首页> 外国专利> PLATFORM AND METHOD FOR ENHANCED-CYBER-ATTACK DETECTION AND RESPONSE EMPLOYING A GLOBAL DATA STORE

PLATFORM AND METHOD FOR ENHANCED-CYBER-ATTACK DETECTION AND RESPONSE EMPLOYING A GLOBAL DATA STORE

机译：增强的网络攻击检测和响应应用全球数据存储的平台和方法

页面导航

摘要
著录项
相似文献

摘要

A system for detecting artifacts associated with a cyber-attack features a cybersecurity intelligence hub that includes a data store with stored meta-information associated with each artifact of a plurality of artifacts and each stored meta-information includes a verdict classifying an artifact corresponding to the stored meta-information as a malicious classification or a benign classification. The hub is configured to (i) receive meta- information associated with a first artifact from a cybersecurity sensor, and (ii) determine a verdict for the first artifact based on an analysis of meta-information associated with the first artifact stored meta-information associated with each of the plurality of artifacts. A verdict for the first artifact is returned to the cybersecurity sensor in response to a detected match between a portion of stored meta-information and a portion of the meta-information associated with the first artifact.

机译：一种用于检测与网络攻击相关的人工产物的系统，其特征在于，网络安全情报中心包括一个数据存储区，该数据存储区具有与多个人工产物中的每个人工产物相关联的存储的元信息，并且每个存储的元信息包括对对应于该人工产物的人工产物进行分类的判决。将元信息存储为恶意分类或良性分类。集线器被配置为（i）从网络安全传感器接收与第一人工产物相关的元信息，并且（ii）基于与第一人工产物存储的元信息相关联的元信息的分析来确定第一人工产物的判决。与多个工件中的每一个相关联。响应于检测到的存储的元信息的一部分与与第一工件相关联的一部分元信息之间的匹配，将第一工件的判定返回至网络安全传感器。

著录项

公开/公告号WO2019133451A1

专利类型
公开/公告日2019-07-04

原文格式PDF
申请/专利权人 FIREEYE INC.;
展开▼

申请/专利号WO2018US66964
发明设计人 VASHISHT SAI;OTVAGIN ALEXANDER;
展开▼

申请日2018-12-20
分类号G06F21/56;
国家 WO
入库时间 2022-08-21 11:54:02

相似文献

专利
外文文献
中文文献