Invention Grant
- Patent Title: Leveraging endpoint and network environment inferences for malware traffic classification
-
Application No.: US15851918Application Date: 2017-12-22
-
Publication No.: US10855698B2Publication Date: 2020-12-01
- Inventor: Blake Harrell Anderson , Martin Rehak , David McGrew , Martin Vejman , Tomas Pevny , Martin Grill , Jan Kohout
- Applicant: Cisco Technology, Inc.
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Behmke Innovation Group LLC
- Agent Kenneth J. Heywood; Jonathon P. Western
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F21/53 ; G06N20/00 ; H04L12/24 ; H04L29/08 ; G06F21/62
Abstract:
In one embodiment, a device obtains simulation environment data regarding traffic generated within a simulation environment in which malware is executed. The device trains a malware detector using the simulation environment data. The device obtains deployment environment characteristics of a network to which the malware detector is to be deployed. The device configures the malware detector to ignore data in the simulation environment data that is associated with one or more environment characteristics that are not present in the deployment environment characteristics.
Public/Granted literature
- US20190199739A1 LEVERAGING ENDPOINT AND NETWORK ENVIRONMENT INFERENCES FOR MALWARE TRAFFIC CLASSIFICATION Public/Granted day:2019-06-27
Information query
