18542967. Network Traffic Correlation Engine simplified abstract (Bank of America Corporation)
Contents
- 1 Network Traffic Correlation Engine
- 1.1 Organization Name
- 1.2 Inventor(s)
- 1.3 Network Traffic Correlation Engine - A simplified explanation of the abstract
- 1.4 Simplified Explanation
- 1.5 Potential Applications
- 1.6 Problems Solved
- 1.7 Benefits
- 1.8 Potential Commercial Applications
- 1.9 Possible Prior Art
- 1.10 Original Abstract Submitted
Network Traffic Correlation Engine
Organization Name
Inventor(s)
Jonathan Sheedy of Poynton (GB)
Steven E. Sinks of Scottsdale AZ (US)
Network Traffic Correlation Engine - A simplified explanation of the abstract
This abstract first appeared for US patent application 18542967 titled 'Network Traffic Correlation Engine
Simplified Explanation
The network traffic correlation engine described in the patent application monitors and correlates inbound and outbound connection information from host computers on a network to identify unmatched connections and generate alerts for further investigation.
- Monitors inbound and outbound connection information from host computers on a network
- Correlates connections between different hosts throughout the network
- Generates alerts for unmatched connections to initiate further investigation
- Provides mapping of communications to show possible start device and type of access provided by the connections
Potential Applications
This technology can be applied in network security systems to detect and investigate potentially malicious or unauthorized network activity.
Problems Solved
This technology helps in identifying and addressing security threats, unauthorized access, and potential data breaches on a network.
Benefits
The network traffic correlation engine enhances network security by detecting suspicious connections and providing insights into the origin and type of access provided by these connections.
Potential Commercial Applications
The technology can be utilized by cybersecurity companies, network monitoring firms, and organizations with large network infrastructures to enhance their security measures and protect sensitive data.
Possible Prior Art
One possible prior art could be traditional network monitoring tools that track network traffic but may not have the advanced correlation capabilities described in this patent application.
What are the potential limitations of this technology in real-world applications?
One potential limitation of this technology could be the processing power required to monitor and correlate large volumes of network traffic data in real-time.
How does this technology compare to existing network security solutions on the market?
This technology offers a more proactive approach to network security by correlating inbound and outbound connections to detect potential threats, whereas traditional network security solutions may rely on predefined rules and signatures to identify known threats.
Original Abstract Submitted
A network traffic correlation engine monitors inbound and/or outbound connection information received from on each host computer system on a network. Each host device on the network store data logs corresponding to information corresponding to communications sent by the device and received by the device. The network traffic correlation engine correlates connections between different hosts throughout the network. If the network traffic correlation engine identified unmatched outbound and inbound connections, the network traffic correlation engine generates an alert to initiate further investigation and may also provide a mapping of the communications showing a possible start device for the connection and/or a type of access that the connections may now be providing.
