Patenton — panteon of patents

(19)

RU

(11)

2 811 840

(13)

C1

(51)

IPC

G06N3/08(2006-01-01)

G06F11/30(2006-01-01)

(21) (22)

Application

2023106943, 2023-03-23

(24)

Start date

2023-03-23

(22)

Actual filing date

2023-03-23

(45)

Published

2024-01-18

(72)

Inventor

Zmitrovich Nikolaj Leonidovich

(73)

Holder

Aktsionernoe Obshchestvo Tekhnologii I Kommunikatsionnye Sistemy"

METHOD FOR DETECTING ANOMALOUS NETWORK TRAFFIC Russian patent published in 2024 - IPC G06N3/08 G06F11/30 

Abstract RU 2811840 C1

FIELD: information security.

SUBSTANCE: effect is achieved by implementing a method that includes receiving network traffic for a selected period of time, recording parameters of network sessions, into a table of session parameters, digitizing the values of symbolic parameters of sessions, normalizing parameter values, forming a training and validation sample, forming a neural network with an autoencoder architecture, training neural network, calculating the anomaly threshold, receiving test traffic, receiving a test sample, submitting a test sample to the input of the neural network, calculating the reconstruction error for each session, obtaining a time series of average values of the final reconstruction errors for each session; dividing a time series into many time segments of equal duration; finding the average reconstruction error for each segment; identification as anomalous segments in which the average value of the reconstruction error is greater than the anomaly threshold, and, if necessary, generation of a report on anomalies detected in the test sample.

EFFECT: reduced number of errors of the first and second types when detecting traffic anomalies distributed over time.

1 cl, 5 tbl

Similar patents RU2811840C1

Title Year Author Number
METHOD FOR DETECTION OF ANOMALIES IN OPERATION OF HIGHLY LOADED NETWORK OF AUTOMATED TELECOMMUNICATION SYSTEM 2021
  • Romanchenko Roman Sergeevich
 RU2787078C1
METHOD FOR DETECTING ANOMALIES IN OPERATION OF AUTOMATED SYSTEM NETWORK 2020
  • Antipinskij Andrej Sergeevich
  • Domukhovskij Nikolaj Anatolevich
  • Komarov Denis Evgenevich
  • Sinadskij Aleksej Nikolaevich
 RU2738460C1
SPLICING SITES CLASSIFICATION BASED ON DEEP LEARNING 2018
  • Dzhaganatan, Kishor
  • Farkh, Kaj-Khou
  • Kiriazopulu Panajotopulu, Sofiya
  • Makrej, Dzheremi Frensis
 RU2780442C2
METHOD FOR FILTERING A PART OF PACKETS IN A NETWORK SESSION 2022
  • Shabalov Aleksandr Aleksandrovich
  • Badin Mikhail Viktorovich
  • Mikhailov Aleksei Mikhailovich
  • Plotko Sergei Alekseevich
 RU2790635C1
METHOD FOR DETECTING NORMAL REACTIONS OF COMPUTER NETWORK NODES TO NETWORK PACKETS RELATED TO UNKNOWN TRAFFIC 2022
  • Antipinskii Andrei Sergeevich
  • Domukhovskii Nikolai Anatolevich
  • Komarov Denis Evgenevich
  • Sinadskii Aleksei Nikolaevich
 RU2802164C1
METHOD FOR DETECTING ANOMALIES IN MULTIDIMENSIONAL DATA 2021
  • Guzev Oleg Yurevich
  • Gurina Anastasiya Olegovna
 RU2773010C1
METHOD FOR DYNAMIC FILTERING OF NETWORK PACKETS BY SESSIONS 2022
  • Badin Mikhail Viktorovich
  • Mikhajlov Aleksej Mikhajlovich
  • Plotko Sergej Alekseevich
 RU2779135C1
BALANCING METHOD WHILE MAINTAINING INTEGRITY OF DATA FLOWS 2023
  • Popenko Pavel Ivanovich
 RU2807656C1
METHOD FOR TRACKING SESSIONS IN NETWORK TRAFFIC 2022
  • Badin Mikhail Viktorovich
  • Mikhailov Aleksei Mikhailovich
  • Plotko Sergei Alekseevich
 RU2786178C1
AUTOMATED SYSTEM FOR IDENTIFICATION AND PREDICTION OF COMPLICATIONS IN THE PROCESS OF CONSTRUCTION OF OIL AND GAS WELLS 2020
  • Dmitrievskij Anatolij Nikolaevich
  • Eremin Nikolaj Aleksandrovich
  • Chernikov Aleksandr Dmitrievich
  • Sboev Aleksandr Georgievich
 RU2745137C1

RU 2 811 840 C1

Authors

Zmitrovich Nikolaj Leonidovich

Dates

2024-01-18Published

2023-03-23Filed

download Download PDF read Similar patents