| http://www.w3.org/ns/prov#value | - A method for detecting malicious communication traffic at an autonomous system domain comprising: aggregating a plurality of flows traversing at least one routing node in the autonomous system domain into a plurality of flow aggregates, each of said flows including incoming packets having a common source address and outgoing packets having a common destination address, each of said flow aggregates
|
