Invention Publication
- Patent Title: Quantification of Adversary Tactics, Techniques, and Procedures Using Threat Attribute Groupings and Correlation
-
Application No.: US17525773Application Date: 2021-11-12
-
Publication No.: US20230156017A1Publication Date: 2023-05-18
- Inventor: Ankur Sunil Tyagi , Mayuresh Vishwas Dani
- Applicant: Qualys, Inc.
- Applicant Address: US CA Foster City
- Assignee: Qualys, Inc.
- Current Assignee: Qualys, Inc.
- Current Assignee Address: US CA Foster City
- Main IPC: H04L29/06
- IPC: H04L29/06
Abstract:
The present disclosure provides a method and a system for generating a decision tree that tests security event files. The method comprises receiving attack data comprising a plurality of attack execution operations and determining threat attribute data based on the attack data. The method also comprises generating a decision tree using the threat attribute data. The decision tree includes at least one first node and a plurality of second nodes connected to the at least one first node. A first nodal data may be generated and assigned to each second node based on one or more threat attributes associated with the threat attribute data. In response to receiving a security event file, the method executes one or more security tests, using the decision tree, for the security event file.
Public/Granted literature
Information query
