Invention Grant
- Patent Title: Malicious encrypted network traffic identification
-
Application No.: US15120996Application Date: 2015-02-17
-
Publication No.: US10469507B2Publication Date: 2019-11-05
- Inventor: Fadi El-Moussa , George Kallos , Ben Azvine
- Applicant: British Telecommunications Public Limited Company
- Applicant Address: GB London
- Assignee: British Telecommunications Public Limited Company
- Current Assignee: British Telecommunications Public Limited Company
- Current Assignee Address: GB London
- Agency: Patterson Thuente Pedersen, P.A.
- Agent Amy Salmela
- Priority: EP14250031 20140228
- International Application: PCT/GB2015/050446 WO 20150217
- International Announcement: WO2015/128613 WO 20150903
- Main IPC: H04L21/00
- IPC: H04L21/00 ; H04L29/06
Abstract:
A malicious encrypted traffic detector connected to a computer network, the detector comprising: a Shannon entropy estimator; an entropy comparator; a store storing a reference measure of Shannon entropy of a portion of network traffic of a malicious encrypted network connection, wherein the estimator is adapted to estimate a measure of entropy for a corresponding portion of network traffic communicated over the computer network, and the entropy comparator is adapted to compare the estimated measure of entropy with the reference measure so as to determine if malicious encrypted network traffic is communicated over the network connection.
Public/Granted literature
- US20160366155A1 MALICIOUS ENCRYPTED NETWORK TRAFFIC IDENTIFICATION Public/Granted day:2016-12-15
Information query
