ORDERING SECURITY INCIDENTS USING ALERT DIVERSITY
In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on values of a diversity metric computed for each incident from attribute values of an attribute, or multiple attributes, associated with the secur...
Saved in:
| Main Authors | , |
|---|---|
| Format | Patent |
| Language | English French German |
| Published |
22.11.2023
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Abstract | In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on values of a diversity metric computed for each incident from attribute values of an attribute, or multiple attributes, associated with the security alerts. In some embodiments, values of attribute-specific sub-metrics are determined for each incident and combined, e.g., upon conversion to p-values, into respective values of the overall diversity metric. Based on the ranking, an output may be generated. For example, a ranked list of the security incidents (or a subset thereof) may be communicated to a security administrator, and/or may trigger an automated mitigating action. |
|---|---|
| AbstractList | In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on values of a diversity metric computed for each incident from attribute values of an attribute, or multiple attributes, associated with the security alerts. In some embodiments, values of attribute-specific sub-metrics are determined for each incident and combined, e.g., upon conversion to p-values, into respective values of the overall diversity metric. Based on the ranking, an output may be generated. For example, a ranked list of the security incidents (or a subset thereof) may be communicated to a security administrator, and/or may trigger an automated mitigating action. |
| Author | BERTIGER, Anna Swanson FLOWERS, Michael Steven |
| Author_xml | – fullname: FLOWERS, Michael Steven – fullname: BERTIGER, Anna Swanson |
| BookMark | eNrjYmDJy89L5WQw9A9ycQ3y9HNXCHZ1Dg3yDIlU8PRz9nRx9QsJVggNBkk4-rgGhSi4eIa5BgUD5XkYWNMSc4pTeaE0N4OCm2uIs4duakF-fGpxQWJyal5qSbxrgImRuYWpmbGjoTERSgApQChY |
| ContentType | Patent |
| DBID | EVB |
| DatabaseName | esp@cenet |
| DatabaseTitleList | |
| Database_xml | – sequence: 1 dbid: EVB name: esp@cenet url: http://worldwide.espacenet.com/singleLineSearch?locale=en_EP sourceTypes: Open Access Repository |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Medicine Chemistry Sciences |
| DocumentTitleAlternate | ORDONNANCEMENT D'INCIDENTS DE SÉCURITÉ À L'AIDE D'UNE DIVERSITÉ D'ALERTE REIHUNG VON SICHERHEITSVORFÄLLEN MITHILFE VON ALARMDIVERSITÄT |
| ExternalDocumentID | EP4278563A1 |
| GroupedDBID | EVB |
| ID | FETCH-epo_espacenet_EP4278563A13 |
| IEDL.DBID | EVB |
| IngestDate | Fri Jul 19 12:49:47 EDT 2024 |
| IsOpenAccess | true |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English French German |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-epo_espacenet_EP4278563A13 |
| Notes | Application Number: EP20210831429 |
| OpenAccessLink | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20231122&DB=EPODOC&CC=EP&NR=4278563A1 |
| ParticipantIDs | epo_espacenet_EP4278563A1 |
| PublicationCentury | 2000 |
| PublicationDate | 20231122 |
| PublicationDateYYYYMMDD | 2023-11-22 |
| PublicationDate_xml | – month: 11 year: 2023 text: 20231122 day: 22 |
| PublicationDecade | 2020 |
| PublicationYear | 2023 |
| RelatedCompanies | Microsoft Technology Licensing, LLC |
| RelatedCompanies_xml | – name: Microsoft Technology Licensing, LLC |
| Score | 3.499939 |
| Snippet | In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on... |
| SourceID | epo |
| SourceType | Open Access Repository |
| SubjectTerms | ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION |
| Title | ORDERING SECURITY INCIDENTS USING ALERT DIVERSITY |
| URI | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20231122&DB=EPODOC&locale=&CC=EP&NR=4278563A1 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV1LT8JAEJ4QNOpNUSO-sgfTW2O7fUAPxMB2KzVSmrYQPBG3tAkXIFLj33d2U9CL3jY7yb6Sb2e-2Z0ZgAfPFubCMEukJZaQrhuqe45h667I7YUwcvqeS4f-KHKHE_tl5swasNzFwqg8oV8qOSIiKke8V-q-3vw4sXz1t3L7KJbYtX4Ksp6v1ewYjRWTUs0f9Hg89sdMYwxbWpT0ZEUJx7X6SJQO0IruSDDw6UAGpWx-a5TgFA5jHGxVnUGjWLXgmO0Kr7XgaFS_d2Ozht72HExkayr_E0k5myRh9kaQkIc-j7KUyOIZz6T_ypOM-OGUJynKL4AEPGNDHeee7_c55_F-ldYlNJH-F1dAClEaoot2Qik6duEKr_Ao4lQ4luN285K2of3nMNf_yG7gRB6YjKuj9Baa1cdncYcKthL36mi-AUDQesc |
| link.rule.ids | 230,309,783,888,25576,76882 |
| linkProvider | European Patent Office |
| linkToHtml | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV3dT8IwEL8QNOKbokb87IPZG3HrPtweiIG2yBQG2QbBJ2LHlvCCRGb89702gL7oW9NLru0l17vftXcHcBc40pqbVoGwxJYqdEObgWs6TU9mzlyaGX3LVEB_EHm9sfM8dacVWGxzYXSd0C9dHBE1KkN9L_V9vfoJYnH9t3J9Lxc49f7YTVvc2KBjdFYsSg3eaYnRkA-ZwRiOjChuqY4Srme3ESjtoYftq2YHYtJRSSmr3xalewT7I2S2LI-hki_rUGPbxmt1OBhs3rtxuFG99QlYiNZ0_SeSCDaOw_SVICAPuYjShKjmGU-k3RdxSng4EXGC9FMgXZGyXhPXnu3OOROj3S7tM6gi_M_PgeSyMKWPfkIhH5zck0EeUNRT6dqu52cFbUDjTzYX_9BuodZLB_1ZP4xeLuFQCU_l2FF6BdXy4zO_RmNbyhstpm8qmn23 |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Apatent&rft.title=ORDERING+SECURITY+INCIDENTS+USING+ALERT+DIVERSITY&rft.inventor=FLOWERS%2C+Michael+Steven&rft.inventor=BERTIGER%2C+Anna+Swanson&rft.date=2023-11-22&rft.externalDBID=A1&rft.externalDocID=EP4278563A1 |