Patent · US Active

Endpoint detection and response utilizing machine learning

US11494490B2 · kind B2 · utility

0Cited by

7References

20Claims

0Family size

Assignee

Cylance Inc. · US

Inventors

Rahul Kashyap · Foster City, US
Vadim Kotov · Sunnyvale, US
Samuel John Oswald · Portland, US
Homer Strong · Seattle, US

Key dates

Filing date	May 22, 2020
Grant date	Nov 8, 2022
Priority date	—
Expiry date	May 23, 2040

Classification

Technology area (CPC G)Physics
CPC primaryG06N3/006
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A plurality of events associated with each of a plurality of computing nodes that form part of a network topology are monitored. The network topology includes antivirus tools to detect malicious software prior to it accessing one of the computing nodes. Thereafter, it is determined that, using at least one machine learning model, at least one of the events is indicative of malicious activity that has circumvented or bypassed the antivirus tools. Data is then provided that characterizes the determination. Related apparatus, systems, techniques and articles are also described.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.