Invention Grant
- Patent Title: Apparatuses for optimizing rule to improve detection accuracy for exploit attack and methods thereof
-
Application No.: US16844984Application Date: 2020-04-09
-
Publication No.: US11057425B2Publication Date: 2021-07-06
- Inventor: Mi Joo Kim , Woong Go , Hong Geun Kim , Sung Taek Oh , Jae Hyuk Lee , Soon Tai Park
- Applicant: KOREA INTERNET & SECURITY AGENCY
- Applicant Address: KR Jeollanam-do
- Assignee: KOREA INTERNET & SECURITY AGENCY
- Current Assignee: KOREA INTERNET & SECURITY AGENCY
- Current Assignee Address: KR Jeollanam-do
- Agency: Sheppard Mullin Richter & Hampton LLP
- Priority: KR10-2019-0152543 20191125
- Main IPC: H04L29/06
- IPC: H04L29/06
Abstract:
An apparatus comprising a processor to execute the rule optimizer to perform a number of operations. One operation comprises obtaining 5 log data including a result of detecting an exploit attack based on a rule. Another operation comprises time-series analyzing the obtained log data to update at least some of previously applied detection rules. There is provided an apparatus for automatically optimizing a rule to improve the detection accuracy for an exploit attack in a rule-based attack detection system, and a method performed on the apparatus.
Public/Granted literature
- US20210168169A1 APPARATUSES FOR OPTIMIZING RULE TO IMPROVE DETECTION ACCURACY FOR EXPLOIT ATTACK AND METHODS THEREOF Public/Granted day:2021-06-03
Information query
