System, method and computer program product for policy-based billing in a network architecture
First Claim
Patent Images
1. A method for policy-based billing for a distributed network session, comprising:
- (a) receiving a plurality of packets at a plurality analyzers;
(b) aggregating the plurality of packets;
(c) analyzing the plurality of packets to identify a plurality of flows;
(d) identifying a session associated with the flows;
(e) identifying at least one application associated with the session;
(f) reconstructing the session utilizing the identified application, the session reconstruction being carried out at a plurality of collaborating nodes;
(g) identifying a user associated with the session;
(h) determining a policy; and
(i) billing the user the session in accordance with the policy;
wherein the session reconstruction is performed at a first analyzer, andupon a successful session reconstruction on the first analyzer, a first message is sent to at least one second analyzer separate from the first analyzer, the first message corresponding to session data, andupon an unsuccessful session reconstruction on the first analyzer, one or more messages is sent to the second analyzer, the one or more messages including unrecognized data.
2 Assignments
0 Petitions
Accused Products
Abstract
A system, method and computer program product are provided for policy-based billing for a network session. Initially, a plurality of packets is received by a plurality of analyzers. Thereafter, the packets are aggregated. Next, the plurality of packets is analyzed to identify a plurality of flows and an session associated with the flows. At least one application associated with the session is also identified. The session is then reconstructed utilizing the identified application. A user associated with the session is then identified along with a policy. The user is then billed for the session in accordance with the policy.
40 Citations
31 Claims
-
1. A method for policy-based billing for a distributed network session, comprising:
-
(a) receiving a plurality of packets at a plurality analyzers; (b) aggregating the plurality of packets; (c) analyzing the plurality of packets to identify a plurality of flows; (d) identifying a session associated with the flows; (e) identifying at least one application associated with the session; (f) reconstructing the session utilizing the identified application, the session reconstruction being carried out at a plurality of collaborating nodes; (g) identifying a user associated with the session; (h) determining a policy; and (i) billing the user the session in accordance with the policy; wherein the session reconstruction is performed at a first analyzer, and upon a successful session reconstruction on the first analyzer, a first message is sent to at least one second analyzer separate from the first analyzer, the first message corresponding to session data, and upon an unsuccessful session reconstruction on the first analyzer, one or more messages is sent to the second analyzer, the one or more messages including unrecognized data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A computer program product embodied on a computer readable medium, which when executed by a computer causes the computer to perform a method for policy-based billing for a distributed network session, comprising:
-
(a) computer code for receiving a plurality of packets at a plurality of analyzers; (b) computer code for aggregating the plurality of packets; (c) computer code for analyzing the plurality of packets to identify a plurality of flows; (d) computer code for identifying a session associated with the flows; (e) computer code for identifying at least one application associated with the session; (f) computer code for reconstructing the session utilizing the identified application, the session reconstruction being carried out at a plurality of collaborating nodes; (g) computer code for identifying a user associated with the session; (h) computer code for determining a policy; and (i) computer code for billing the user for the session in accordance with the policy; wherein the session reconstruction is performed at a first analyzer, and upon a successful session reconstruction on the first analyzer, a first message is sent to at least one second analyzer separate from the first analyzer, the first message corresponding to session data, and upon an unsuccessful session reconstruction on the first analyzer, one or more messages is sent to the second analyzer, the one or more messages including unrecognized data. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A method for policy-based billing for a distributed network session, comprising:
-
(a) receiving a plurality of packets at a plurality of analyzers; (b) aggregating the plurality of packets; (c) analyzing the plurality of packets to identify at least a first flow; (d) identifying a session associated with the first flow; (e) identifying additional flows in the plurality of packets associated with the session; (f) filtering the packets for removing packets unrelated to the session; (g) identifying at least one application associated with the session; (h) reconstructing the session utilizing the identified application, the session reconstruction being carried out as a plurality of collaborating nodes; (i) identifying a user associated with the session; (j) identifying a policy; (k) gathering application events associated with the session based on the policy; (l) assigning a significance to the application events based on the policy; (m) determining billing information for the session using the application events in accordance with the policy; (n) outputting a report including the billing information in accordance with the policy; (o) restricting tasks of the user in accordance with the policy; and (p) executing actions in response to the application events in accordance with the policy; wherein the session reconstruction is performed at a first analyzer, and upon a successful session reconstruction on the first analyzer, a first message is sent to at least one second analyzer separate from the first analyzer, the first message corresponding to session data, and upon an unsuccessful session reconstruction on the first analyzer, one or more messages is sent to the second analyzer, the one or more messages including unrecognized data.
-
Specification