公开(公告)号：US20200045069A1

公开(公告)日：2020-02-06

申请号：US16053279

申请日：2018-08-02

Applicant: BAE SYSTEMS INFORMATION AND ELECTRONIC SYSTEMS INTEGRATION INC.

Inventor： Soumendra Nanda ,  Rebecca Cathey ,  Lawrence A. Clough, JR. ,  Adrian E. Conway ,  Fang Liu

IPC: H04L29/06 ,  G06N99/00 ,  G06N5/04

Abstract: A network defense system can include a sensor alert ingestion framework adapted to monitor network activity and alert detected or suspected anomalies. A network analyzer may be coupled to the sensor alert ingestion framework to analyze the anomalies. A course of action (CoA) simulator may be coupled to the network analyzer adapted to generate a list of decision including courses of action to address the anomalies. There may be a training and feedback unit coupled to the CoA simulator to train the system to improve responses in addressing future anomalies.

公开(公告)号：US11050770B2

公开(公告)日：2021-06-29

申请号：US16053279

申请日：2018-08-02

Applicant: BAE SYSTEMS INFORMATION AND ELECTRONIC SYSTEMS INTEGRATION INC.

Inventor： Soumendra Nanda ,  Rebecca Cathey ,  Lawrence A. Clough, Jr. ,  Adrian E. Conway ,  Fang Liu

IPC: H04L29/06 ,  G06N5/04 ,  G06N20/00

Abstract: A network defense system can include a sensor alert ingestion framework adapted to monitor network activity and alert detected or suspected anomalies. A network analyzer may be coupled to the sensor alert ingestion framework to analyze the anomalies. A course of action (CoA) simulator may be coupled to the network analyzer adapted to generate a list of decision including courses of action to address the anomalies. There may be a training and feedback unit coupled to the CoA simulator to train the system to improve responses in addressing future anomalies.