Patent · US Active

Recommending a set of malicious activity detection rules in an automated, data-driven manner

US9690937B1 · kind B1 · utility

22Cited by

14References

20Claims

0Family size

Assignee

EMC IP Holding Company LLC · US

Inventors

Zohar Duchin · Herzliya, IL
Alon Kaufman · Herut, IL
Alex Zaslavsky · Brookline, US
Martin Rosa · Keyano, CA
Luan Nguyen · East Lansing, US

Key dates

Filing date	Mar 30, 2015
Grant date	Jun 27, 2017
Priority date	—
Expiry date	May 17, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2139
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A computer-implemented technique provides rules for use in a malicious activity detection system. The technique involves performing evaluation operations on a plurality of malicious activity detection rules. The technique further involves ranking the plurality of malicious activity detection rules in an order based on results of the evaluation operations (e.g., sorting the rules systematically in an order based on measures such as precision, recall, correlation to other rules already in use, etc.). The technique further involves, based on the order of the plurality of malicious activity detection rules, providing a malicious activity detection rule report which recommends a set of malicious activity detection rules of the plurality of malicious activity detection rules for use in the malicious activity detection system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.