Patent · US Active

Endpoint detection and response attack process tree auto-play

US11055408B2 · kind B2 · utility

1Cited by

2References

15Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Dara P. Murphy · Galway, IE
Michael J. Ryan · Claregalway, IE

Key dates

Filing date	Nov 30, 2018
Grant date	Jul 6, 2021
Priority date	—
Expiry date	Aug 2, 2039

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer receives one or more security alerts. The computer selects a subset of the one or more security alerts for processing. The computer executes one or more queries automatically, based on the subset of the one or more security alerts. The computer identifies one or more related processes, wherein the one or more related processes are related to information contained within the subset of the one or more security alerts. The computer displays a full flow of a malware attack, wherein the full flow includes the information contained within the subset of the one or more security alerts and the one or more related processes.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.