Patent · US Active

Method and system for automated incident response

US9807120B2 · kind B2 · utility

3Cited by

3References

20Claims

0Family size

Assignee

ACCENTURE GLOBAL SERVICES LIMITED · IE

Inventors

Matthew Carver · Fairfax, US
Louis William DiValentin · Fairfax, US
Michael L. Lefebvre · Arlington, US
Elvis Hovor · Clarksburg, US
David William Rozmiarek · Falls Church, US

Key dates

Filing date	Jun 29, 2016
Grant date	Oct 31, 2017
Priority date	—
Expiry date	Jun 29, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1441
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Methods, systems, and apparatus, including computer programs encoded on computer storage media, for implementing a response to one or more security incidents in a computing network. One of the methods includes identifying a security incident based on detecting one or more indicators of compromise associated with the security incident, comparing the security incident with a predefined ontology that maps the security incident to one or more courses of action, selecting a response strategy that includes one or more of the courses of action, and implementing the response strategy as an automated response.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.