JP2022512195A5 - - Google Patents

Info

Publication number
JP2022512195A5
JP2022512195A5 JP2021533157A JP2021533157A JP2022512195A5 JP 2022512195 A5 JP2022512195 A5 JP 2022512195A5 JP 2021533157 A JP2021533157 A JP 2021533157A JP 2021533157 A JP2021533157 A JP 2021533157A JP 2022512195 A5 JP2022512195 A5 JP 2022512195A5
Authority
JP
Japan
Prior art keywords
event
target
events
cluster
computer system
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
JP2021533157A
Other languages
English (en)
Japanese (ja)
Other versions
JP7389806B2 (ja
JP2022512195A (ja
Filing date
Publication date
Priority claimed from US16/215,251 external-priority patent/US11153332B2/en
Application filed filed Critical
Publication of JP2022512195A publication Critical patent/JP2022512195A/ja
Publication of JP2022512195A5 publication Critical patent/JP2022512195A5/ja
Application granted granted Critical
Publication of JP7389806B2 publication Critical patent/JP7389806B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

JP2021533157A 2018-12-10 2019-12-10 挙動による脅威検出のためのシステムおよび方法 Active JP7389806B2 (ja)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US16/215,251 2018-12-10
US16/215,251 US11153332B2 (en) 2018-12-10 2018-12-10 Systems and methods for behavioral threat detection
PCT/EP2019/084312 WO2020120429A1 (en) 2018-12-10 2019-12-10 Systems and methods for behavioral threat detection

Publications (3)

Publication Number Publication Date
JP2022512195A JP2022512195A (ja) 2022-02-02
JP2022512195A5 true JP2022512195A5 (https=) 2022-07-14
JP7389806B2 JP7389806B2 (ja) 2023-11-30

Family

ID=68841136

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2021533157A Active JP7389806B2 (ja) 2018-12-10 2019-12-10 挙動による脅威検出のためのシステムおよび方法

Country Status (11)

Country Link
US (1) US11153332B2 (https=)
EP (1) EP3895048B1 (https=)
JP (1) JP7389806B2 (https=)
KR (1) KR102403629B1 (https=)
CN (1) CN113168469B (https=)
AU (1) AU2019400060B2 (https=)
CA (1) CA3120423C (https=)
ES (1) ES2946062T3 (https=)
IL (1) IL283698B2 (https=)
SG (1) SG11202105054UA (https=)
WO (1) WO2020120429A1 (https=)

Families Citing this family (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10805331B2 (en) 2010-09-24 2020-10-13 BitSight Technologies, Inc. Information technology security assessment system
US9438615B2 (en) 2013-09-09 2016-09-06 BitSight Technologies, Inc. Security risk management
US10257219B1 (en) 2018-03-12 2019-04-09 BitSight Technologies, Inc. Correlated risk in cybersecurity
US10521583B1 (en) 2018-10-25 2019-12-31 BitSight Technologies, Inc. Systems and methods for remote detection of software through browser webinjects
KR102165494B1 (ko) * 2018-12-28 2020-10-14 네이버 주식회사 온라인 서비스에서의 비정상 사용 행위 식별 방법, 장치 및 컴퓨터 프로그램
US10726136B1 (en) * 2019-07-17 2020-07-28 BitSight Technologies, Inc. Systems and methods for generating security improvement plans for entities
US11032244B2 (en) 2019-09-30 2021-06-08 BitSight Technologies, Inc. Systems and methods for determining asset importance in security risk management
US10893067B1 (en) 2020-01-31 2021-01-12 BitSight Technologies, Inc. Systems and methods for rapidly generating security ratings
US11023585B1 (en) 2020-05-27 2021-06-01 BitSight Technologies, Inc. Systems and methods for managing cybersecurity alerts
US20220284433A1 (en) * 2021-03-04 2022-09-08 Capital One Services, Llc Unidimensional embedding using multi-modal deep learning models
US12353563B2 (en) 2021-07-01 2025-07-08 BitSight Technologies, Inc. Systems and methods for accelerating cybersecurity assessments
US12425437B2 (en) 2021-09-17 2025-09-23 BitSight Technologies, Inc. Systems and methods for precomputation of digital asset inventories
US12282564B2 (en) 2022-01-31 2025-04-22 BitSight Technologies, Inc. Systems and methods for assessment of cyber resilience
CN115456789B (zh) * 2022-11-10 2023-04-07 杭州衡泰技术股份有限公司 基于交易模式识别的异常交易检测方法及其系统
US12321450B2 (en) 2023-03-02 2025-06-03 Bitdefender IPR Management Ltd. Antimalware systems and methods using optimal triggering of artificial intelligence modules
US20250094582A1 (en) * 2023-09-15 2025-03-20 International Business Machines Corporation Selectively prioritizing alerts received for an advanced cybersecurity threat prioritization system
US12225026B1 (en) * 2023-09-29 2025-02-11 Citibank, N.A. Detecting malicious activity using user-specific parameters
WO2026009439A1 (ja) * 2024-07-05 2026-01-08 Ntt株式会社 文書処理装置
JP2026014482A (ja) 2024-07-19 2026-01-29 富士通株式会社 データ処理方法、データ処理装置およびプログラム
US20260089179A1 (en) * 2024-09-24 2026-03-26 Oracle International Corporation Detecting stealing of principals in a cloud environment

