公开(公告)号：US20170147654A1

公开(公告)日：2017-05-25

申请号：US15336078

申请日：2016-10-27

Applicant: Palantir Technologies Inc.

Inventor： Craig Saperstein ,  Eric Schwartz ,  Hongjai Cho

IPC: G06F17/30 ,  G06Q40/00 ,  G06Q20/40 ,  H04L29/06

CPC classification number: G06F17/30528 ,  G06F17/30371 ,  G06F17/30466 ,  G06F17/30554 ,  G06F17/30867 ,  G06Q20/4016 ,  G06Q40/12 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/20 ,  H04L2463/102

Abstract: Various systems and methods are provided that retrieve raw data from issuers, reorganize the raw data, analyze the reorganized data to determine whether the risky or malicious activity is occurring, and generate alerts to notify users of possible malicious activity. For example, the raw data is included in a plurality of tables. The system joins one or more tables to reorganize the data using several filtering techniques to reduce the processor load required to perform the join operation. Once the data is reorganized, the system executes one or more rules to analyze the reorganized data. Each rule is associated with a malicious activity. If any of the rules indicate that malicious activity is occurring, the system generates an alert for display to a user in an interactive user interface.

公开(公告)号：US20210342356A1

公开(公告)日：2021-11-04

申请号：US17323284

申请日：2021-05-18

Applicant: Palantir Technologies Inc.

Inventor： Craig Saperstein ,  Eric Schwartz ,  Hongjai Cho

IPC: G06F16/2457 ,  H04L29/06 ,  G06F16/248 ,  G06F16/23 ,  G06F16/9535 ,  G06F16/2453 ,  G06Q20/40 ,  G06F16/2455 ,  G06Q40/00

Abstract: Various systems and methods are provided that retrieve raw data from issuers, reorganize the raw data, analyze the reorganized data to determine whether the risky or malicious activity is occurring, and generate alerts to notify users of possible malicious activity. For example, the raw data is included in a plurality of tables. The system joins one or more tables to reorganize the data using several filtering techniques to reduce the processor load required to perform the join operation. Once the data is reorganized, the system executes one or more rules to analyze the reorganized data. Each rule is associated with a malicious activity. If any of the rules indicate that malicious activity is occurring, the system generates an alert for display to a user in an interactive user interface.

公开(公告)号：US11048706B2

公开(公告)日：2021-06-29

申请号：US16421300

申请日：2019-05-23

Applicant: Palantir Technologies Inc.

Inventor： Craig Saperstein ,  Eric Schwartz ,  Hongjai Cho

IPC: H04L29/00 ,  G06F16/2457 ,  H04L29/06 ,  G06F16/248 ,  G06F16/23 ,  G06F16/9535 ,  G06F16/2453 ,  G06Q20/40 ,  G06F16/2455 ,  G06Q40/00

Abstract: Various systems and methods are provided that retrieve raw data from issuers, reorganize the raw data, analyze the reorganized data to determine whether the risky or malicious activity is occurring, and generate alerts to notify users of possible malicious activity. For example, the raw data is included in a plurality of tables. The system joins one or more tables to reorganize the data using several filtering techniques to reduce the processor load required to perform the join operation. Once the data is reorganized, the system executes one or more rules to analyze the reorganized data. Each rule is associated with a malicious activity. If any of the rules indicate that malicious activity is occurring, the system generates an alert for display to a user in an interactive user interface.

公开(公告)号：US10692350B2

公开(公告)日：2020-06-23

申请号：US16689915

申请日：2019-11-20

Applicant: Palantir Technologies Inc.

Inventor： Hongjai Cho ,  Austin Czarnecki ,  Steven Fackler ,  Can Guler ,  Nikhil Taneja ,  David Tobin ,  Wilson Wong

IPC: G08B21/18 ,  G08B25/10 ,  G06F3/0484

Abstract: Aspects of the present disclosure relate to alerting. A server accesses a user-provided specification, the user-provided specification indicating an initial alert range for a measured value and a subsequent alert schedule for the measured value. The server monitors a physical measurement of the measured value. The server determines that the physical measurement falls within the initial alert range. The server provides an initial alert in response to the physical measurement falling within the initial alert range. The server provides a subsequent alert according to the subsequent alert schedule in the user-provided specification.

公开(公告)号：US20190278775A1

公开(公告)日：2019-09-12

申请号：US16421300

申请日：2019-05-23

Applicant: Palantir Technologies Inc.

Inventor： Craig Saperstein ,  Eric Schwartz ,  Hongjai Cho

IPC: G06F16/2457 ,  G06F16/2453 ,  G06F16/9535 ,  G06F16/23 ,  G06F16/248 ,  G06F16/2455 ,  H04L29/06 ,  G06Q20/40 ,  G06Q40/00

Abstract: Various systems and methods are provided that retrieve raw data from issuers, reorganize the raw data, analyze the reorganized data to determine whether the risky or malicious activity is occurring, and generate alerts to notify users of possible malicious activity. For example, the raw data is included in a plurality of tables. The system joins one or more tables to reorganize the data using several filtering techniques to reduce the processor load required to perform the join operation. Once the data is reorganized, the system executes one or more rules to analyze the reorganized data. Each rule is associated with a malicious activity. If any of the rules indicate that malicious activity is occurring, the system generates an alert for display to a user in an interactive user interface.

公开(公告)号：US09485265B1

公开(公告)日：2016-11-01

申请号：US15017324

申请日：2016-02-05

Applicant: Palantir Technologies Inc.

Inventor： Craig Saperstein ,  Eric Schwartz ,  Hongjai Cho

IPC: H04L29/00 ,  H04L29/06

CPC classification number: G06F17/30528 ,  G06F17/30371 ,  G06F17/30466 ,  G06F17/30554 ,  G06F17/30867 ,  G06Q20/4016 ,  G06Q40/12 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/20 ,  H04L2463/102

Abstract: Various systems and methods are provided that retrieve raw data from issuers, reorganize the raw data, analyze the reorganized data to determine whether the risky or malicious activity is occurring, and generate alerts to notify users of possible malicious activity. For example, the raw data is included in a plurality of tables. The system joins one or more tables to reorganize the data using several filtering techniques to reduce the processor load required to perform the join operation. Once the data is reorganized, the system executes one or more rules to analyze the reorganized data. Each rule is associated with a malicious activity. If any of the rules indicate that malicious activity is occurring, the system generates an alert for display to a user in an interactive user interface.

Abstract translation: 提供了各种系统和方法，从发行者检索原始数据，重新组织原始数据，分析重组数据以确定是否发生风险或恶意活动，并生成警报以通知用户可能的恶意活动。 例如，原始数据被包括在多个表中。 系统连接一个或多个表，以使用多种过滤技术重新组织数据，以减少执行连接操作所需的处理器负载。 一旦重新组织数据，系统将执行一个或多个规则来分析重组的数据。 每个规则都与恶意活动相关联。 如果任何规则指示恶意活动发生，系统将生成一个警报，以便在交互式用户界面中向用户显示。