The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Nov. 19, 2019
Filed:
Aug. 07, 2017
Hrl Laboratories, Llc, Malibu, CA (US);
Kang-Yu Ni, Calabasas, CA (US);
David W. Payton, Calabasas, CA (US);
HRL Laboratories, LLC, Malibu, CA (US);
Abstract
Described is a system for detecting cyber intrusions based on analysis of network traffic. During operation, the system performs a statistical analysis of message timing on network traffic to produce a temporal dependency matrix representative of temporal dependency between different message types in the network traffic. The sets of temporal dependency matrices are decomposed into component matrices, where at least one component matrix represents typical properties of these matrices and at least one other component matrix represents atypical properties of the matrices. A new temporal dependency matrix is generated based on new network traffic. Finally, anomalous behavior is detected in the new network traffic by comparing component matrices of the new temporal dependency matrix with component matrices of the temporal dependency matrices under normal operation conditions.