发明授权
- 专利标题: Distributed threat management
- 专利标题(中): 分布式威胁管理
-
申请号: US10185008申请日: 2002-07-01
-
公开(公告)号: US07373666B2公开(公告)日: 2008-05-13
- 发明人: Christopher G. Kaler , Giovanni Moises Della-Libera , John P. Shewchuk
- 申请人: Christopher G. Kaler , Giovanni Moises Della-Libera , John P. Shewchuk
- 申请人地址: US WA Redmond
- 专利权人: Microsoft Corporation
- 当前专利权人: Microsoft Corporation
- 当前专利权人地址: US WA Redmond
- 代理机构: Birch, Stewart, Kolasch & Birch, LLP
- 主分类号: G06F12/00
- IPC分类号: G06F12/00 ; G06F7/04 ; G06F11/30 ; H04L9/32
摘要:
A method and system are provided for managing a security threat in a distributed system. A distributed element of the system detects and reports suspicious activity to a threat management agent. The threat management agent determines whether an attack is taking place and deploys a countermeasure to the attack when the attack is determined to be taking place. Another method and system are also provided for managing a security threat in a distributed system. A threat management agent reviews reported suspicious activity including suspicious activity reported from at least one distributed element of the system, determines, based on the reports, whether a pattern characteristic of an attack occurred, and predicts when a next attack is likely to occur. Deployment of a countermeasure to the predicted next attack is directed in a time window based on when the next attack is predicted to occur.
公开/授权文献
- US20040003286A1 Distributed threat management 公开/授权日:2004-01-01