首页>
外国专利>
Automated determination of relevance of a security alert to one or more other security alerts based on shared markers
Automated determination of relevance of a security alert to one or more other security alerts based on shared markers
展开▼
机译:基于共享标记自动确定安全警报与一个或多个其他安全警报的相关性
展开▼
页面导航
摘要
著录项
相似文献
摘要
A processing device in one embodiment comprises a processor coupled to a memory and is configured to obtain a plurality of security alerts in a computer network, to process the security alerts to extract a plurality of markers from each of the security alerts, to compute at least one relevance score relating a given one of the security alerts to another one of the security alerts based at least in part on distance measures computed between markers shared by the given security alert and the other security alert, and to adjust at least one operating characteristic of a network security system of the computer network based at least in part on the relevance score. The relevance score may be computed as a function of a number of markers shared by the given security alert and the other security alert.
展开▼