首页>
外国专利>
Security Rule Generation Based on Cognitive and Industry Analysis
Security Rule Generation Based on Cognitive and Industry Analysis
展开▼
机译:基于认知和行业分析的安全规则生成
展开▼
页面导航
摘要
著录项
相似文献
摘要
Security rules management mechanisms are provided. A cognitive computing system of the security rules management system ingests natural language content, from one or more corpora, describing features of security attacks, and ingests security event log data from a monitored computing environment. The cognitive computing system processes the natural language content from the one or more corpora and the security event log data to identify attack characteristics applicable to the security event log data. A security rule query engine evaluates existing security rules present in a security rules database to determine if any existing security rule addresses the attack characteristics. In response to the evaluation indicating that no existing security rule addresses the attack characteristics, a security rule generator automatically generates a new security rule based on the attack characteristics, which is then deployed to the monitored computing environment.
展开▼