| 发明名称 |
System and Method of Cyber Threat Intensity Determination and Application to Cyber Threat Mitigation |
| 摘要 |
A security system comprising a computer, a memory, a data store comprising a plurality of consensus evaluations and a plurality of cyber threat analyst ratings, and an application stored in the memory. When executed by the computer, the application generates a cyber threat report that identifies of a cyber threat intent and a cyber threat technology, receives from a cyber threat analyst an input of a cyber threat frequency score, an input of a cyber threat likelihood score, and an input of a cyber threat capability score, and generates a cyber threat intensity based on the scores and based on a cyber threat analyst rating stored in the data store and associated with the cyber threat analyst inputting the scores, whereby the cyber threat report and the cyber threat intensity are used to select cyber risk mitigation actions to economically manage the cyber risk of an enterprise or organization. |
| 申请公布号 |
US2016241581(A1) |
申请公布日期 |
2016.08.18 |
| 申请号 |
US201414244886 |
申请日期 |
2014.04.03 |
| 申请人 |
iSIGHT Partners, Inc. |
发明人 |
Watters John P.;Doyle Frederick;Peltokangas Henry;Keane Matthew |
| 分类号 |
H04L29/06;G06F17/30 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A security system, comprising:
a computer system; a memory accessible to the computer system; a data store comprising a plurality of consensus evaluations and a plurality of cyber threat analyst ratings; and an application stored in the memory that, when executed by the computer system
generates a cyber threat report based on user inputs, wherein the report comprises an identification of a cyber threat intent and the identification of a cyber threat technology,receives from a cyber threat analyst an input of a cyber threat frequency score associated with a set of cyber threat intelligence, an input of a cyber threat likelihood score associated with the set of cyber threat intelligence, and an input of a cyber threat capability score associated with the set of cyber threat intelligence, andgenerates a cyber threat intensity based on the cyber threat frequency score, based on the cyber threat likelihood score, based on the cyber threat capability score, and based on a cyber threat analyst rating stored in the data store and associated with the cyber threat analyst inputting the scores, whereby the cyber threat report and the cyber threat intensity are used to select cyber risk mitigation actions to economically manage the cyber risk of an enterprise or organization. |
| 地址 |
Dallas TX US |
