公开(公告)号：US11665180B2

公开(公告)日：2023-05-30

申请号：US16804898

申请日：2020-02-28

Applicant: INTERNATIONAL BUSINESS MACHINES CORPORATION

Inventor： Jeb R. Linton ,  Darrel Haswell ,  Satya Sreenivas ,  Naeem Altaf ,  Sanjay Nadhavajhala ,  Ron Williams ,  Bradley Evan Harris ,  John Walter Morris

IPC: H04L29/06 ,  G06N3/08 ,  G06K9/62 ,  H04L9/40 ,  G06N3/088 ,  G06F18/214

CPC classification number: H04L63/1416 ,  G06F18/2155 ,  G06N3/088 ,  H04L63/1425

Abstract: Methods and systems for artificially intelligent security incident and event management using an attention-based deep neural network and transfer learning are disclosed. A method includes: collecting, by a computing device, system and network activity events in bulk; forming, by the computing device, a corpus using the collected system and network activity events; correlating, by the computing device, discrete events of the system and network activity events into offenses; adding, by the computing device, additional features to the corpus representing the offenses and disposition decisions regarding the offenses; training, by the computing device, a deep neural network using the corpus; and tuning, by the computing device, the deep neural network for a monitored computing environment using transfer learning.