Family Cites Families (51)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6526405B1 (en) * 1999-12-17 2003-02-25 Microsoft Corporation Determining similarity between event types in sequences
AU2001262958A1 (en) 2000-04-28 2001-11-12 Internet Security Systems, Inc. Method and system for managing computer security information
US6742124B1 (en) 2000-05-08 2004-05-25 Networks Associates Technology, Inc. Sequence-based anomaly detection using a distance matrix
US6973577B1 (en) 2000-05-26 2005-12-06 Mcafee, Inc. System and method for dynamically detecting computer viruses through associative behavioral analysis of runtime state
US7818797B1 (en) 2001-10-11 2010-10-19 The Trustees Of Columbia University In The City Of New York Methods for cost-sensitive modeling for intrusion detection and response
US7035863B2 (en) 2001-11-13 2006-04-25 Koninklijke Philips Electronics N.V. Method, system and program product for populating a user profile based on existing user profiles
US7234166B2 (en) 2002-11-07 2007-06-19 Stonesoft Corporation Event sequence detection
US7716739B1 (en) 2005-07-20 2010-05-11 Symantec Corporation Subjective and statistical event tracking incident management system
JP2007242002A (ja) * 2006-02-10 2007-09-20 Mitsubishi Electric Corp ネットワーク管理装置及びネットワーク管理方法及びプログラム
WO2008055156A2 (en) 2006-10-30 2008-05-08 The Trustees Of Columbia University In The City Of New York Methods, media, and systems for detecting an anomalous sequence of function calls
US8448249B1 (en) 2007-07-31 2013-05-21 Hewlett-Packard Development Company, L.P. Methods and systems for using lambda transitions for processing regular expressions in intrusion-prevention systems
WO2009097610A1 (en) 2008-02-01 2009-08-06 Northeastern University A vmm-based intrusion detection system
US20090328215A1 (en) 2008-06-30 2009-12-31 Microsoft Corporation Semantic networks for intrusion detection
GB0816556D0 (en) 2008-09-10 2008-10-15 Univ Napier Improvements in or relating to digital forensics
US8370931B1 (en) 2008-09-17 2013-02-05 Trend Micro Incorporated Multi-behavior policy matching for malware detection
US20120137367A1 (en) 2009-11-06 2012-05-31 Cataphora, Inc. Continuous anomaly detection based on behavior modeling and heterogeneous information analysis
US8661034B2 (en) 2010-02-03 2014-02-25 Gartner, Inc. Bimodal recommendation engine for recommending items and peers
US8752171B2 (en) 2010-09-03 2014-06-10 Mcafee, Inc. Behavioral tracking system, method, and computer program product for undoing events based on user input
US8572239B2 (en) 2010-09-20 2013-10-29 Microsoft Corporation Node clustering
US20120278354A1 (en) 2011-04-29 2012-11-01 Microsoft Corporation User analysis through user log feature extraction
EP2754049A4 (en) * 2011-09-09 2015-08-26 Hewlett Packard Development Co SYSTEMS AND METHOD FOR EVALUATING EVENTS BASED ON A REFERENCE BASE LINE AFTER THE TIME POSITION IN A SUCCESS OF EVENTS
US9058486B2 (en) 2011-10-18 2015-06-16 Mcafee, Inc. User behavioral risk assessment
US8839435B1 (en) 2011-11-04 2014-09-16 Cisco Technology, Inc. Event-based attack detection
US9129227B1 (en) 2012-12-31 2015-09-08 Google Inc. Methods, systems, and media for recommending content items based on topics
US9679131B2 (en) 2013-01-25 2017-06-13 Cybereason Inc. Method and apparatus for computer intrusion detection
US20140230062A1 (en) 2013-02-12 2014-08-14 Cisco Technology, Inc. Detecting network intrusion and anomaly incidents
US9225737B2 (en) 2013-03-15 2015-12-29 Shape Security, Inc. Detecting the introduction of alien content
US9166993B1 (en) 2013-07-25 2015-10-20 Symantec Corporation Anomaly detection based on profile history and peer history
GB2519941B (en) 2013-09-13 2021-08-25 Elasticsearch Bv Method and apparatus for detecting irregularities on device
US10346465B2 (en) 2013-12-20 2019-07-09 Qualcomm Incorporated Systems, methods, and apparatus for digital composition and/or retrieval
US20170039198A1 (en) * 2014-05-15 2017-02-09 Sentient Technologies (Barbados) Limited Visual interactive search, scalable bandit-based visual interactive search and ranking for visual interactive search
US9798883B1 (en) * 2014-10-06 2017-10-24 Exabeam, Inc. System, method, and computer program product for detecting and assessing security risks in a network
WO2016081516A2 (en) 2014-11-18 2016-05-26 Vectra Networks, Inc. Method and system for detecting threats using passive cluster mapping
US9652316B2 (en) 2015-03-31 2017-05-16 Ca, Inc. Preventing and servicing system errors with event pattern correlation
US9536072B2 (en) * 2015-04-09 2017-01-03 Qualcomm Incorporated Machine-learning behavioral analysis to detect device theft and unauthorized device usage
US20160335432A1 (en) * 2015-05-17 2016-11-17 Bitdefender IPR Management Ltd. Cascading Classifiers For Computer Security Applications
US20160352759A1 (en) 2015-05-25 2016-12-01 Yan Zhai Utilizing Big Data Analytics to Optimize Information Security Monitoring And Controls
CN105989849B (zh) 2015-06-03 2019-12-03 乐融致新电子科技(天津)有限公司 一种语音增强方法、语音识别方法、聚类方法及装置
US20170140384A1 (en) * 2015-11-12 2017-05-18 Fair Isaac Corporation Event sequence probability enhancement of streaming fraud analytics
EP3387814B1 (en) 2015-12-11 2024-02-14 ServiceNow, Inc. Computer network threat assessment
JP6679943B2 (ja) * 2016-01-15 2020-04-15 富士通株式会社 検知プログラム、検知方法および検知装置
US9762611B2 (en) 2016-02-16 2017-09-12 Cylance Inc. Endpoint-based man in the middle attack detection using machine learning models
US10218726B2 (en) * 2016-03-25 2019-02-26 Cisco Technology, Inc. Dynamic device clustering using device profile information
CN109564575B (zh) 2016-07-14 2023-09-05 谷歌有限责任公司 使用机器学习模型来对图像进行分类
US10832165B2 (en) 2016-12-02 2020-11-10 Facebook, Inc. Systems and methods for online distributed embedding services
US10552501B2 (en) 2017-03-28 2020-02-04 Oath Inc. Multilabel learning via supervised joint embedding of documents and labels
US10726128B2 (en) 2017-07-24 2020-07-28 Crowdstrike, Inc. Malware detection using local computational models
US12061954B2 (en) 2017-10-27 2024-08-13 Intuit Inc. Methods, systems, and computer program product for dynamically modifying a dynamic flow of a software application
US20190296933A1 (en) 2018-03-20 2019-09-26 Microsoft Technology Licensing, Llc Controlling Devices Based on Sequence Prediction
US11636287B2 (en) 2018-03-28 2023-04-25 Intuit Inc. Learning form-based information classification
US20190340615A1 (en) * 2018-05-04 2019-11-07 International Business Machines Corporation Cognitive methodology for sequence of events patterns in fraud detection using event sequence vector clustering

