NBAD (Network Behavior Anomaly Detection) the technology not to need Patten to detect worm

Very many Netflow report product when very big network current capacity, probably is the 150Mbps demonstration report form speed is very slow in MRTG chart, its main reason is using SQL or My SQL collects packet, if voluntarily develops develops the algorithm to collect network packet then Netflow the report demonstration report form speed can be very quick; Example 1.Arbor Network Corporation's Peak Flow X product 2.Lancope Corporation's Stealth Watch product 3.Mazu Network Corporation's Mazu Profiler product 4.Curelan Corporation's Flowview the FM product, first three are the American merchants, fourth is the Taiwan merchant price comparison preferential benefit.

Curelan company uses NBAD (Network Behavior Anomaly Detection) the technology not to need Patten to detect worm. the IEEE association to announce NBAD in 2000 (Netflow Behavior Anomaly Dection) the way to detect the worm, this way is does not need Patten signature.

PS: Does not want not to believe the Taiwan research and development software the ability, web site www.curelan.com; Live demo:http://140.130.102.146, chooses "flowview" the project to be able again to appear "user=user" & "password=user".