JP7714646B2 - リソース制約のあるデバイスのための適応型セキュリティ - Google Patents

リソース制約のあるデバイスのための適応型セキュリティ

Info

Publication number
JP7714646B2
JP7714646B2 JP2023526177A JP2023526177A JP7714646B2 JP 7714646 B2 JP7714646 B2 JP 7714646B2 JP 2023526177 A JP2023526177 A JP 2023526177A JP 2023526177 A JP2023526177 A JP 2023526177A JP 7714646 B2 JP7714646 B2 JP 7714646B2
Authority
JP
Japan
Prior art keywords
security
cyber
value
iocs
attack
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
JP2023526177A
Other languages
English (en)
Japanese (ja)
Other versions
JP2023550270A (ja
JP2023550270A5 (https=
Inventor
シャイデラー,ティム
スル,マティアス
ラガヴェンドラ,アルジュン ウドゥピ
ジョバンニーニ,アンドレア
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Kyndryl Inc
Original Assignee
Kyndryl Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Kyndryl Inc filed Critical Kyndryl Inc
Publication of JP2023550270A publication Critical patent/JP2023550270A/ja
Publication of JP2023550270A5 publication Critical patent/JP2023550270A5/ja
Application granted granted Critical
Publication of JP7714646B2 publication Critical patent/JP7714646B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/552Detecting local intrusion or implementing counter-measures involving long-term monitoring or reporting
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/554Detecting local intrusion or implementing counter-measures involving event detection and direct action
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/566Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/577Assessing vulnerabilities and evaluating computer system security
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/50Allocation of resources, e.g. of the central processing unit [CPU]
    • G06F9/5061Partitioning or combining of resources
    • G06F9/5077Logical partitioning of resources; Management or configuration of virtualized resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1433Vulnerability analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/034Test or assess a computer or a system

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Virology (AREA)
  • Storage Device Security (AREA)
  • Computer And Data Communications (AREA)
  • Debugging And Monitoring (AREA)
JP2023526177A 2020-10-28 2021-10-07 リソース制約のあるデバイスのための適応型セキュリティ Active JP7714646B2 (ja)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US17/082,348 2020-10-28
US17/082,348 US11539737B2 (en) 2020-10-28 2020-10-28 Adaptive security for resource constraint devices
PCT/IB2021/059206 WO2022090840A1 (en) 2020-10-28 2021-10-07 Adaptive security for resource constraint devices

Publications (3)

Publication Number Publication Date
JP2023550270A JP2023550270A (ja) 2023-12-01
JP2023550270A5 JP2023550270A5 (https=) 2024-09-03
JP7714646B2 true JP7714646B2 (ja) 2025-07-29

Family

ID=81257801

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2023526177A Active JP7714646B2 (ja) 2020-10-28 2021-10-07 リソース制約のあるデバイスのための適応型セキュリティ

Country Status (5)

Country Link
US (1) US11539737B2 (https=)
JP (1) JP7714646B2 (https=)
DE (1) DE112021004273T5 (https=)
GB (1) GB2614962A (https=)
WO (1) WO2022090840A1 (https=)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12235969B2 (en) 2019-05-20 2025-02-25 Securin Inc. System and method for calculating and understanding aggregation risk and systemic risk across a population of organizations with respect to cybersecurity for purposes of damage coverage, consequence management, and disaster avoidance
US11914724B2 (en) * 2020-12-24 2024-02-27 Acronis International Gmbh Systems and methods for adjusting data protection levels based on system metadata
US12353546B2 (en) * 2022-07-21 2025-07-08 Uab 360 It Method and apparatus for creating a malware detection dataset
TWI822388B (zh) * 2022-10-12 2023-11-11 財團法人資訊工業策進會 資安防護偵測規則的標示方法及資安威脅策略、技術與攻擊流程標示裝置
US20240146749A1 (en) * 2022-10-28 2024-05-02 International Business Machines Corporation Threat relevancy based on user affinity
US12483533B2 (en) * 2022-11-16 2025-11-25 The Toronto-Dominion Bank Automatic validations and prioritizations of indicators of compromise
DE102023132686A1 (de) * 2023-11-23 2025-05-28 Airbus Defence and Space GmbH Deterministische Zeitverwaltung und Zeitverwaltungseinheit für Mehrkernprozessoren
US12596802B2 (en) * 2024-03-29 2026-04-07 Dell Products L.P. Malware detection techniques

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2015130152A (ja) 2013-12-06 2015-07-16 三菱電機株式会社 情報処理装置及びプログラム
JP2018077597A (ja) 2016-11-08 2018-05-17 株式会社日立製作所 セキュリティ対策立案支援システムおよび方法
US20200336497A1 (en) 2019-04-18 2020-10-22 International Business Machines Corporation Detecting sensitive data exposure via logging

