressourcenversorgung und Planung in einem Kommunikationsnetzwerk | |
| SE0602336L (sv) | Förfarande, anordning och system för flerfältsklassificering i ett datakommunikationsnätverk | |
| Shi et al. | Protocol-independent identification of encrypted video traffic sources using traffic analysis |