Invention Grant
- Patent Title: Real-time threat alert forensic analysis
-
Application No.: US16781366Application Date: 2020-02-04
-
Publication No.: US11275832B2Publication Date: 2022-03-15
- Inventor: Ding Li , Kangkook Jee , Zhichun Li , Zhengzhang Chen , Xiao Yu
- Applicant: NEC Laboratories America, Inc.
- Applicant Address: US NJ Princeton
- Assignee: NEC Laboratories America, Inc.
- Current Assignee: NEC Laboratories America, Inc.
- Current Assignee Address: US NJ Princeton
- Agent Joseph Kolodka
- Main IPC: G06F21/55
- IPC: G06F21/55 ; G06F21/56
Abstract:
Methods and systems for security monitoring and response include assigning an anomaly score to each of a plurality of event paths that are stored in a first memory. Events that are cold, events that are older than a threshold, and events that are not part of a top-k anomalous path are identified. The identified events are evicted from the first memory to a second memory. A threat associated with events in the first memory is identified. A security action is performed responsive to the identified threat.
Public/Granted literature
- US20200250308A1 REAL-TIME THREAT ALERT FORENSIC ANALYSIS Public/Granted day:2020-08-06
Information query
