Invention Grant
- Patent Title: Managing security actions in a computing environment based on information gathering activity of a security threat
-
Application No.: US17242165Application Date: 2021-04-27
-
Publication No.: US11757925B2Publication Date: 2023-09-12
- Inventor: Sourabh Satish , Oliver Friedrichs , Atif Mahadik , Govind Salinas
- Applicant: Splunk Inc.
- Applicant Address: US CA San Francisco
- Assignee: Splunk Inc.
- Current Assignee: Splunk Inc.
- Current Assignee Address: US CA San Francisco
- Agency: NICHOLSON DE VOS WEBSTER & ELLIOTT LLP
- Main IPC: H04L9/40
- IPC: H04L9/40 ; G06F21/55 ; G06F16/28 ; H04L47/2425

Abstract:
Systems, methods, and software described herein provide security actions based on the current state of a security threat. In one example, a method of operating an advisement system in a computing environment with a plurality of computing assets includes identifying a security threat within the computing environment. The method further includes, in response to identifying the security threat, obtaining state information for the security threat within the computing environment, and determining a current state for the security threat within the computing environment. The method also provides obtaining enrichment information for the security threat and determining one or more security actions for the security threat based on the enrichment information and the current state for the security threat.
Public/Granted literature
Information query