SG11202001225RA - Method and device for determining data anomaly - Google Patents

Method and device for determining data anomaly

Info

Publication number
SG11202001225RA
SG11202001225RA SG11202001225RA SG11202001225RA SG11202001225RA SG 11202001225R A SG11202001225R A SG 11202001225RA SG 11202001225R A SG11202001225R A SG 11202001225RA SG 11202001225R A SG11202001225R A SG 11202001225RA SG 11202001225R A SG11202001225R A SG 11202001225RA
Authority
SG
Singapore
Prior art keywords
determining data
data anomaly
anomaly
determining
data
Prior art date
Application number
SG11202001225RA
Inventor
Yuehao Wu
Ling Xie
Xin Xu
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Publication of SG11202001225RA publication Critical patent/SG11202001225RA/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/14Network analysis or design
    • H04L41/142Network analysis or design using statistical or mathematical methods
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/903Querying
    • G06F16/90335Query processing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F18/00Pattern recognition
    • G06F18/20Analysing
    • G06F18/23Clustering techniques
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06NCOMPUTING ARRANGEMENTS BASED ON SPECIFIC COMPUTATIONAL MODELS
    • G06N20/00Machine learning
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06NCOMPUTING ARRANGEMENTS BASED ON SPECIFIC COMPUTATIONAL MODELS
    • G06N7/00Computing arrangements based on specific mathematical models
    • G06N7/01Probabilistic graphical models, e.g. probabilistic networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/16Threshold monitoring
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
SG11202001225RA 2017-12-29 2018-11-19 Method and device for determining data anomaly SG11202001225RA (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201711474464.6A CN110110160B (en) 2017-12-29 2017-12-29 Method and device for determining data exception
PCT/CN2018/116085 WO2019128525A1 (en) 2017-12-29 2018-11-19 Method and device for determining data anomaly

Publications (1)

Publication Number Publication Date
SG11202001225RA true SG11202001225RA (en) 2020-03-30

Family

ID=67066389

Family Applications (1)

Application Number Title Priority Date Filing Date
SG11202001225RA SG11202001225RA (en) 2017-12-29 2018-11-19 Method and device for determining data anomaly

Country Status (6)

Country Link
US (2) US10917424B2 (en)
EP (1) EP3654611B1 (en)
CN (1) CN110110160B (en)
SG (1) SG11202001225RA (en)
TW (1) TWI703454B (en)
WO (1) WO2019128525A1 (en)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110110160B (en) 2017-12-29 2020-04-14 阿里巴巴集团控股有限公司 Method and device for determining data exception
US10984122B2 (en) * 2018-04-13 2021-04-20 Sophos Limited Enterprise document classification
CN110781220A (en) * 2019-09-20 2020-02-11 江苏欣皓测试技术有限公司 Fault early warning method and device, storage medium and electronic equipment
TWI749416B (en) * 2019-11-29 2021-12-11 中國鋼鐵股份有限公司 Method for diagnosing abnormality of equipment having variable rotation speeds
CN112329784A (en) * 2020-11-23 2021-02-05 桂林电子科技大学 Correlation filtering tracking method based on space-time perception and multimodal response
CN113048807B (en) * 2021-03-15 2022-07-26 太原理工大学 Air cooling unit backpressure abnormity detection method

