18583370. AUTOMATICALLY DETECTING AUTHORIZED REMOTE ADMINISTRATION SESSIONS IN A NETWORK MONITORING SYSTEM simplified abstract (Cisco Technology, Inc.)
Contents
- 1 AUTOMATICALLY DETECTING AUTHORIZED REMOTE ADMINISTRATION SESSIONS IN A NETWORK MONITORING SYSTEM
- 1.1 Organization Name
- 1.2 Inventor(s)
- 1.3 AUTOMATICALLY DETECTING AUTHORIZED REMOTE ADMINISTRATION SESSIONS IN A NETWORK MONITORING SYSTEM - A simplified explanation of the abstract
- 1.4 Simplified Explanation
- 1.5 Key Features and Innovation
- 1.6 Potential Applications
- 1.7 Problems Solved
- 1.8 Benefits
- 1.9 Commercial Applications
- 1.10 Prior Art
- 1.11 Frequently Updated Research
- 1.12 Questions about Remote Administration Security
- 1.13 Original Abstract Submitted
AUTOMATICALLY DETECTING AUTHORIZED REMOTE ADMINISTRATION SESSIONS IN A NETWORK MONITORING SYSTEM
Organization Name
Inventor(s)
David Mcgrew of Poolesville MD (US)
Blake Harrell Anderson of Chapel Hill NC (US)
AUTOMATICALLY DETECTING AUTHORIZED REMOTE ADMINISTRATION SESSIONS IN A NETWORK MONITORING SYSTEM - A simplified explanation of the abstract
This abstract first appeared for US patent application 18583370 titled 'AUTOMATICALLY DETECTING AUTHORIZED REMOTE ADMINISTRATION SESSIONS IN A NETWORK MONITORING SYSTEM
Simplified Explanation
The patent application describes a service that analyzes network traffic data during remote administration sessions to detect malicious activity.
- The service determines if the traffic data is from a trusted administrator or potentially harmful.
- It flags authorized traffic from trusted administrators and assesses the rest using a machine learning-based classifier.
- The goal is to identify and prevent malicious activity during remote administration sessions.
Key Features and Innovation
- Analysis of network traffic data during remote administration sessions.
- Detection of malicious activity using machine learning-based traffic classification.
- Flagging of authorized traffic from trusted administrators.
- Prevention of potential security threats during remote administration sessions.
Potential Applications
This technology can be applied in various industries such as cybersecurity, IT management, remote support services, and network monitoring.
Problems Solved
- Detection of malicious activity during remote administration sessions.
- Prevention of security breaches and unauthorized access to client devices.
- Enhanced monitoring and control of network traffic during remote administration.
Benefits
- Improved security and protection of client devices.
- Efficient identification and mitigation of potential threats.
- Enhanced trust and reliability in remote administration services.
Commercial Applications
Title: Enhanced Security for Remote Administration Services This technology can be utilized by cybersecurity firms, IT service providers, remote support companies, and network monitoring solutions. It offers enhanced security measures for remote administration sessions, ensuring the protection of client devices and data.
Prior Art
Further research can be conducted in the field of network security, machine learning-based traffic analysis, and remote administration protocols to explore existing technologies and innovations related to this patent application.
Frequently Updated Research
Stay updated on advancements in network security, machine learning algorithms for traffic analysis, and remote administration tools to enhance the effectiveness and efficiency of this technology.
Questions about Remote Administration Security
How does this technology improve the security of remote administration sessions?
This technology enhances security by analyzing network traffic data, flagging authorized traffic, and using machine learning to detect potential threats during remote administration sessions.
What are the key benefits of using a machine learning-based traffic classifier in remote administration security?
Using a machine learning-based classifier allows for more accurate and efficient detection of malicious activity, improving the overall security of remote administration sessions.
Original Abstract Submitted
In one embodiment, a service receives administration traffic data in a network associated with a remote administration session in which a control device remotely administers a client device. The service analyzes the administration traffic data to determine whether any portion of the administration traffic data is resulting from an administration session involving a trusted administrator. The service flags a first portion of the administration traffic data as authorized when the first portion of the administration traffic data is determined to result from an administration session involving a trusted administrator, and a second portion of the administration traffic data is non-flagged. The service assesses the second portion of the administration traffic data using a machine learning-based traffic classifier to determine whether the second portion of the administration traffic data is malicious.
