-
公开(公告)号:US11888864B2
公开(公告)日:2024-01-30
申请号:US17131018
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L9/40 , G06F21/56 , G06F21/57 , H04L67/306
CPC分类号: H04L63/04 , G06F21/566 , G06F21/577 , H04L63/102 , H04L63/1416 , H04L63/1425 , H04L63/1433 , H04L63/205 , H04L67/306 , G06F2221/034
摘要: A system, method, and computer-readable medium are disclosed for performing a security analytics mapping operation. The security analytics mapping operation includes receiving a plurality of electronically-observable actions of a first entity, the plurality of electronically-observable actions of the first entity corresponding to a respective first plurality of events enacted by the first entity; receiving a plurality of electronically-observable actions of a second entity, the plurality of electronically-observable actions of the second entity corresponding to a respective second plurality of events enacted by the second entity; determining, via a distributed security analytics environment, whether a first event of the respective first plurality of events and a second event of the respective second plurality of events comprise an entity interaction between the first entity and the second entity; and, generating, via the distributed security analytics environment, an entity interaction map, the entity interaction map providing a representation of the entity interaction between the first entity and the second entity.
-
公开(公告)号:US20210344667A1
公开(公告)日:2021-11-04
申请号:US16865176
申请日:2020-05-01
申请人: Forcepoint, LLC
IPC分类号: H04L29/06
摘要: A system, method, and computer-readable medium are disclosed for implementing a cybersecurity system having a digital certificate reputation system. At least one embodiment is directed to a computer-implemented method executing operations including receiving a communication having an internet protocol (IP) address and a digital certificate at a device within the secured network; determining whether the IP address is identified as having a high-security risk level; if the IP address has a high-security risk level, assigning a security risk level to the digital certificate based on the security risk level of the IP address; and using the security risk level for the digital certificate in executing the one or more security policies. Other embodiments include corresponding computer systems, apparatus, and computer programs recorded on one or more computer storage devices.
-
公开(公告)号:US11888862B2
公开(公告)日:2024-01-30
申请号:US17131014
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L9/40 , G06F21/56 , G06F21/57 , H04L67/306
CPC分类号: H04L63/14 , G06F21/566 , G06F21/577 , H04L63/102 , H04L63/1416 , H04L63/1425 , H04L63/1433 , H04L63/205 , H04L67/306 , G06F2221/034
摘要: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring an entity, the monitoring observing at least one electronically-observable data source; identifying an event of analytic utility; analyzing the event of analytic utility, the analyzing the event of analytic utility identifying an entity behavior associated with the event of analytic utility; and, performing the security operation in response to the analyzing the event of analytic utility, where the monitoring, identifying, analyzing and performing are performed via a distributed security analytics framework.
-
公开(公告)号:US20210152567A1
公开(公告)日:2021-05-20
申请号:US17131023
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L29/06
摘要: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring an entity, the monitoring observing at least one electronically-observable data source; identifying a security related activity of the entity, the security related activity being of analytic utility; accessing an entity behavior catalog based upon the security related activity, the entity behavior catalog providing an inventory of entity behaviors; and performing a security operation via a distributed security analytics environment, the security operation using entity behavior catalog data stored within the entity behavior catalog based upon the security related activity.
-
公开(公告)号:US20210112077A1
公开(公告)日:2021-04-15
申请号:US17131015
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L29/06
摘要: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring a plurality of actions of an entity, the plurality of actions of the entity corresponding to a plurality of events enacted by the entity; maintaining information relating to the monitoring within a user edge component; identifying an event of analytic utility; analyzing the event of analytic utility at the user edge component, the analyzing generating a security risk assessment; and, providing the security risk assessment to a network edge component.
