US 12,413,528 B2
Computer-based systems for an intelligent identification of computing services and categories of services in use within a plurality of computing networks and methods of use thereof
Alex Gelman, Tel Aviv (IL); Adam Fershtman, Tel Aviv (IL); Yaron Benita, Tel Aviv (IL); Jeff Holleran, Tel Aviv (IL); Erez Yehezkel, Tel Aviv (IL); Artium Acheldaev, Tel Aviv (IL); Roni Rosen, Tel Aviv (IL); and Nadav Liebermann, Tel Aviv (IL)
Assigned to SECURING SAM LTD., Tel Aviv-Jaffa (IL)
Filed by SECURING SAM LTD., Tel Aviv-Jaffa (IL)
Filed on Jan. 4, 2024, as Appl. No. 18/404,066.
Claims priority of provisional application 63/478,422, filed on Jan. 4, 2023.
Prior Publication US 2024/0259320 A1, Aug. 1, 2024
Int. Cl. H04L 47/2408 (2022.01); H04L 41/046 (2022.01); H04L 61/45 (2022.01); H04L 61/4511 (2022.01)
CPC H04L 47/2408 (2013.01) [H04L 41/046 (2013.01); H04L 61/4511 (2022.05); H04L 61/457 (2022.05)] 19 Claims
OG exemplary drawing
 
1. A system, comprising:
a backend server configured to control at least one agent; and
a network device in communication with the backend server;
wherein the backend server is configured to:
analyze, by utilizing the at least one agent on the network device, network traffic associated with at least one service requested by at least one device in communication with the network device;
distinguish between a plurality of encrypted data packets and a plurality of unencrypted data packets in the network traffic;
when a first portion of the network traffic comprises the plurality of unencrypted data packets:
compare the plurality of unencrypted data packets in the network traffic associated with the at least one service to a service identification list;
determine, based on comparing the plurality of unencrypted data packets of the network traffic to the service identification list, a first type of the at least one service, a first category for the at least one service, or a combination thereof, associated with the plurality of unencrypted data packets;
when a second portion of the network traffic comprises the plurality of encrypted data packets:
convert data payloads of the plurality of encrypted data packets respectively into a plurality of greyscale images;
input the plurality of greyscale images into at least one machine learning model that is trained to:
recognize data patterns in the plurality of encrypted data packets using pixel values associated with each of the plurality of greyscale images and
determine, based on the data patterns, a second type of the at least one service, a second category for the at least one service, or any combination thereof, associated with the plurality of encrypted data packets;
provide an identification of the first type of the at least one service, the second type of the at least one service, the first category for the at least one service, the second category for the at least one service, or any combination thereof, to a service provider associated with the network device; and
provide, via the service provider and to the at least one device, network services corresponding to the first type of the at least one service, the second type of the at least one service, the first category for the at least one service, the second category for the at least one service, or any combination thereof.