Patent · US Active

Threat emulation framework

US11336690B1 · kind B1 · utility

1Cited by

9References

21Claims

0Family size

Assignee

National Technology & Engineering Solutions of Sandia, LLC · US

Inventors

Vincent Urias · Albuquerque, US
David Jakob Fritz · Fort Collins, US
Michael C. Kunz · Seattle, US
Caleb Loverro · Albuquerque, US

Key dates

Filing date	Nov 15, 2019
Grant date	May 17, 2022
Priority date	—
Expiry date	Aug 3, 2040

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45575
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method for emulating threats in virtual network computing environment is provided. The method comprises creating a number of virtual machines in the virtual network computing environment. A number of threat actors are emulated, wherein each threat actor comprises a number of threat artifacts that form a sequence of attack steps against the virtual network computing environment. The threat actors are then deployed against the virtual network computing environment. Behavioral data about actions of the threat actors in the virtual network computing environment is collected, as is performance data about the virtual network computing environment in response to the threat actors. The collected behavioral and performance data is then presented to a user via an interface.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.