Invention Grant
- Patent Title: Detecting and predicting cyber-attack phases in adjacent data processing environment regions
-
Application No.: US15986291Application Date: 2018-05-22
-
Publication No.: US10554686B2Publication Date: 2020-02-04
- Inventor: Mohamed N. Ahmed , Aaron K. Baughman , Nicholas A. McCrory , Andeep S. Toor , Michelle Welcks
- Applicant: International Business Machines Corporation
- Applicant Address: US NY Armonk
- Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
- Current Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
- Current Assignee Address: US NY Armonk
- Agency: Garg Law Firm, PLLC
- Agent Rakesh Garg; James Nock
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F16/22
Abstract:
A set and a second set of collections of forecasted feature vectors are selected from a repository for a future time window, a cyber-attack being in progress in a data processing environment at the present time, a collection in the set and a collection in the second set indicating an event related to the cyber-attack in a first region and a second event in a second region, respectively, of the environment at a discrete time. The events corresponding to the collections are classified, using an LTSM network, into a class of cyber-attack. From a mapping between a set of phases of the cyber-attack and a set of classes, a phase that corresponds to the class is predicted as likely to occur during the future time window in the region.
Public/Granted literature
- US20180270269A1 DETECTING AND PREDICTING CYBER-ATTACK PHASES IN ADJACENT DATA PROCESSING ENVIRONMENT REGIONS Public/Granted day:2018-09-20
Information query
