公开(公告)号：US20200059479A1

公开(公告)日：2020-02-20

申请号：US16105832

申请日：2018-08-20

Applicant: BANK OF AMERICA CORPORATION

Inventor： Brandon Sloane ,  Rachel Yun Kim Bierner ,  Mark Earl Brubaker ,  Regina Yee Cadavid ,  John Brian Costello ,  Cora Yan Quon

IPC: H04L29/06 ,  G06F17/30 ,  G06Q50/26 ,  G06F9/451

Abstract: The invention relates to a resource landscape system that allows users to identify issues with elements within the organization and implement changes to the elements utilizing a relational database that utilizes nodes for defining the elements and relationships between the elements. The resource landscape system and applications therein provide a holistic inventory of resources, threat vectors, controls, metrics, policies, rules, and/or the like. The resource landscape system may be implemented through one or more interfaces that allows users to view cross-references of the elements, identify the priority of the elements using the crossed-references, and/or identify element issues in the elements of the organization that could results in threats to the organization. Moreover, the invention allows for receiving changes to one or more of the elements and automatically updating the cross-references of the elements, the priority of the elements, and/or the element issues.

公开(公告)号：US10664498B2

公开(公告)日：2020-05-26

申请号：US15958515

申请日：2018-04-20

Applicant: BANK OF AMERICA CORPORATION

Inventor： Brandon Sloane ,  Rachel Yun Kim Bierner ,  Mark Earl Brubaker ,  Regina Yee Cadavid ,  John Brian Costello ,  John Howard Kling ,  Cora Yan Quon ,  Tracie Buffington Wescott

IPC: G06F7/00 ,  G06F16/28 ,  G06F16/23 ,  G06F16/245 ,  G06F16/248

Abstract: The invention provides an interconnected graph database system, method and computer program product structured for identifying and remediating conflicts in resource deployment. In some embodiments, the present invention is configured to identify a source node of a plurality of first nodes of a first graph database system. The source node is typically associated with a first information technology operational activity. In addition, the present invention is configured for determining a lateral relationship between the source node of the first graph database system and a target node of a plurality of second nodes of a second graph database system. Moreover, the present invention is configured for determining that the lateral relationship between the source node and the target node comprises a conflict, and in response, blocking initiation of the first information technology operational activity.

公开(公告)号：US20170302668A1

公开(公告)日：2017-10-19

申请号：US15099654

申请日：2016-04-15

Applicant: BANK OF AMERICA CORPORATION

Inventor： John Howard Kling ,  Mark Earl Brubaker ,  Cora Yan Quon ,  Rachel Yun Kim Bierner ,  Armen Moloian ,  Ronald James Kuhlmeier

IPC: H04L29/06

CPC classification number: H04L63/10 ,  H04L63/1416

Abstract: Systems, computer program products, and methods are described herein for a model framework and system for cyber security services. The present invention is configured to determine one or more access paths to the internal computing device from an external computing device; determine one or more controls associated with each access path; determine one or more types of access that may be made via one or more of the access paths by the external computing device to access the internal computing device; determine whether the one or more controls associated with the at least one of the one or more access paths is capable of detecting the access; determine one or more tools configured to regulate the one or more controls; and incorporate the one or more tools within the network to regulate the one or more controls to detect and monitor the access.

公开(公告)号：US20190325056A1

公开(公告)日：2019-10-24

申请号：US15958515

申请日：2018-04-20

Applicant: BANK OF AMERICA CORPORATION

Inventor： Brandon Sloane ,  Rachel Yun Kim Biemer ,  Mark Earl Brubaker ,  Regina Yee Cadavid ,  John Brian Costello ,  John Howard Kling ,  Cora Yan Quon ,  Tracie Buffington Wescott

IPC: G06F17/30

Abstract: The invention provides an interconnected graph database system, method and computer program product structured for identifying and remediating conflicts in resource deployment. In some embodiments, the present invention is configured to identify a source node of a plurality of first nodes of a first graph database system. The source node is typically associated with a first information technology operational activity. In addition, the present invention is configured for determining a lateral relationship between the source node of the first graph database system and a target node of a plurality of second nodes of a second graph database system. Moreover, the present invention is configured for determining that the lateral relationship between the source node and the target node comprises a conflict, and in response, blocking initiation of the first information technology operational activity.

