Show metadata Hide metadata

(19)

(11)

2 809 918

(13)

(51)

IPC

G06F21/50(2013-01-01)

H04L41/06(2022-01-01)

(21) (22)

Application

2023112335, 2023-05-13

(24)

Start date

2023-05-13

(22)

Actual filing date

2023-05-13

(45)

Published

2023-12-19

(72)

Inventor

Sinadskii Aleksei NikolaevichDomukhovskii Nikolai AnatolevichShanin Aleksei Andreevich

(73)

Holder

Obshchestvo S Ogranichennoi Otvetstvennostiu

METHOD FOR MONITORING NETWORK ACTIVITY OF COMPUTER NETWORK NODES Russian patent published in 2023 - IPC G06F21/50 H04L41/06

Abstract RU 2809918 C1

FIELD: computer technology.

SUBSTANCE: method for monitoring the network activity of computer network nodes contains the following steps: forming the first and second groups of clusters of states of computer network nodes for the first and second time intervals; generating for each node a characteristic vector, the elements of which are represented by the frequencies of occurrence of network protocols used by the network node within the time interval; transferring the generated vectors to a clustering tool capable of forming a group of clusters of states of computer network nodes based on the frequency of use of network protocols within a time interval; forming on the clustering means mixed groups of state clusters, each of which includes a first group of state clusters and one of the characteristic vectors from the second group of state clusters; searching for deviations between node states within mixed groups of state clusters; determining the degree of criticality of each detected deviation; transmitting a control signal to a means for generating a response to deviation.

EFFECT: providing the ability to respond to detected anomalous activity of computer network nodes.

12 cl, 21 dwg, 1 tbl

Similar patents RU2809918C1

Title	Year	Author	Number
METHOD FOR DETECTING NORMAL REACTIONS OF COMPUTER NETWORK NODES TO NETWORK PACKETS RELATED TO UNKNOWN TRAFFIC	2022	Antipinskii Andrei Sergeevich Domukhovskii Nikolai Anatolevich Komarov Denis Evgenevich Sinadskii Aleksei Nikolaevich	RU2802164C1
METHOD AND SYSTEM FOR FORMING CLUSTERS OF NODES IN COMPUTER NETWORK	2023	Belyj Aleksej Vladimirovich Zhirov Dmitrij Viktorovich	RU2821054C1
SYSTEM AND METHOD FOR ANALYSING INCOMING TRAFFIC FLOW	2023	Chereshnev Vladimir Sergeevich Samokhvalov Viktor Evgenevich Puts Aleksej Yurevich Penikov Pavel Viktorovich Sadovnikov Vladimir Vladimirovich Vaskov Egor Ruslanovich	RU2812087C1
METHOD OF PROCESSING NETWORK TRAFFIC USING FIREWALL METHOD	2017	Zujkov Aleksandr Vasilevich Dusha Igor Fedorovich Zulkarnaev Ravil Fikratovich	RU2697698C2
FIREWALL SYSTEM	2017	Zujkov Aleksandr Vasilevich Dusha Igor Fedorovich Lebedev Filipp Vladimirovich	RU2691192C1
METHOD FOR DETECTING ANOMALIES IN OPERATION OF AUTOMATED SYSTEM NETWORK	2020	Antipinskij Andrej Sergeevich Domukhovskij Nikolaj Anatolevich Komarov Denis Evgenevich Sinadskij Aleksej Nikolaevich	RU2738460C1
METHOD FOR DETECTING ANOMALOUS WORK OF NETWORK SERVER (OPTIONS)	2016	Eliseev Vladimir Leonidovich Shabalin Yurij Dmitrievich	RU2630415C2
SOFTWARE AND HARDWARE COMPLEX FOR ENSURING SECURED DATA EXCHANGE BETWEEN TECHNICAL EQUIPMENT OF TERMINAL AUTOMATED SYSTEMS	2023	Vasinev Dmitrii Aleksandrovich Semenov Aleksei Konstantinovich	RU2809234C1
METHOD OF BLOCKING NETWORK CONNECTIONS	2018	Ovcharik Vladislav Ivanovich Bykov Oleg Grigorevich Sidorova Natalya Stanislavovna	RU2728506C2
SYSTEM FOR AGGREGATION OF NETWORK DATA IN COMPUTER NETWORKS	2019	Marchenkov Aleksej Aleksandrovich Esin Anton Anatolevich	RU2694025C1

RU 2 809 918 C1

Authors

Sinadskii Aleksei Nikolaevich

Domukhovskii Nikolai Anatolevich

Shanin Aleksei Andreevich

Dates

2023-12-19—Published

2023-05-13—Filed