首页>
外国专利>
System and method for detecting potential threats by monitoring user and system behavior associated with computer and network activity
System and method for detecting potential threats by monitoring user and system behavior associated with computer and network activity
展开▼
机译:通过监视与计算机和网络活动关联的用户和系统行为来检测潜在威胁的系统和方法
展开▼
页面导航
摘要
著录项
相似文献
摘要
A system and method is provided to monitor user and system behavior associated with computer and network activity to determine deviations from normal behavior that represent a potential cyber threat or cyber malicious activity. The system and method uses a multi-factor behavioral and activity analysis approach to determine when a trusted insider might be exhibiting threatening behavior or when a user's computer or network credentials have been compromised and are in use by a third-party. As a result, changes in insider behavior that could be indicative of malicious intent can be detected, or an external entity masquerading as a legitimate user can be detected.
展开▼