Patent · US Active

Strategies for investigating and mitigating vulnerabilities caused by the acquisition of credentials

US8380841B2 · kind B2 · utility

6Cited by

7References

20Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

John Dunagan · Bellevue, US
Gregory D. Hartrell · Sammamish, US
Daniel R. Simon · Redmond, US

Key dates

Filing date	Dec 7, 2006
Grant date	Feb 19, 2013
Priority date	—
Expiry date	Sep 11, 2030

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2101
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A strategy is described for assessing and mitigating vulnerabilities within a data processing environment. The strategy collects access data that reflects actual log-in behavior exhibited by users in the environment. The strategy also collects rights data that reflects the rights possessed by one or more administrators within the environment. Based on the access data and rights data, the strategy identifies how a user or other entity that gains access to one part of the environment can potentially compromise additional parts of the environment. The strategy can recommend and implement steps aimed at reducing any identified vulnerabilities.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.