Probabilistic cyber threat recognition and prediction

Assignee

• RAYTHEON BBN TECHNOLOGIES CORP. · US

Inventors

• Christopher R. Eck · Palm Harbor, US
• Suzanne P. Hassell · Clearwater, US
• Brian J. Mastropietro · Springfield, US
• Paul F. Beraud, III · Parrish, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/1433
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

Generally discussed herein are systems, apparatuses, or processes to recognize that a cyber threat exists or predict a future track of a cyber threat in a network. According to an example, a process for recognizing a cyber threat can include (1) determining a network layout of a network based on received network layout data, (2) receiving cyber sensor data indicating actions performed on the network, (3) calculating a first score associated with the cyber sensor data indicating that a cyber threat is present in the network by comparing a cyber threat profile of the cyber threat that details actions performed by the cyber threat to actions indicated by the cyber sensor data, (4) determining whether the calculated first score is greater than a specified threshold, or (5) determining that the cyber threat is present in response to determining the calculated first score is greater than the specified threshold.