首页>
外国专利>
MALICIOUS ACTIVITY DETECTION ON A COMPUTER NETWORK AND NETWORK METADATA NORMALISATION
MALICIOUS ACTIVITY DETECTION ON A COMPUTER NETWORK AND NETWORK METADATA NORMALISATION
展开▼
机译:计算机网络上的恶意活动检测和网络元数据标准化
展开▼
页面导航
摘要
著录项
相似文献
摘要
The invention relates to a network security and data normalisation system for a computer network, IT system or infrastructure, or similar. According to an aspect, there is provided a method for identifying abnormal user interactions within one or more monitored computer networks, comprising the steps of: receiving metadata from one or more devices within the one or more monitored computer networks; identifying from the metadata events corresponding to a plurality of user interactions with the monitored computer networks; storing user interaction event data from the identified said events corresponding to a plurality of user interactions with the monitored computer networks; updating a probabilistic model of expected user interactions from said stored user interaction event data; and testing each of said plurality of user interactions with the monitored computer networks against said probabilistic model to identify abnormal user interactions.
展开▼