首页>
外国专利>
CYBERSECURITY INCIDENT DETECTION SYSTEMS AND TECHNIQUES
CYBERSECURITY INCIDENT DETECTION SYSTEMS AND TECHNIQUES
展开▼
机译:网络安全事件检测系统和技术
展开▼
页面导航
摘要
著录项
相似文献
摘要
Behavioral baselines for a computer system may be accurately and efficiently established by (1) monitoring occurrences on the computer system, (2) determining, based on security rules or heuristics, which of the observed occurrences are associated with potential security risks, (3) identifying patterns of activity based on the suspicious occurrences, and (4) prompting a user to indicate whether the observed patterns of suspicious activity are expected or unexpected. Behavior baselines established in this manner can then be used to differentiate between expected and unexpected patterns of activity on the computer system.
展开▼