公开(公告)号：US11049026B2

公开(公告)日：2021-06-29

申请号：US15463562

申请日：2017-03-20

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Pratyusa K. Manadhata ,  Sandeep Bhatt ,  Tomas Sander

IPC: G06N5/04 ,  G06F21/56 ,  G06F21/57

Abstract: Updating ground truth data in a security management platform is disclosed. One example is a system including at least one processor and a memory storing instructions executable by the at least one processor to receive, in a security management platform, event data relating to a plurality of events corresponding to operation of a computing arrangement in a current time interval, and computing ground truth data for the current time interval based on the received event data, and threat intelligence data from time intervals preceding the current time interval. A prediction model is applied to generate predictions for the current time interval based on the received event data. Ground truth data is re-computed for the time intervals preceding the current time interval based on a comparison of the generated predictions and the computed ground truth data.