System and method of characterizing and managing electronic traffic
First Claim
1. A computer-based method for enabling a central manager device to create and distribute different sets of network traffic rules to a plurality of traffic sensor devices, the method comprising the steps of:
- storing rules in a master directory located at the central manager device, wherein the rules are based at least in part on network user information or network traffic profiles;
receiving a user'"'"'s network traffic information at the central manager device from one of the plurality of traffic sensor devices, the user'"'"'s network traffic information including user information;
determining a set of rules based on the received user'"'"'s traffic information;
selecting one or more of the plurality traffic sensors to receive the set of rules based on at least one or more properties of the traffic sensor devices;
distributing the set of rules to one or more selected traffic sensor devices.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for monitoring and dynamically managing all user traffic at point of log-in and throughout a user'"'"'s network experience. Rules may be enforced based on observed traffic of users at and after log-in and up until log off. The system automatically detects network traffic and dynamically responds to potential attacks with extremely high speed and efficiency. Rich Traffic Analysis (RTA) offers greater network traffic characterization accuracy, detection speed, network management options and intrusion prevention capabilities. The system has ability to view all network traffic in the full context of users, applications, data and system access which offers strong, verifiable and accurate protection of networked assets. The system employs several traffic sensor devices communicating with a central manager device enabling the high-speed characterization of each network packets traversing the network. This provides a more solid basis for legitimately taking action and enforcing rules on the observed traffic.
296 Citations
18 Claims
-
1. A computer-based method for enabling a central manager device to create and distribute different sets of network traffic rules to a plurality of traffic sensor devices, the method comprising the steps of:
-
storing rules in a master directory located at the central manager device, wherein the rules are based at least in part on network user information or network traffic profiles;
receiving a user'"'"'s network traffic information at the central manager device from one of the plurality of traffic sensor devices, the user'"'"'s network traffic information including user information;
determining a set of rules based on the received user'"'"'s traffic information;
selecting one or more of the plurality traffic sensors to receive the set of rules based on at least one or more properties of the traffic sensor devices;
distributing the set of rules to one or more selected traffic sensor devices. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A central manager system creating and distributing different sets of network traffic rules to a plurality of traffic sensor devices, the central manager system comprising:
a master directory having means for storing rules, wherein the rules are based at least in part on network user information or network traffic profiles;
an analysis component having means for receiving and analyzing a user'"'"'s network traffic information from one of the plurality of traffic sensor devices, the user'"'"'s network traffic information including user information;
a control component having means for determining a set of rules based on the received user'"'"'s traffic information;
means for selecting one or more of the plurality traffic sensors to receive the set of rules based on at least one or more properties of the traffic sensor devices;
a distribution tool having means for distributing the set of rules to one or more selected traffic sensor devices. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
Specification