Patent · US Active

Characterizing behavior anomaly analysis performance based on threat intelligence

US10728264B2 · kind B2 · utility

2Cited by

2References

20Claims

0Family size

Assignee

Micro Focus LLC · US

Inventors

Sandeep Bhatt · Madison, US
Pratyusa K. Manadhata · Princeton, US
Tomas Sander · New York, US

Key dates

Filing date	Feb 15, 2017
Grant date	Jul 28, 2020
Priority date	—
Expiry date	Mar 27, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A technique includes receiving data identifying behavior anomalies that are exhibited by entities that are associated with a computer system. The technique includes associating the behavior anomalies with contexts based at least in part on threat intelligence to provide modified anomalies. The threat intelligence associates the contexts with indicators of potential breach. The technique includes characterizing the behavior anomaly identification based at least in part on the threat intelligence. The characterization includes applying machine learning to features of the modified anomalies to classify the identified behavior anomalies.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.