首页>
外国专利>
System And Method For Detecting And Identifying A Cyber-Attack On A Network
System And Method For Detecting And Identifying A Cyber-Attack On A Network
展开▼
机译:在网络上检测和识别网络攻击的系统和方法
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method for detecting and/or identifying a cyber-attack on a network can include segmenting the network using a segmentation method with machine learning to generate one or more network segments; assigning a score to a data point within each network segment based on a presence or absence of an identified anomalous behavior of the data point; analyzing network data flow, via behavioral modeling, to provide a context for characterizing the anomalous behavior; combining, via a reinforcement learning agent, outputs of the segmentation method with behavioral modelling and assigned score to detect and/or identify a cyber-attack; providing one or more alerts to an analyst; receiving an analyst assessment of an effectiveness of the detection and/or identification; and providing the analyst assessment as feedback to the reinforcement learning agent.
展开▼