Applying security policy based on behaviorally-derived user risk profiles
US8776168B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Oct 29, 2009 |
| Grant date | Jul 8, 2014 |
| Priority date | — |
| Expiry date | Jan 2, 2031 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/104
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Security policy changes can be implemented for a user or a user group based on behaviorally-derived risk information. A behavior-receiving module receives information about user behaviors for the user across various clients with which the user interacts. An attribute-receiving module receives one or more user attributes identified for a user. A profile-generating module generates a user risk profile for the user based on the received information about the user behaviors and the received user attributes. A user scoring module assigns the user a user risk score based on an evaluation of the user risk profile for the user. Similarly, groups of users can be given group risk scores, or users can have combined group/user scores. Finally, a remediation module automatically establishes a security policy requiring remediative actions for the user (or user group) based on the user risk score or combined score (or group score).
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.