System and method for evaluating security entities in a computing environment
US10362062B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Apr 22, 2016 |
| Grant date | Jul 23, 2019 |
| Priority date | — |
| Expiry date | Jan 24, 2037 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/145
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
System and method to evaluate a plurality of security entities in a network environment is disclosed. Communication between a user computer and a destination computer is monitored by a security appliance. Selective information from the communication is extracted by the security appliance. The selective information is indicative of a value for one or more attributes of the plurality of security entities. A first value indicative of occurrence of each of the values for each of the attributes is generated. A second value indicative of occurrence of each of the values for each of the attributes for each of the security entity is generated. A third value is calculated based on the first value and the second value for each of the attribute value for each of the security entity, wherein the third value is indicative of significance of the value of the attribute for the security entity.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.