Invention Grant
- Patent Title: Identifying security actions for responding to security threats based on threat state information
-
Application No.: US16736120Application Date: 2020-01-07
-
Publication No.: US11025664B2Publication Date: 2021-06-01
- Inventor: Sourabh Satish , Oliver Friedrichs , Atif Mahadik , Govind Salinas
- Applicant: Splunk Inc.
- Applicant Address: US CA San Francisco
- Assignee: Splunk Inc.
- Current Assignee: Splunk Inc.
- Current Assignee Address: US CA San Francisco
- Agency: Nicholson De Vos Webster & Elliott LLP
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F21/55 ; G06F16/28 ; H04L12/851
Abstract:
Systems, methods, and software described herein provide security actions based on the current state of a security threat. In one example, a method of operating an advisement system in a computing environment with a plurality of computing assets includes identifying a security threat within the computing environment. The method further includes, in response to identifying the security threat, obtaining state information for the security threat within the computing environment, and determining a current state for the security threat within the computing environment. The method also provides obtaining enrichment information for the security threat and determining one or more security actions for the security threat based on the enrichment information and the current state for the security threat.
Public/Granted literature
- US20200287930A1 IDENTIFYING SECURITY ACTIONS FOR RESPONDING TO SECURITY THREATS BASED ON THREAT STATE INFORMATION Public/Granted day:2020-09-10
Information query
