Patent · US Active

Detection of attacks in the cloud by crowd sourcing security solutions

US10911478B2 · kind B2 · utility

0Cited by

7References

11Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Dotan Patrich · Rishon LeZion, IL
Vlad Korsunsky · Lod, IL
Maya Maimon · Even Yehuda, IL
Moshe Israel · Ramat Gan, IL
Oran Brill · Holon, IL
Tomer Teller · Nes Ziona, IL

Key dates

Filing date	Jun 29, 2017
Grant date	Feb 2, 2021
Priority date	—
Expiry date	Dec 2, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Methods are provided for building and tuning a correlation data structure. The correlation data structure includes relationship correlations with relationship scores that reflect the level of correlation between alert conditions and feature set events that occurred in a machine. Each relationship correlation further includes a time of influence associated with the times of occurrence for each alert condition and corresponding feature set event. The correlation data structure is built and tuned using sourcing to leverage the alert conditions and feature set events on each machine for all machines in the network. Methods are also provided to use the correlation data structure to monitor the machines in a network, detect feature set events, and detect if alert conditions correlated with those feature set events are likely to occur. The methods further provide for mitigating those alert conditions.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.