	US 11,876,693 B1
	System and method of application discovery using communication port signature in computer networks
Michael Bello, Mountain View, CA (US); and Elizaveta Tavastcherna, San Jose, CA (US)
Assigned to Virtual Instruments Worldwide, Inc., Palo Alto, CA (US)
Filed by Virtual Instruments Worldwide, Inc., Palo Alto, CA (US)
Filed on Jan. 11, 2023, as Appl. No. 18/153,296.
Claims priority of provisional application 63/476,162, filed on Dec. 19, 2022.
Int. Cl. H04L 43/065 (2022.01); H04L 43/16 (2022.01); H04L 43/062 (2022.01)

CPC H04L 43/065 (2013.01) [H04L 43/062 (2013.01); H04L 43/16 (2013.01)]

20 Claims

1. A system comprising:

at least one processor; and

memory including executable instructions that are executable by the at least one processor to:

identify a plurality of compute resources of an enterprise network, each of the plurality of compute resources including a plurality of ports associated with each compute resource, each of the plurality of ports being in communication with entities within the enterprise network and outside the enterprise network;

for each of the identified plurality of compute resources:

identify a subset of ports of the plurality of ports associated with a particular compute resource, the subset of ports being identified based on a number of connections of each port of the subset of ports and a port number of each port of the subset of ports, and the ports of the subset of ports being an N most frequently used ports of a particular compute resource of the plurality of compute resources;

determine a port signature associated with the particular compute resource based on the identified subset of ports; and

determine one or more applications of the enterprise network being executed by the particular compute resource based on the port signature associated with the particular compute resource; and

provide a report of the one or more applications of the enterprise network.