Adaptive data collection for root-cause analysis and intrusion detection

Number of patents in Portfolio can not be more than 2000

United States of America Patent

PATENT NO 8413247
APP PUB NO 20080229421A1
SERIAL NO

11717978

Stats

ATTORNEY / AGENT: (SPONSORED)

Importance

Loading Importance Indicators... loading....

Abstract

See full text

Endpoints in an enterprise security environment are configured to adaptively switch from their normal data collection mode to a long-term, detailed data collection mode where advanced analyses are applied to the collected detailed data. Such adaptive data collection and analysis is triggered upon the receipt of a security assessment of a particular type, where a security assessment is defined as a tentative assignment by an endpoint of broader contextual meaning to information (i.e., data in some context) that is collected about an object of interest. A specialized endpoint is coupled to the security assessment channel and performs as a centralized audit point by subscribing to all security assessments, logging the security assessments, and also logging the local actions taken by endpoints in response to detected security incidents in the environment. The specialized endpoint is arranged to perform various analyses and processes on historical security assessments.

Loading the Abstract Image... loading....

First Claim

See full text

Family

Loading Family data... loading....

Patent Owner(s)

Patent OwnerAddress
MICROSOFT TECHNOLOGY LICENSING LLCONE MICROSOFT WAY REDMOND WA 98052

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Barash, Uri Redmond, US 18 922
Helman, Yair Kefar Neter, IL 15 1207
Hudis, Efim Bellevue, US 55 2641
Malka, Joseph Haifa, IL 7 706

Cited Art Landscape

Load Citation

Patent Citation Ranking

Forward Cite Landscape

Load Citation