Invention Grant
- Patent Title: Intrusion detection system enrichment based on system lifecycle
-
Application No.: US15665700Application Date: 2017-08-01
-
Publication No.: US10671723B2Publication Date: 2020-06-02
- Inventor: Rouven Krebs , Juergen Frank
- Applicant: SAP SE
- Applicant Address: DE Walldorf
- Assignee: SAP SE
- Current Assignee: SAP SE
- Current Assignee Address: DE Walldorf
- Agency: Fish & Richardson P.C.
- Main IPC: G06F21/55
- IPC: G06F21/55 ; H04L29/06 ; G06F21/57 ; G06F21/56 ; H04L12/26

Abstract:
Techniques are described for automatically incorporating lifecycle context information for a secured environment into an intrusion detection system monitoring the secured environment's operations. In one example, an indication of a potentially malicious action occurring in a secured environment monitored by an intrusion detection system is identified. A lifecycle-based context associated with a lifecycle operations manager (LOM) is accessed, where the LOM is responsible for managing lifecycle operations associated with components in the secured environment, and where the context stores information associated with lifecycle operations executed by the LOM. A determination is made as to whether the potentially malicious action associated with the indication is associated with information associated with an executed lifecycle operation stored in the context. In response to determining that a malicious action is associated with a lifecycle operation, a mitigation action associated with the potentially malicious action can be modified.
Public/Granted literature
- US20190042736A1 IINTRUSION DETECTION SYSTEM ENRICHMENT BASED ON SYSTEM LIFECYCLE Public/Granted day:2019-02-07
Information query