公开(公告)号：US20240064163A1

公开(公告)日：2024-02-22

申请号：US18451512

申请日：2023-08-17

Applicant: Booz Allen Hamilton Inc.

Inventor： Ammad Jilani ,  Jeffrey M. Liott ,  Stephen Mao ,  Steven McDaniel ,  Gregory McCullough ,  Arjun Raman ,  Eric Tang

IPC: H04L9/40 ,  G06F16/25

CPC classification number: H04L63/1425 ,  G06F16/258 ,  G06F16/254

Abstract: Exemplary systems and methods are directed to risk-based observability of a platform. Data is received from plural devices from one or more computing environments on a network. The received data is in a raw data format according to the computing environment or platform from which it was received. The received data is converted from the raw format to a structured format. The converted data is enhanced by adding contextual information associated with a corresponding one of the plural devices. A risk analysis is performed on the enhanced data based on one or more risk detection rules applied to the network. One or more tags are applied to the enhanced data based on results of the risk analysis. Data analysis is performed on the enhanced data to identify devices from aggregate sources. The data is sent to one or more destinations on the network based on the applied tags.