Network flow and packet analysis is the ultimate data source for understanding network performance trends, organization productivity, and the detection of abnormal and malicious activity.
The traditional approach to network flow/packets analysis is based on deterministic algorithms. Good examples are setting the threshold for utilization at a static value (75% for example) or looking at very particular patterns in the flow to detect a known virus or attack.
A deterministic approach, while efficient to a certain degree, cannot adopt itself to the dynamic nature of the flows going through the network. Patterns in these flows are often too complex to be efficiently detected by strict algorithms based on traditional logic.