Family Cites Families (48)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5705739A (en) * 1996-08-27 1998-01-06 Levine; Robert A. Detecting specific medical conditions from erythrocyte density distrubition in a centrifuged anticoagulated whole blood sample
US7181765B2 (en) 2001-10-12 2007-02-20 Motorola, Inc. Method and apparatus for providing node security in a router of a packet network
US7213264B2 (en) 2002-01-31 2007-05-01 Mazu Networks, Inc. Architecture to thwart denial of service attacks
AU2003212910A1 (en) * 2002-02-07 2003-09-02 University Of Massachusetts Probabalistic packet marking
GB0410254D0 (en) * 2004-05-07 2004-06-09 British Telecomm Processing of data in networks
US7653007B2 (en) * 2004-06-04 2010-01-26 Alcatel-Lucent Usa Inc. Per-flow traffic estimation
US7519564B2 (en) * 2004-11-16 2009-04-14 Microsoft Corporation Building and using predictive models of current and future surprises
US8869276B2 (en) 2005-06-29 2014-10-21 Trustees Of Boston University Method and apparatus for whole-network anomaly diagnosis and method to detect and classify network anomalies using traffic feature distributions
US20070076611A1 (en) * 2005-10-05 2007-04-05 Fujitsu Limited Detecting anomalies from acceptable traffic affected by anomalous traffic
US7712134B1 (en) 2006-01-06 2010-05-04 Narus, Inc. Method and apparatus for worm detection and containment in the internet core
WO2007100915A2 (en) * 2006-02-28 2007-09-07 The Trustees Of Columbia University In The City Of New York Systems, methods, and media for outputting data based on anomaly detection
US8248946B2 (en) 2006-06-06 2012-08-21 Polytechnic Institute of New York Unversity Providing a high-speed defense against distributed denial of service (DDoS) attacks
US8312541B2 (en) * 2007-07-17 2012-11-13 Cisco Technology, Inc. Detecting neighbor discovery denial of service attacks against a router
WO2009086843A1 (en) * 2007-12-31 2009-07-16 Telecom Italia S.P.A. Method of detecting anomalies in a communication system using symbolic packet features
EP2241072B1 (en) * 2007-12-31 2011-05-25 Telecom Italia S.p.A. Method of detecting anomalies in a communication system using numerical packet features
EP2088742B1 (en) * 2008-02-11 2013-04-10 Universita' degli studi di Brescia Method for determining if an encrypted flow of packets belongs to a predefined class of flows
US9258217B2 (en) 2008-12-16 2016-02-09 At&T Intellectual Property I, L.P. Systems and methods for rule-based anomaly detection on IP network flow
US8618934B2 (en) * 2009-04-27 2013-12-31 Kolos International LLC Autonomous sensing module, a system and a method of long-term condition monitoring of structures
TWI367452B (en) * 2009-08-21 2012-07-01 Shih Chin Lee Method for detecting abnormal transactions of financial assets and information processing device performing the method
US8874763B2 (en) * 2010-11-05 2014-10-28 At&T Intellectual Property I, L.P. Methods, devices and computer program products for actionable alerting of malevolent network addresses based on generalized traffic anomaly analysis of IP address aggregates
US9106689B2 (en) * 2011-05-06 2015-08-11 Lockheed Martin Corporation Intrusion detection using MDL clustering
US9628499B1 (en) * 2012-08-08 2017-04-18 Google Inc. Statistics-based anomaly detection
CN103111982B (en) 2013-01-25 2015-04-15 中国海洋石油总公司 Installation device and disassembly device for component
CN103441982A (en) * 2013-06-24 2013-12-11 杭州师范大学 Intrusion alarm analyzing method based on relative entropy
US9288220B2 (en) * 2013-11-07 2016-03-15 Cyberpoint International Llc Methods and systems for malware detection
US20150256431A1 (en) * 2014-03-07 2015-09-10 Cisco Technology, Inc. Selective flow inspection based on endpoint behavior and random sampling
WO2015167421A1 (en) * 2014-04-28 2015-11-05 Hewlett-Packard Development Company, L.P. Network flow classification
US9635050B2 (en) * 2014-07-23 2017-04-25 Cisco Technology, Inc. Distributed supervised architecture for traffic segregation under attack
US9344441B2 (en) 2014-09-14 2016-05-17 Cisco Technology, Inc. Detection of malicious network connections
US9722906B2 (en) * 2015-01-23 2017-08-01 Cisco Technology, Inc. Information reporting for anomaly detection
KR101621019B1 (en) * 2015-01-28 2016-05-13 한국인터넷진흥원 Method for detecting attack suspected anomal event
US20170046700A1 (en) * 2015-08-10 2017-02-16 Ca, Inc. Anomaly detection and user-context driven authorization request for automatic payments through mobile devices
US9953160B2 (en) * 2015-10-13 2018-04-24 Paypal, Inc. Applying multi-level clustering at scale to unlabeled data for anomaly detection and security
CN105262647A (en) * 2015-11-27 2016-01-20 广州神马移动信息科技有限公司 Abnormal index detection method and device
US9979740B2 (en) * 2015-12-15 2018-05-22 Flying Cloud Technologies, Inc. Data surveillance system
US10542026B2 (en) * 2015-12-15 2020-01-21 Flying Cloud Technologies, Inc. Data surveillance system with contextual information
US10469511B2 (en) 2016-03-28 2019-11-05 Cisco Technology, Inc. User assistance coordination in anomaly detection
CN105871879B (en) * 2016-05-06 2019-03-05 中国联合网络通信集团有限公司 Network element abnormal behaviour automatic testing method and device
CN106101102B (en) * 2016-06-15 2019-07-26 华东师范大学 A kind of exception flow of network detection method based on PAM clustering algorithm
CN106204335A (en) 2016-07-21 2016-12-07 广东工业大学 A kind of electricity price performs abnormality judgment method, Apparatus and system
WO2018047804A1 (en) * 2016-09-08 2018-03-15 日本電気株式会社 Abnormality detecting device, abnormality detecting method, and recording medium
US10375096B2 (en) 2016-12-08 2019-08-06 Cisco Technology, Inc. Filtering onion routing traffic from malicious domain generation algorithm (DGA)-based traffic classification
CA3049996A1 (en) 2017-01-14 2018-07-19 Curtin University Of Technology Method and system for detecting and mitigating a denial of service attack
CN107515889A (en) * 2017-07-03 2017-12-26 国家计算机网络与信息安全管理中心 A kind of microblog topic method of real-time and device
CN107491970B (en) * 2017-08-17 2021-04-02 北京三快在线科技有限公司 Real-time anti-cheating detection monitoring method and system and computing equipment
CN107481117A (en) * 2017-08-21 2017-12-15 掌阅科技股份有限公司 Detection method, electronic equipment and the computer-readable storage medium of abnormal behaviour
US10686816B1 (en) 2017-09-28 2020-06-16 NortonLifeLock Inc. Insider threat detection under user-resource bi-partite graphs
CN110110160B (en) 2017-12-29 2020-04-14 阿里巴巴集团控股有限公司 Method and device for determining data exception

