首页>
外国专利>
Systems and techniques for guiding a response to a cybersecurity incident
Systems and techniques for guiding a response to a cybersecurity incident
展开▼
机译:用于指导对网络安全事件响应的系统和技术
展开▼
页面导航
摘要
著录项
相似文献
摘要
A cybersecurity engine can guide a forensic investigation of a security incident by estimating the utility of investigating events associated with the security incident, selecting a subset of such events based on the estimated utilities, and presenting data associated with the selected events to the investigator. A method for guiding a response to a security incident may include estimating, for each of a plurality of security events associated with the security incident, a utility of investigating the security event. The method may further include selecting a subset of the security events based, at least in part, on the estimated utilities of investigating the security events. The method may further include guiding the response to the security incident by presenting, to a user, data corresponding to the selected security events.
展开▼