Patent · US Active

Inter-application dependency analysis for improving computer system threat detection

US11030308B2 · kind B2 · utility

1Cited by

1References

14Claims

0Family size

Assignee

NEC CORPORATION · JP

Inventors

Ding Li · Superior, US
Kangkook Jee · Princeton, US
Zhengzhang Chen · Princeton Junction, US
LuAn Tang · Pennington, US
Zhichun Li · Princeton, US

Key dates

Filing date	Jun 12, 2018
Grant date	Jun 8, 2021
Priority date	—
Expiry date	Mar 9, 2039

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method and system are provided for improving threat detection in a computer system by performing an inter-application dependency analysis on events of the computer system. The method includes receiving, by a processor operatively coupled to a memory, a Tracking Description Language (TDL) query including general constraints, a tracking declaration and an output specification, parsing, by the processor, the TDL query using a language parser, executing, by the processor, a tracking analysis based on the parsed TDL query, generating, by the processor, a tracking graph by cleaning a result of the tracking analysis, and outputting, by the processor and via an interface, query results based on the tracking graph.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.