公开(公告)号：US11683333B1

公开(公告)日：2023-06-20

申请号：US17111988

申请日：2020-12-04

Applicant: Architecture Technology Corporation

Inventor： Christopher Dominessy ,  Scott Aloisio ,  Robert A. Joyce

IPC: H04L9/40 ,  H04L43/045 ,  H04L43/06

CPC classification number: H04L63/1433 ,  H04L43/045 ,  H04L43/06 ,  H04L63/1441

Abstract: An example network security and threat assessment system is configured to determine, based on one or more events that have occurred during execution of one or more applications, a potential security vulnerability of a target computing system, where the one or more events correspond to a node represented in the hierarchical risk model. The system is further configured to identify, based on a mapping of the node represented in the hierarchical risk model to a node represented in a hierarchical game tree model, one or more actions that are associated with the potential security vulnerability and that correspond to the node represented in the hierarchical game tree model, and to output, for display in a graphical user interface, a graphical representation of the potential security vulnerability and the one or more actions associated with the potential security vulnerability.

公开(公告)号：US10540502B1

公开(公告)日：2020-01-21

申请号：US15622434

申请日：2017-06-14

Applicant: Architecture Technology Corporation

Inventor： Robert A. Joyce ,  Scott Aloisio ,  Judson Powers ,  Christopher Dominessy

IPC: G06F21/57 ,  G06F16/22

Abstract: A risk model for a distributed computing system comprises a plurality of tree nodes organized as a tree. For each tree node of the risk model, the tree node corresponds to a respective event that may befall a distributed computing system. An analysis computing system generates data associating a test agent with a target and also generates data associating the test agent with a tree node in the risk model. The test agent performs a data gathering routine that gathers data from the target associated with the test agent. The gathered data may indicate whether the event corresponding to the tree node is occurring. Furthermore, the analysis computing system may perform the data gathering routine according to a recurrence pattern of the data gathering routine. The analysis computing system may output a graphical representation of the data indicating whether the event corresponding to the tree node is occurring.