Patent · US Active

Method and system for model-based event-driven anomalous behavior detection

US10929258B1 · kind B1 · utility

7Cited by

0References

16Claims

0Family size

Assignee

Innovative Defense Technologies, LLC · US

Inventors

Bernard Gauf · Vienna, US
Michael Bryman · Huntingdon Valley, US
Claire Moore · Bethesda, US
Samuel Nicoll · Oakton, US
David Ponticello · Medford, US

Key dates

Filing date	Dec 21, 2018
Grant date	Feb 23, 2021
Priority date	—
Expiry date	Feb 19, 2039

Classification

Technology area (CPC G)Physics
CPC primaryG06N7/01
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An embodiment of the present invention is directed to an optimal event-driven anomaly detection scheme. The present invention recognizes that anomaly detection based solely on rules-based (deterministic) or probabilistic analysis alone are insufficient to capture and respond to ever evolving, highly sophisticated threats that tend to persist within a system undetected for long periods of time. According to an embodiment of the present invention, a tiered detection scheme composed of behavioral analysis and machine-learned probabilistic system behaviors provides an optimal level of sensitivity to detect and respond to threats, and further limits the number of false positives identified.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.