-
公开(公告)号:US11902293B2
公开(公告)日:2024-02-13
申请号:US17131023
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L9/40 , G06F21/56 , G06F21/57 , H04L67/306
CPC分类号: H04L63/04 , G06F21/566 , G06F21/577 , H04L63/102 , H04L63/1416 , H04L63/1425 , H04L63/1433 , H04L63/205 , H04L67/306 , G06F2221/034
摘要: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring an entity, the monitoring observing at least one electronically-observable data source; identifying a security related activity of the entity, the security related activity being of analytic utility; accessing an entity behavior catalog based upon the security related activity, the entity behavior catalog providing an inventory of entity behaviors; and performing a security operation via a distributed security analytics environment, the security operation using entity behavior catalog data stored within the entity behavior catalog based upon the security related activity.
-
公开(公告)号:US11516206B2
公开(公告)日:2022-11-29
申请号:US16865176
申请日:2020-05-01
申请人: Forcepoint, LLC
摘要: A system, method, and computer-readable medium are disclosed for implementing a cybersecurity system having a digital certificate reputation system. At least one embodiment is directed to a computer-implemented method executing operations including receiving a communication having an internet protocol (IP) address and a digital certificate at a device within the secured network; determining whether the IP address is identified as having a high-security risk level; if the IP address has a high-security risk level, assigning a security risk level to the digital certificate based on the security risk level of the IP address; and using the security risk level for the digital certificate in executing the one or more security policies. Other embodiments include corresponding computer systems, apparatus, and computer programs recorded on one or more computer storage devices.
-
公开(公告)号:US20210112076A1
公开(公告)日:2021-04-15
申请号:US17131014
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L29/06
摘要: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring an entity, the monitoring observing at least one electronically-observable data source; identifying an event of analytic utility; analyzing the event of analytic utility, the analyzing the event of analytic utility identifying an entity behavior associated with the event of analytic utility; and, performing the security operation in response to the analyzing the event of analytic utility, where the monitoring, identifying, analyzing and performing are performed via a distributed security analytics framework.
-
公开(公告)号:US11895158B2
公开(公告)日:2024-02-06
申请号:US16878124
申请日:2020-05-19
申请人: Forcepoint, LLC
IPC分类号: H04L9/40 , G06F3/0482 , H04L47/20 , G06N5/025
CPC分类号: H04L63/205 , G06F3/0482 , G06N5/025 , H04L47/20
摘要: A system, method, and computer-readable medium are disclosed for implementing a cybersecurity system having security policy visualization. At least one embodiment is directed to a computer-implemented method for implementing security policies in a secured network, including: retrieving a set of rules of a security policy; analyzing the set of rules of the security policy using one or more Satisfiability Modulo Theory (SMT) operations to reduce a dimensionality of the security policy; and generating a visual presentation on a user interface using results of the SMT operations, where the visual presentation includes visual indicia representing one or more targeted policy dimensions with respect to one or more fixed policy dimensions. In at least one embodiment, two or more security policies are presented with visual indicia representing differences between the security policies, including representations of one or more targeted policy dimensions with respect to one or more fixed policy dimensions.
-
公开(公告)号:US11888863B2
公开(公告)日:2024-01-30
申请号:US17131015
申请日:2020-12-22
申请人: Forcepoint, LLC
IPC分类号: H04L9/40 , G06F21/56 , G06F21/57 , H04L67/306
CPC分类号: H04L63/04 , G06F21/566 , G06F21/577 , H04L63/102 , H04L63/1416 , H04L63/1425 , H04L63/1433 , H04L63/205 , H04L67/306 , G06F2221/034
摘要: A system, method, and computer-readable medium are disclosed for performing a security operation. The security operation includes: monitoring a plurality of actions of an entity, the plurality of actions of the entity corresponding to a plurality of events enacted by the entity; maintaining information relating to the monitoring within a user edge component; identifying an event of analytic utility; analyzing the event of analytic utility at the user edge component, the analyzing generating a security risk assessment; and, providing the security risk assessment to a network edge component.
-
-
-
-
-
-
-
-
-
搜索结果
13 条记录 (耗时 0.015 秒)
