首页> 外国专利> PROCESSING ANOMALY DATA TO IDENTIFY THREATS TO NETWORK SECURITY

PROCESSING ANOMALY DATA TO IDENTIFY THREATS TO NETWORK SECURITY

机译：处理异常数据以识别对网络安全的威胁

页面导航

摘要
著录项
相似文献

摘要

A security platform employs a variety techniques and mechanisms to detect security related anomalies and threats in a computer network environment. The security platform is “big data” driven and employs machine learning to perform security analytics. The security platform performs user/entity behavioral analytics (UEBA) to detect the security related anomalies and threats, regardless of whether such anomalies/threats were previously known. The security platform can include both real-time and batch paths/modes for detecting anomalies and threats. By visually presenting analytical results scored with risk ratings and supporting evidence, the security platform enables network security administrators to respond to a detected or threat, and to take action promptly.

机译：安全平台采用各种技术和机制来检测计算机网络环境中与安全相关的异常和威胁。该安全平台由“大数据”驱动，并使用机器学习来执行安全分析。安全平台执行用户/实体行为分析（UEBA），以检测与安全相关的异常和威胁，而不管以前是否知道此类异常/威胁。该安全平台可以包括用于检测异常和威胁的实时路径和批处理路径/模式。通过直观地显示带有风险等级和支持证据的分析结果，该安全平台使网络安全管理员能够对检测到的威胁或威胁做出响应，并迅速采取行动。

著录项

公开/公告号US2019342311A1

专利类型
公开/公告日2019-11-07

原文格式PDF
申请/专利权人 SPLUNK INC.;
展开▼

申请/专利号US201916516471
发明设计人 SUDHAKAR MUDDU;CHRISTOS TRYFONAS;
展开▼

申请日2019-07-19
分类号H04L29/06;G06N20;G06N5/04;G06F16/901;G06F16/44;G06F16/28;G06F16/25;H04L12/26;G06F16/2457;H04L12/24;G06F3/0484;G06K9/20;G06F3/0482;G06N5/02;G06F17/22;G06N7;
国家 US
入库时间 2022-08-21 12:07:30

相似文献

专利
外文文献
中文文献