Similar Documents

Publication Publication Date Title
JP2022512195A5 (https=)
US9727723B1 (en) Recommendation system based approach in reducing false positives in anomaly detection
Kleinberg et al. The temporal logic of causal structures
CN108009016B (zh) 一种资源负载均衡控制方法及集群调度器
JP2019192271A5 (https=)
CN114528934A (zh) 时序数据异常检测方法、装置、设备及介质
JP2016503205A5 (https=)
JP2012194967A5 (https=)
KR20240007440A (ko) 이상징후 탐지 방법 및 시스템
US20210019189A1 (en) Methods and systems to determine and optimize reservoir simulator performance in a cloud computing environment
US8660979B2 (en) Event prediction
WO2014196980A1 (en) Prioritizing log messages
JP2014164425A (ja) 情報処理装置、リソース制御方法及びプログラム
CN114035959A (zh) 基于线性回归的资源分配方法、装置、设备及介质
KR20170072110A (ko) 클러스터 생성 장치 및 방법
CN115018081A (zh) 特征选择方法、应用程序预测方法及装置
US10416958B2 (en) Hierarchical clustering
CN120671628B (zh) 电路板布线的优化方法
CN112819056A (zh) 群控账号挖掘方法、装置、设备及存储介质
US11093266B2 (en) Using a generative model to facilitate simulation of potential policies for an infrastructure as a service system
CN113254153B (zh) 流程任务处理方法、装置、计算机设备和存储介质
US11494654B2 (en) Method for machine failure prediction using memory depth values
CN118569831B (zh) 一种数据中心健康度评分的估算方法及计算设备
CN117056307A (zh) 数据库管理方法、装置、设备、存储介质和程序产品
CN116933286A (zh) 一种数据脱敏方法、装置、设备及可读存储介质