Patent · US Active

System and method for network intrusion detection anomaly risk scoring

US9866578B2 · kind B2 · utility

4Cited by

1References

28Claims

0Family size

Assignee

AlphaSix Corp. · US

Inventor

Stephen Moore · Las Vegas, US

Key dates

Filing date	Dec 3, 2014
Grant date	Jan 9, 2018
Priority date	—
Expiry date	Dec 3, 2034

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1416
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems, methods, and computer-readable storage media for scoring network anomaly risk. A system identifies a baseline usage for a facet of a server and determines, for the facet, a normal range of use based on the baseline usage. The system also determines an abnormal range of use based on the baseline usage. When actual usage data is available, the system determines whether the usage data corresponds to the normal range of use or the abnormal range of use, and calculates a facet score based on the abnormality value.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.