Systems and methods for dynamic threat assessment
US7313695B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 23, 2004 |
| Grant date | Dec 25, 2007 |
| Priority date | — |
| Expiry date | Mar 9, 2026 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/577
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
The threat probability of events generated by a security device on a computer network is assessed by comparing the threat probability to a global threat probability. An abstract data type is used to describe how the events are combined to form a threat. If an event matches an unpopulated member of an instance of an abstract data type, the event is added to the instance and the probability of the instance is computed. If the probability of the instance is greater than a global threat probability, a dynamic threat assessment event is generated. A system for dynamically assessing threats to computers and computer networks system includes at least one security device that generates events, an event collection database, policy configuration information, and a dynamic threat assessment engine.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.