ES2429396B1 - METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC - Google Patents

METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC Download PDF

Info

Publication number
ES2429396B1
ES2429396B1 ES201230419A ES201230419A ES2429396B1 ES 2429396 B1 ES2429396 B1 ES 2429396B1 ES 201230419 A ES201230419 A ES 201230419A ES 201230419 A ES201230419 A ES 201230419A ES 2429396 B1 ES2429396 B1 ES 2429396B1
Authority
ES
Spain
Prior art keywords
traffic data
monitoring network
detection module
network traffic
traffic
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn - After Issue
Application number
ES201230419A
Other languages
Spanish (es)
Other versions
ES2429396R1 (en
ES2429396A2 (en
Inventor
Gerardo GARCÍA DE BLAS
Pablo MONTES MORENO
Francisco Javier RAMÓN SALGUERO
Alfonso TIERNO SEPÚLVEDA
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Telefonica SA
Original Assignee
Telefonica SA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telefonica SA filed Critical Telefonica SA
Priority to ES201230419A priority Critical patent/ES2429396B1/en
Priority to PCT/EP2013/055266 priority patent/WO2013139678A1/en
Priority to ARP130100891 priority patent/AR090381A1/en
Publication of ES2429396A2 publication Critical patent/ES2429396A2/en
Publication of ES2429396R1 publication Critical patent/ES2429396R1/en
Application granted granted Critical
Publication of ES2429396B1 publication Critical patent/ES2429396B1/en
Withdrawn - After Issue legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/04Processing captured monitoring data, e.g. for logfile generation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/02Capturing of monitoring data
    • H04L43/028Capturing of monitoring data by filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/12Network monitoring probes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Mining & Analysis (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

Método y sistema para monitorización de tráfico de red.#El método comprende las etapas de:#a) adquirir con un módulo de captura, datos de tráfico de una línea de entrada y reenviar dichos datos de tráfico a un módulo de detección; y#b) recibir, dicho módulo de detección, dichos datos de tráfico para realizar un análisis de inspección profunda de datos de dichos datos de tráfico recibidos para realizar una detección de los mismos,#en el que dicha etapa a) comprende, adquirir dichos datos de tráfico de al menos dos de dichas líneas de entrada y clasificarlos de modo que dicho reenvío a dicho módulo de detección se realice en un orden cronológico para aquellos paquetes pertenecientes a un flujo específico de dichos datos de tráfico procedentes de dichas al menos dos líneas de entrada.#El sistema de la invención está previsto para implementar el método de la invención.Method and system for monitoring network traffic. # The method comprises the steps of: #a) acquiring with a capture module, traffic data from an input line and forwarding said traffic data to a detection module; and # b) receiving, said detection module, said traffic data to perform a deep inspection analysis of data of said traffic data received to perform a detection thereof, # in which said stage a) comprises, acquiring said traffic data of at least two of said input lines and classify them so that said forwarding to said detection module is performed in chronological order for those packets belonging to a specific flow of said traffic data from said at least two lines input # The system of the invention is intended to implement the method of the invention.

Description

imagen1image 1

imagen2image2

imagen3image3

imagen4image4

imagen5image5

imagen6image6

imagen7image7

imagen8image8

imagen9image9

imagen10image10

Claims (1)

imagen1image 1 imagen2image2
ES201230419A 2012-03-20 2012-03-20 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC Withdrawn - After Issue ES2429396B1 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
ES201230419A ES2429396B1 (en) 2012-03-20 2012-03-20 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC
PCT/EP2013/055266 WO2013139678A1 (en) 2012-03-20 2013-03-14 A method and a system for network traffic monitoring
ARP130100891 AR090381A1 (en) 2012-03-20 2013-03-19 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
ES201230419A ES2429396B1 (en) 2012-03-20 2012-03-20 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC

Publications (3)

Publication Number Publication Date
ES2429396A2 ES2429396A2 (en) 2013-11-14
ES2429396R1 ES2429396R1 (en) 2014-02-12
ES2429396B1 true ES2429396B1 (en) 2014-11-18

Family

ID=47988914

Family Applications (1)

Application Number Title Priority Date Filing Date
ES201230419A Withdrawn - After Issue ES2429396B1 (en) 2012-03-20 2012-03-20 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC

Country Status (3)

