Patent · US Active

Cybersecurity incident detection systems and techniques

US10972489B2 · kind B2 · utility

0Cited by

3References

22Claims

0Family size

Assignee

Carbon Black, Inc. · US

Inventors

Jason A. Garman · Ashburn, US
Benjamin Johnson · Brooklyn Park, US
Jason McFarland · Fair Oaks Ranch, US

Key dates

Filing date	Sep 14, 2017
Grant date	Apr 6, 2021
Priority date	—
Expiry date	Mar 6, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1416
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Behavioral baselines for a computer system may be accurately and efficiently established by (1) monitoring occurrences on the computer system, (2) determining, based on security rules or heuristics, which of the observed occurrences are associated with potential security risks, (3) identifying patterns of activity based on the suspicious occurrences, and (4) prompting a user to indicate whether the observed patterns of suspicious activity are expected or unexpected. Behavior baselines established in this manner can then be used to differentiate between expected and unexpected patterns of activity on the computer system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.