-
公开(公告)号:WO2018217259A3
公开(公告)日:2018-11-29
申请号:PCT/US2018/019829
申请日:2018-02-27
Applicant: NEC LABORATORIES AMERICA, INC
Inventor: CHEN, Zhengzhang , TANG, LuAn , LI, Zhichun , CAO, Cheng
Abstract: Systems and methods for determining a risk level of a host in a network include modeling (402) a target host's behavior based on historical events recorded at the target host. One or more original peer hosts having behavior similar to the target host's behavior are determined (404). An anomaly score for the target host is determined (406) based on how the target host's behavior changes relative to behavior of the one or more original peer hosts over time. A security management action is performed based on the anomaly score.
-
公开(公告)号:WO2018217259A2
公开(公告)日:2018-11-29
申请号:PCT/US2018/019829
申请日:2018-02-27
Applicant: NEC LABORATORIES AMERICA, INC
Inventor: CHEN, Zhengzhang , TANG, LuAn , LI, Zhichun , CAO, Cheng
CPC classification number: H04L63/1425 , G06F21/552 , G06K9/00496 , G06K2009/00738
Abstract: Systems and methods for determining a risk level of a host in a network include modeling (402) a target host's behavior based on historical events recorded at the target host. One or more original peer hosts having behavior similar to the target host's behavior are determined (404). An anomaly score for the target host is determined (406) based on how the target host's behavior changes relative to behavior of the one or more original peer hosts over time. A security management action is performed based on the anomaly score.
-
Search Results
2
records
(took 0.023 seconds)
