Patent · US Active

Graph-based approach to deterring persistent security threats

US8813234B1 · kind B1 · utility

58Cited by

2References

20Claims

0Family size

Assignee

EMC Corporation · US

Inventors

Kevin D. Bowers · Melrose, US
Marten Van Dijk · Eindhoven, NL
Ari Juels · Brookline, US
Alina Oprea · Arlington, US
Ronald L. Rivest · Arlington, US
Nikolaos Triandopoulos · Arlington, US

Key dates

Filing date	Jun 29, 2011
Grant date	Aug 19, 2014
Priority date	—
Expiry date	Oct 27, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1408
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A processing device comprises a processor coupled to a memory and implements a graph-based approach to protection of a system comprising information technology infrastructure from a persistent security threat. Attack-escalation states of the persistent security threat are assigned to respective nodes in a graph, and defensive costs for preventing transitions between pairs of the nodes are assigned to respective edges in the graph. A minimum cut of the graph is computed, and a defensive strategy is determined based on the minimum cut. The system comprising information technology infrastructure subject to the persistent security threat is configured in accordance with the defensive strategy in order to deter the persistent security threat.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.