Real-time evaluation of impact- and state-of-compromise due to vulnerabilities described in enterprise threat detection security notes

Assignee

• SAP SE · DE

Inventors

• Hartwig Seifert · Elchesheim-Illingen, DE
• Nan Zhang · San Diego, US
• Harish Mehta · Wiesenbach, DE
• Florian Chrosziel · St. Leon-Rot, DE
• Hristina Dinkova · Schallstadt, DE
• Thomas Kunz · Neckargemünd, DE
• Lin Luo · Sugar Land, US
• Rita Merkel · Ilvesheim, DE
• Wei-Guo Peng · Dallau, DE
• Eugen Pritzkau · Wiesloch, DE
• Marco Rodeck · Maikammer, DE

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/034
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

Published enterprise threat detection (ETD) security notes are accessed in a computer data store. Applicability of the published ETD security notes are determined for an information technology computing (IT) landscape. A determination is made that a particular applicable ETD security note has not yet been implemented in the IT computing landscape. Aggregated impact of compromise (IoC) and state of compromise (SoC) values associated with the published ETD security note are analyzed and a computing system patching action is performed based on the aggregated IoC and SoC values.