Invention Grant
- Patent Title: Learning based security threat containment
-
Application No.: US14677493Application Date: 2015-04-02
-
Publication No.: US11019092B2Publication Date: 2021-05-25
- Inventor: Sourabh Satish , Oliver Friedrichs , Atif Mahadik , Govind Salinas
- Applicant: SPLUNK INC.
- Applicant Address: US CA San Francisco
- Assignee: SPLUNK INC.
- Current Assignee: SPLUNK INC.
- Current Assignee Address: US CA San Francisco
- Agency: Nicholson De Vos Webster & Elliott LLP
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F21/55 ; G06F16/28 ; H04L12/851

Abstract:
Systems, methods, and software described herein provide action recommendations to administrators of a computing environment based on effectiveness of previously implemented actions. In one example, an advisement system identifies a security incident for an asset in the computing environment, and obtains enrichment information for the incident. Based on the enrichment information a rule set and associated recommended security actions are identified for the incident. Once the recommended security actions are identified, a subset of the action recommendations are organized based on previous action implementations in the computing environment, and the subset is provided to an administrator for selection.
Public/Granted literature
- US20160164909A1 LEARNING BASED SECURITY THREAT CONTAINMENT Public/Granted day:2016-06-09
Information query