Patent · US Active

Method and apparatus for computer intrusion detection

US9679131B2 · kind B2 · utility

3Cited by

1References

23Claims

0Family size

Assignee

Cybereason Inc. · US

Inventor

Yonatan Striem Amit · Gdera, IL

Key dates

Filing date	Mar 14, 2013
Grant date	Jun 13, 2017
Priority date	—
Expiry date	Jul 15, 2033

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method and apparatus for intrusion detection, the method comprising: receiving a description of a computerized system, the description comprising two or more entities, one or more attribute for each entity and one or more statistical rule related to relationship between the entities; receiving data related to activity of the computerized system, the data comprising two or more events; grouping the events into two or more groups associated with the entities; comparing the groups in accordance with the statistical rule, to identify a group not complying with any of the statistical rules.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.