Patent · US Active

Centralized event detection

US11556664B2 · kind B2 · utility

23Cited by

18References

22Claims

0Family size

Assignee

Sophos Limited · GB

Inventors

Joseph H. Levy · Eagle Mountain, US
Andrew J. Thomas · Woodstock, GB
Daniel Salvatore Schiappa · Bellevue, US
Kenneth D. Ray · Seattle, US

Key dates

Filing date	Apr 12, 2019
Grant date	Jan 17, 2023
Priority date	—
Expiry date	Apr 12, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/082
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A threat management facility stores a number of entity models that characterize reportable events from one or more entities. A stream of events from compute instances within an enterprise network can then be analyzed using these entity models to detect behavior that is inconsistent or anomalous for one or more of the entities that are currently active within the enterprise network.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.