Patent · US Active

Information technology security assessment system

US9973524B2 · kind B2 · utility

40Cited by

11References

20Claims

0Family size

Assignee

BitSight Technologies, Inc. · US

Inventors

Stephen Boyer · Waltham, US
Nagarjuna Venna · Waltham, US
Megumi Ando · Cambridge, US

Key dates

Filing date	Nov 18, 2015
Grant date	May 15, 2018
Priority date	—
Expiry date	Nov 18, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/145
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method and system for creating a composite security rating from security characterization data of a third party computer system. The security characterization data is derived from externally observable characteristics of the third party computer system. Advantageously, the composite security score has a relatively high likelihood of corresponding to an internal audit score despite use of externally observable security characteristics. Also, the method and system may include use of multiple security characterizations all solely derived from externally observable characteristics of the third party computer system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.