Invention Grant
US09336388B2 Method and system for thwarting insider attacks through informational network analysis
有权
通过信息网络分析阻止内部人员攻击的方法和系统
- Patent Title: Method and system for thwarting insider attacks through informational network analysis
- Patent Title (中): 通过信息网络分析阻止内部人员攻击的方法和系统
-
Application No.: US13709940Application Date: 2012-12-10
-
Publication No.: US09336388B2Publication Date: 2016-05-10
- Inventor: Oliver Brdiczka , Priya Mahadevan , Runting Shi
- Applicant: Palo Alto Research Center Incorporated
- Applicant Address: US CA Palo Alto
- Assignee: PALO ALTO RESEARCH CENTER INCORPORATED
- Current Assignee: PALO ALTO RESEARCH CENTER INCORPORATED
- Current Assignee Address: US CA Palo Alto
- Agency: Park, Vaughan, Fleming & Dowler LLP
- Agent Shun Yao
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F21/55 ; G06F12/14
Abstract:
One embodiment of the present invention provides a system for detecting insider attacks in an organization. During operation, the system collects data describing user activities. The system extracts information from the data that includes user information and user communications. The system then generates a topic-specific graph based on the extracted information. The system analyzes a structure of the graph to determine if one or more rules have been violated. The system may determine that a rule associated with the graph has been violated and signal an alarm in response to detecting the rule violation.
Public/Granted literature
- US20140165195A1 METHOD AND SYSTEM FOR THWARTING INSIDER ATTACKS THROUGH INFORMATIONAL NETWORK ANALYSIS Public/Granted day:2014-06-12
Information query
