Information system security based on threat vectors
US9015846B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Apr 12, 2013 |
| Grant date | Apr 21, 2015 |
| Priority date | — |
| Expiry date | Apr 12, 2033 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/554
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A security system is provided. The system comprises a computer system, a memory accessible to the computer system, a data store, and an application. The data store comprises a threat catalog, wherein the threat catalog comprises a plurality of threat vectors, each threat vector comprising a plurality of fields, wherein each field is constrained to carry a value selected from a predefined list of enumerated values. The application is stored in the memory and, when executed by the computer system receives a threat report, wherein the threat report comprises an identification of at least one threat vector, determines a correlation between the at least one threat vector received in the threat report with the threat vectors comprising the threat catalog, and, based on the correlation, sends a notification to a stakeholder in an organization under the protection of the security system.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.