Country Link
AR (1) AR090381A1 (en)
ES (1) ES2429396B1 (en)
WO (1) WO2013139678A1 (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9998542B2 (en) * 2014-12-18 2018-06-12 Yokogawa Electric Corporation System and method for determining routing information
US10089163B2 (en) * 2015-06-17 2018-10-02 Vmware, Inc. Automatic discovery and prioritization of fault domains
CN108322403B (en) * 2018-01-31 2022-03-25 杭州迪普科技股份有限公司 Netflow flow shunting method and device
CN110808962B (en) * 2019-10-17 2022-04-29 奇安信科技集团股份有限公司 Malformed data packet detection method and device
CN113300981A (en) * 2020-02-21 2021-08-24 华为技术有限公司 Message transmission method, device and system
CN114338542A (en) * 2021-12-24 2022-04-12 国网天津市电力公司营销服务中心 Acquisition method and device for reducing network flow in power system
CN115314425B (en) * 2022-07-12 2024-02-23 清华大学 Network scanning device

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPWO2003103233A1 (en) * 2002-05-31 2005-10-06 富士通株式会社 Packet relay device, network connection device, packet relay method, recording medium, program

Also Published As

Publication number Publication date
ES2429396R1 (en) 2014-02-12
AR090381A1 (en) 2014-11-05
WO2013139678A1 (en) 2013-09-26
ES2429396A2 (en) 2013-11-14

Similar Documents

Publication Publication Date Title
ES2429396B1 (en) METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC
CL2020000890A1 (en) System and method for the detection of an object manipulated by machine learning.
PH12018500934A1 (en) Service call information processing method and device
WO2014025621A3 (en) STATISTICS AND FAILURE DETECTION IN A NETWORK ON A CHIP (NoC) NETWORK
WO2014015194A3 (en) Methods for detecting and measuring aggregation
AR105191A1 (en) SYSTEMS AND METHODS FOR IMAGE CAPTURE AND AGRICULTURAL FIELD ANALYSIS
RU2017103901A (en) RADIO BEACON DETECTION DEVICE
AR105220A1 (en) SYSTEM FOR DETECTING A CONDITION OF THE AIR FILTER, IN PARTICULAR FOR COMBUSTION ENGINES
ECSP15020350A (en) NETWORK DRIVEN SYSTEM SELECTION BY USE OF WIRELESS DEVICE INPUT
BR112015001228A2 (en) computer-implemented methods for processing and reporting test results from a medical device, computer readable storage media, and system for reporting medical test results.
GB2512685A (en) Detection and filtering of malware based on traffic observations made in a distributed mobile traffic management system
EP2706721A3 (en) Detection of infected network devices via analysis of responseless outgoing network traffic
BR112016006909A2 (en) processes for producing a report and optimizing the performance of a pumping system
ES2610105T3 (en) Method and lubrication system of consumers to be supervised through their lubricant
CL2014001343A1 (en) An infrastructure management system comprising a plurality of network devices, a connectivity manager connected to each of the plurality of devices, a database connected to the connectivity manager and an infrastructure management device; said infrastructure management device; and method to process a work order.
FR3007841B1 (en) METHOD FOR DETECTING A FAILURE OF AT LEAST ONE SENSOR PRESENTED ON AN AIRCRAFT, USING A BARO-INERTIAL LOOP AND ASSOCIATED SYSTEM
FR3011105B1 (en) METHOD FOR IDENTIFYING FAILURE EQUIPMENT IN AN AIRCRAFT
BR112013017073A2 (en) apparatus for detecting asymmetry in an object, method for detecting asymmetry, computer readable medium having a software and system for detecting brain diseases.
BR112015002983A2 (en) system and method for analyzing an oil / gas separation process.
BR112018010161A8 (en) system and method for evaluating a detector on an imaging device
CL2015002091A1 (en) System and method for counting zooplankton.
EP2804167A3 (en) Methods and systems for providing taxiway stop bar information to an aircrew
FR3007162B1 (en) METHOD AND DEVICE FOR DETECTING ANOMALY ON AN AIRCRAFT
FR3007840B1 (en) METHOD FOR DETECTING A FAILURE OF AT LEAST ONE SENSOR PRESENTED ON AN AIRCRAFT USING AN ANEMO-INERTIAL LOOP AND ASSOCIATED SYSTEM
CN107889551A8 (en) Anomaly detection for identifying malware

Legal Events

Date Code Title Description
FG2A Definitive protection

Ref document number: 2429396

Country of ref document: ES

Kind code of ref document: B1

Effective date: 20141118

FA2A Application withdrawn

Effective date: 20150325