ORDERING SECURITY INCIDENTS USING ALERT DIVERSITY
In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on values of a diversity metric computed for each incident from attribute values of an attribute, or multiple attributes, associated with the secur...
Saved in:
| Main Authors | , |
|---|---|
| Format | Patent |
| Language | English |
| Published |
05.09.2024
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Abstract | In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on values of a diversity metric computed for each incident from attribute values of an attribute, or multiple attributes, associated with the security alerts. In some embodiments, values of attribute-specific sub-metrics are determined for each incident and combined, e.g., upon conversion to p-values, into respective values of the overall diversity metric. Based on the ranking, an output may be generated. For example, a ranked list of the security incidents (or a subset thereof) may be communicated to a security administrator, and/or may trigger an automated mitigating action. |
|---|---|
| AbstractList | In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on values of a diversity metric computed for each incident from attribute values of an attribute, or multiple attributes, associated with the security alerts. In some embodiments, values of attribute-specific sub-metrics are determined for each incident and combined, e.g., upon conversion to p-values, into respective values of the overall diversity metric. Based on the ranking, an output may be generated. For example, a ranked list of the security incidents (or a subset thereof) may be communicated to a security administrator, and/or may trigger an automated mitigating action. |
| Author | BERTIGER, Anna Swanson FLOWERS, Michael Steven |
| Author_xml | – fullname: FLOWERS, Michael Steven – fullname: BERTIGER, Anna Swanson |
| BookMark | eNrjYmDJy89L5WQw9A9ycQ3y9HNXCHZ1Dg3yDIlU8PRz9nRx9QsJVggNBkk4-rgGhSi4eIa5BgUD5XkYWNMSc4pTeaE0N4Oym2uIs4duakF-fGpxQWJyal5qSXxosJGBkYmRpbmlgYmjoTFxqgAaiims |
| ContentType | Patent |
| DBID | EVB |
| DatabaseName | esp@cenet |
| DatabaseTitleList | |
| Database_xml | – sequence: 1 dbid: EVB name: esp@cenet url: http://worldwide.espacenet.com/singleLineSearch?locale=en_EP sourceTypes: Open Access Repository |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Medicine Chemistry Sciences |
| ExternalDocumentID | US2024297904A1 |
| GroupedDBID | EVB |
| ID | FETCH-epo_espacenet_US2024297904A13 |
| IEDL.DBID | EVB |
| IngestDate | Fri Sep 20 10:13:15 EDT 2024 |
| IsOpenAccess | true |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-epo_espacenet_US2024297904A13 |
| Notes | Application Number: US202418638282 |
| OpenAccessLink | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20240905&DB=EPODOC&CC=US&NR=2024297904A1 |
| ParticipantIDs | epo_espacenet_US2024297904A1 |
| PublicationCentury | 2000 |
| PublicationDate | 20240905 |
| PublicationDateYYYYMMDD | 2024-09-05 |
| PublicationDate_xml | – month: 09 year: 2024 text: 20240905 day: 05 |
| PublicationDecade | 2020 |
| PublicationYear | 2024 |
| RelatedCompanies | Microsoft Technology Licensing, LLC |
| RelatedCompanies_xml | – name: Microsoft Technology Licensing, LLC |
| Score | 3.5573652 |
| Snippet | In a computer network monitored for security threats, security incidents corresponding to groups of mutually related security alerts may be ranked based on... |
| SourceID | epo |
| SourceType | Open Access Repository |
| SubjectTerms | ELECTRIC COMMUNICATION TECHNIQUE ELECTRICITY TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION |
| Title | ORDERING SECURITY INCIDENTS USING ALERT DIVERSITY |
| URI | https://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20240905&DB=EPODOC&locale=&CC=US&NR=2024297904A1 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV3dS8MwED_GFPVNp-LHlILSt-LWJW3zUGRrUzdxH_RjzKexpg0I0g1X8d_3Gjbd096SHFw-4Je7S-4D4NFEHbRjscxw6IIaxGELwxEIPFvmRFqWlJRVgcLDkdVPyOuMzmrwuY2FUXlCf1RyRESUQLyX6r5e_T9i-cq3cv2UfuDQ8jmIXV_fWMconliL6n7P5ZOxP_Z0z3OTSB-FimYym7VIF22lA1Sk7QoPfNqr4lJWu0IlOIXDCfIryjOo5UUDjr1t7bUGHA03X97Y3KBvfQ5tNNhUCigt4l4SDuJ3DW3ygc9HcaRV9TNetO4bD2PNH0x5GCH9Ah4CHnt9A-ee_211nkS7C-1cQr1YFvkVaGJhyo4QuchkSrKMpqiZycyWbVOYzLHJNTT3cbrZT76Fk6qrfKdoE-rl13d-h8K2TO_VGf0CaXF-bg |
| link.rule.ids | 230,309,783,888,25576,76882 |
| linkProvider | European Patent Office |
| linkToHtml | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwfV3dT8IwEL8QNOKbosYP1CWavS3CWLf1gRjYikxhkH0QfCKsWxMTM4jM-O97a0B54q3pL7l-JNe7X9u7A3jU0QdtmzTVbLIgmmHThWZzVDxLZIYwTSEILQOFR745iI3XGZlV4HMbCyPzhP7I5IioURz1vZDn9er_EsuVfyvXT8kHdi2f-1HHVTfsGM0TbRLV7XXYZOyOHdVxOnGo-oHEdGrRptFFrnSATrZd1jtg014Zl7LaNSr9EzicoLy8OIVKlteh5mxrr9XhaLR58sbmRvvWZ9BCwiZTQCkhc-LAi94V5OSey_woVMr6GS9Kd8iCSHG9KQtCxM_hoc8iZ6Dh2PO_pc7jcHei7Quo5ss8uwSFL3TR5jzjqUiMNCUJemYitURL5zq1LeMKGvskXe-H76E2iEbD-dDz327guITkPyrSgGrx9Z3douEtkju5X79-2YFe |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Apatent&rft.title=ORDERING+SECURITY+INCIDENTS+USING+ALERT+DIVERSITY&rft.inventor=FLOWERS%2C+Michael+Steven&rft.inventor=BERTIGER%2C+Anna+Swanson&rft.date=2024-09-05&rft.externalDBID=A1&rft.externalDocID=US2024297904A1 |