Invention Grant
US07870598B2 Policy specification framework for insider intrusions 失效
内幕侵入政策规范框架

Policy specification framework for insider intrusions
Abstract:
This disclosure provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.
Public/Granted literature
Information query
Patent Agency Ranking
0/0