Family Cites Families (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1999023538A1 (en) 1997-10-28 1999-05-14 Georgia Tech Research Corporation Adaptive data security system and method
US7536724B1 (en) 2003-10-01 2009-05-19 Symantec Corporation Risk profiling for optimizing deployment of security measures
US7464171B2 (en) 2004-10-01 2008-12-09 Microsoft Corporation Effective protection of computer data traffic in constrained resource scenarios
US9565204B2 (en) 2014-07-18 2017-02-07 Empow Cyber Security Ltd. Cyber-security system and methods thereof
US9444829B1 (en) * 2014-07-30 2016-09-13 Symantec Corporation Systems and methods for protecting computing resources based on logical data models
EP3021546B1 (en) 2014-11-14 2020-04-01 Institut Mines-Telecom / Telecom Sudparis Selection of countermeasures against cyber attacks
US11282017B2 (en) 2015-07-11 2022-03-22 RiskRecon Inc. Systems and methods for monitoring information security effectiveness
US20170223030A1 (en) * 2016-01-29 2017-08-03 Splunk Inc. Detection of security transactions
US10009370B1 (en) * 2016-03-01 2018-06-26 EMC IP Holding Company LLC Detection and remediation of potentially malicious files
US10333965B2 (en) 2016-09-12 2019-06-25 Qualcomm Incorporated Methods and systems for on-device real-time adaptive security based on external threat intelligence inputs
US10673871B2 (en) 2017-10-04 2020-06-02 New Context Services, Inc. Autonomous edge device for monitoring and threat detection
US11146581B2 (en) 2018-12-31 2021-10-12 Radware Ltd. Techniques for defending cloud platforms against cyber-attacks
CN110191083B (zh) 2019-03-20 2020-09-25 中国科学院信息工程研究所 面向高级持续性威胁的安全防御方法、装置与电子设备
CN111385288B (zh) 2020-02-20 2022-03-01 中国人民解放军战略支援部队信息工程大学 基于隐蔽对抗的移动目标防御时机选取方法及装置
US11997140B2 (en) * 2021-01-13 2024-05-28 Microsoft Technology Licensing, Llc Ordering security incidents using alert diversity

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2015130152A (ja) 2013-12-06 2015-07-16 三菱電機株式会社 情報処理装置及びプログラム
JP2018077597A (ja) 2016-11-08 2018-05-17 株式会社日立製作所 セキュリティ対策立案支援システムおよび方法
US20200336497A1 (en) 2019-04-18 2020-10-22 International Business Machines Corporation Detecting sensitive data exposure via logging

Also Published As

Publication number Publication date
US11539737B2 (en) 2022-12-27
JP2023550270A (ja) 2023-12-01
US20220131889A1 (en) 2022-04-28
GB202218403D0 (en) 2023-01-18
GB2614962A (en) 2023-07-26
DE112021004273T5 (de) 2023-10-12
WO2022090840A1 (en) 2022-05-05

Similar Documents

Publication Publication Date Title
JP7714646B2 (ja) リソース制約のあるデバイスのための適応型セキュリティ
US11146581B2 (en) Techniques for defending cloud platforms against cyber-attacks
JP7544738B2 (ja) ロギングによる機密データの暴露の検出
JP6916300B2 (ja) セキュリティ脅威検出のための危殆化のインジケータを収集すること
US11068588B2 (en) Detecting irregularities on a device
US11861018B2 (en) Method and system for dynamic testing with diagnostic assessment of software security vulnerability
US11403389B2 (en) System and method of detecting unauthorized access to computing resources for cryptomining
CN108040493B (zh) 基于低置信度安全事件来检测安全事故的方法和装置
CN110598404B (zh) 安全风险监管方法、监管装置、服务器和存储介质
EP3455773B1 (en) Inferential exploit attempt detection
Park et al. Performance evaluation of a fast and efficient intrusion detection framework for advanced persistent threat-based cyberattacks
Alyas Detection and mitigation of DDoS attack in cloud computing using machine learning algorithm
US20140172495A1 (en) System and method for automated brand protection
US20180343277A1 (en) Elastic policy tuning based upon crowd and cyber threat intelligence
US12580948B2 (en) Cybersecurity operations mitigation management
Efe Risk modelling of cyber threats against MIS and ERP applications
US12062098B2 (en) Systems and methods for detecting and mitigating cyber security threats
Milosevic et al. Malware threats and solutions for trustworthy mobile systems design
US10417414B2 (en) Baseline calculation for firewalling
US8418251B1 (en) Detecting malware using cost characteristics
Kumar et al. A zero-day resistant malware detection method for securing cloud using SVM and sandboxing techniques
Sriman et al. A systematic study about crypto jacking
Nagar The Evolution of Security Operations Centers (SOCs): Shifting from Reactive to Proactive Cybersecurity Strategies
Wali et al. Ransomware Defense Strategies Using Cyber Threat Intelligence: A Case Study of a Saudi Organization
Kabir et al. Boomerang: Automated Threat Detection and Incident Response Framework for Virtual Machines in Cloud Environments

Legal Events

Date Code Title Description
A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20230703

RD01 Notification of change of attorney

Free format text: JAPANESE INTERMEDIATE CODE: A7426

Effective date: 20230428

A977 Report on retrieval

Free format text: JAPANESE INTERMEDIATE CODE: A971007

Effective date: 20240612

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20240618

A524 Written submission of copy of amendment under article 19 pct

Free format text: JAPANESE INTERMEDIATE CODE: A524

Effective date: 20240826

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20241210

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20250123

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20250415

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20250509

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20250708

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20250716

R150 Certificate of patent or registration of utility model

Ref document number: 7714646

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150