US 12,328,233 B2
Fingerprinting assisted by similarity-based semantic clustering
Elisa Costante, Eindhoven (NL); Daniel Ricardo dos Santos, Rotterdam (NL); and Guillaume François Christophe Dupont, Eindhoven (NL)
Assigned to Forescout Technologies, Inc., San Jose, CA (US)
Filed by FORESCOUT TECHNOLOGIES, INC., San Jose, CA (US)
Filed on Apr. 18, 2024, as Appl. No. 18/639,541.
Application 18/639,541 is a continuation of application No. 17/362,770, filed on Jun. 29, 2021, granted, now 12,003,383.
Claims priority of provisional application 63/181,908, filed on Apr. 29, 2021.
Prior Publication US 2024/0291721 A1, Aug. 29, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 41/14 (2022.01); G06N 5/04 (2023.01); G06N 20/00 (2019.01); H04L 41/12 (2022.01)
CPC H04L 41/14 (2013.01) [G06N 5/04 (2013.01); G06N 20/00 (2019.01); H04L 41/12 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
determining a plurality of entity attributes for entity classification;
monitoring a plurality of entities coupled to a network;
identifying values for each entity attribute of the plurality of entity attributes for the plurality of entities, wherein each value has a corresponding type such that at least two values have different types;
determining a semantic similarity, between the plurality of entities, of the values for each entity attribute based on a plurality of preconfigured similarity functions where each similarity function in the plurality of preconfigured similarity functions corresponds to a different type of a value in the values for each entity attribute;
clustering, by a processing device, the plurality of entities into a plurality of entity clusters based on the semantic similarity of the values for each of the plurality of entity attributes for the plurality of entities; and
identifying, based on the clustering, one or more features of at least the plurality of entity clusters that exceed a similarity threshold for generating a new fingerprinting rule.