US 12,250,236 B2
Collecting endpoint data and network data to detect an anomaly
Michael Benjamin, Broomfield, CO (US)
Assigned to Level 3 Communications, LLC, Denver, CO (US)
Filed by Level 3 Communications, LLC, Broomfield, CO (US)
Filed on May 25, 2022, as Appl. No. 17/664,920.
Claims priority of provisional application 63/231,346, filed on Aug. 10, 2021.
Prior Publication US 2023/0051880 A1, Feb. 16, 2023
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1425 (2013.01) [H04L 63/0227 (2013.01); H04L 63/1433 (2013.01)] 16 Claims
OG exemplary drawing
 
1. A method, comprising:
receiving endpoint data of a computing device from the computing device, the endpoint data comprising activities and/or events that occurred on the computing device;
receiving network data from a network access device, the network data being associated with the computing device;
combining the endpoint data and the network data to generate event data associated with the computing device, the event data including a sequence of events between the computing device and the network access device;
analyzing the event data associated with the computing device to detect an anomaly; and
initiating a mitigation procedure to address the anomaly.