公开(公告)号：US10003598B2

公开(公告)日：2018-06-19

申请号：US15099654

申请日：2016-04-15

Applicant: BANK OF AMERICA CORPORATION

Inventor： John Howard Kling ,  Mark Earl Brubaker ,  Cora Yan Quon ,  Rachel Yun Kim Bierner ,  Armen Moloian ,  Ronald James Kuhlmeier

IPC: H04L29/06

CPC classification number: H04L63/10 ,  H04L63/1416

Abstract: Systems, computer program products, and methods are described herein for a model framework and system for cyber security services. The present invention is configured to determine one or more access paths to the internal computing device from an external computing device; determine one or more controls associated with each access path; determine one or more types of access that may be made via one or more of the access paths by the external computing device to access the internal computing device; determine whether the one or more controls associated with the at least one of the one or more access paths is capable of detecting the access; determine one or more tools configured to regulate the one or more controls; and incorporate the one or more tools within the network to regulate the one or more controls to detect and monitor the access.

公开(公告)号：US11122059B2

公开(公告)日：2021-09-14

申请号：US16105832

申请日：2018-08-20

Applicant: BANK OF AMERICA CORPORATION

Inventor： Brandon Sloane ,  Rachel Yun Kim Bierner ,  Mark Earl Brubaker ,  Regina Yee Cadavid ,  John Brian Costello ,  Cora Yan Quon

IPC: H04L29/06 ,  G06F9/451 ,  G06F16/28 ,  G06Q50/26

Abstract: The invention relates to a resource landscape system that allows users to identify issues with elements within the organization and implement changes to the elements utilizing a relational database that utilizes nodes for defining the elements and relationships between the elements. The resource landscape system and applications therein provide a holistic inventory of resources, threat vectors, controls, metrics, policies, rules, and/or the like. The resource landscape system may be implemented through one or more interfaces that allows users to view cross-references of the elements, identify the priority of the elements using the crossed-references, and/or identify element issues in the elements of the organization that could results in threats to the organization. Moreover, the invention allows for receiving changes to one or more of the elements and automatically updating the cross-references of the elements, the priority of the elements, and/or the element issues.

公开(公告)号：US10459766B1

公开(公告)日：2019-10-29

申请号：US16105608

申请日：2018-08-20

Applicant: Bank of America Corporation

Inventor： Brandon Sloane ,  Cora Yan Quon ,  Tracie Buffington Wescott ,  Rachel Yun Kim Bierner ,  John Howard Kling ,  Mark Earl Brubaker ,  Brian Diederich

IPC: G06F9/46 ,  G06F9/50 ,  G06F8/65

Abstract: The present disclosure is directed to a novel system for a multidimensional (or “N-dimensional”) services framework. The framework may be used to evaluate the efficiency and effectiveness of various services along multiple dimensions which may be specified by the system or be added to the framework in the future. By evaluating the various possibilities and opportunities to modify the services as the services reach varying levels of maturity, the services may be compared with one another to establish the relational impacts among the services tracked by the system. Through the use of the N-dimensional framework, an entity may be better able to prioritize resources allocated toward the enhancement of certain evaluated services.

公开(公告)号：US10339309B1

公开(公告)日：2019-07-02

申请号：US15618893

申请日：2017-06-09

Applicant: Bank of America Corporation

Inventor： John Howard Kling ,  Mark Earl Brubaker ,  Ronald James Kuhlmeier ,  Brian D. Diederich ,  Brandon Matthew Sloane ,  Rachel Yun Kim Bierner ,  Cora Yan Quon

IPC: G06F21/00 ,  G06F21/55 ,  G06F16/28 ,  G06F16/901

Abstract: A system for identifying anomalies in an information system is typically configured for: collecting information regarding a hierarchy of capabilities, a hierarchy of resources, capability instances, and resource instances of the information system; storing, in a graph database, nodes corresponding to the hierarchy of capabilities, hierarchy of resources, capability instances, and resource instances; collecting information regarding relationships among the hierarchy of capabilities, hierarchy of resources, capability instances, and resource instances; defining, in the graph database, edges corresponding to the relationships among the hierarchy of capabilities, hierarchy of resources, capability instances, and resource instances; collecting event and/or state data for the information system; comparing the event and/or state data to the graph database and determining that an event and/or state is anomalous; and, in response to determining that the event and/or state is anomalous, taking an information security action.