Network Telemetry with Byte Distribution and Cryptographic Protocol Data Elements

In one embodiment, a method includes receiving a traffic flow including a plurality of packets encrypted using a cryptographic protocol, determining cryptographic protocol data of the traffic flow, and transmitting telemetry data of the traffic flow including the cryptographic protocol data. In anot...

Full description

Saved in:
Bibliographic Details
Main Authors Anderson, Blake Harrell, Kendler, Alison, McGrew, David Arthur
Format Patent
LanguageEnglish
Published 13.05.2021
Subjects
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
SELECTING
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online AccessGet full text

Cover

More Information
Summary:In one embodiment, a method includes receiving a traffic flow including a plurality of packets encrypted using a cryptographic protocol, determining cryptographic protocol data of the traffic flow, and transmitting telemetry data of the traffic flow including the cryptographic protocol data. In another embodiment, a method includes receiving telemetry data of a traffic flow including a plurality of packets encrypted using a cryptographic protocol, the telemetry data including cryptographic protocol data of the traffic flow, classifying the traffic flow based on the cryptographic protocol data using a machine learning classifier; and taking a remedial action with respect to the traffic flow based on the classification of the traffic flow.
Bibliography:Application Number: US202117154053