Also Published As

Publication number Publication date
US10917424B2 (en) 2021-02-09
EP3654611A1 (en) 2020-05-20
TWI703454B (en) 2020-09-01
WO2019128525A1 (en) 2019-07-04
CN110110160B (en) 2020-04-14
US20200213341A1 (en) 2020-07-02
US20200329063A1 (en) 2020-10-15
US10917426B2 (en) 2021-02-09
EP3654611A4 (en) 2020-08-19
EP3654611B1 (en) 2021-06-23
CN110110160A (en) 2019-08-09
TW201931167A (en) 2019-08-01

Similar Documents

Publication Publication Date Title
ZA201904735B (en) Data processing method and device
ZA201902866B (en) Order information determining method and apparatus
ZA201904231B (en) Blockchain-based data processing method and device
ZA201800870B (en) Data processing method and device
SG10202101207WA (en) Blockchain-based data processing method and device
HK1258243A1 (en) Method and device for transmitting data
EP3570509C0 (en) Data processing method and device
ZA201900306B (en) Data processing method and device
SG11202000554QA (en) Method and device for transmitting data unit
SG11201808173RA (en) Data caching method and apparatus
PL3376389T3 (en) Data processing method and device
SG11202001225RA (en) Method and device for determining data anomaly
ZA201908560B (en) Method and device for transmitting data
IL268259A (en) Data processing method and device related thereto
EP3082303A4 (en) Method and device for data processing
ZA202000917B (en) Method and device for processing data
HK1254964A1 (en) Method and device for measuring features on or near an object
PL3554041T3 (en) Method and device for sequence determination
ZA201706750B (en) Data sending method and device
HK1211098A1 (en) Method and device for processing data
IL247067A (en) Method and device for determining navigation data
ZA201905820B (en) Method and device for transmitting data
PL3425525T3 (en) Data processing method and device
HK1257348A1 (en) Method and device for data transmission
IL271201A (en) Method and device for transmitting data