Title:
スペースおよび時間効率のよい脅威検知
Document Type and Number:
Japanese Patent JP6723267
Kind Code:
B2
Abstract:
A security monitoring system operated by a downstream client continually collects event information indicating events that have occurred within the computing environment of the downstream client. The monitoring system, using software provided by a threat analytics system, aggregates the event information into a secure and space efficient data structure. The monitoring system transmits the data structures storing event information to the threat analytics system for further processing. The threat analytics system also receives threat indicators from intelligence feed data sources. The threat analytics system compares the event information received from each security monitoring system against the threat indicators collected from the intelligence feed data sources to identify red flag events. The threat analytics system processes the event information to synthesize all information related to the red flag event and reports the red flag event to the downstream client.
Inventors:
Way Hoang
Ease Jou
Hugh Gemanji
Ease Jou
Hugh Gemanji
Application Number:
JP2017558628A
Publication Date:
July 15, 2020
Filing Date:
January 27, 2016
Export Citation:
Assignee:
Anomali Inc.
International Classes:
G06F21/55; G06N20/00
Domestic Patent References:
| JP2011527046A |
Foreign References:
| US20130139268 | ||||
| US20130174259 | ||||
| WO2014082749A1 | ||||
| US20120096549 | ||||
| US20100281542 | ||||
| US20140013432 |
Attorney, Agent or Firm:
Patent Business Corporation Tani/Abe Patent Office