发明名称 |
METHOD AND SYSTEM FOR ADDRESSING INTRUSION ATTACKS ON A COMPUTER SYSTEM |
摘要 |
According to one embodiment of the invention, a computerized method for addressing intrusion detection attacks directed at a computer includes receiving a data stream corresponding to a potential attack on the computer [304] and calculating an event risk rating for the data stream [314]. Calculating the event risk rating includes determining at least one component of the risk rating. In one embodiment, the component risk ratings are: a signature fidelity rating indicative of the likelihood the potential attack will affect the computer in the absence of knowledge regarding the computer [308], an attack relevance rating indicative of the relevance of the potential attack to the computer [310], and a target value rating indicative of the perceived value of the computer [312]. The method also includes responding to the potential attack based on the calculated risk rating. |
申请公布号 |
CA2543291(C) |
申请公布日期 |
2014.04.08 |
申请号 |
CA20042543291 |
申请日期 |
2004.10.08 |
申请人 |
CISCO TECHNOLOGY, INC. |
发明人 |
WILEY, KEVIN L.;HALL, MICHAEL L.;LATHEM, GERALD S.;GLEICHAUF, ROBERT E. |
分类号 |
G06F11/00;G06F;G06F11/22;G06F11/30;G06F11/32;G06F11/34;G06F11/36;G06F12/14;G06F12/16;G06F15/18;G06F21/00;G08B23/00;H04L9/32;H04L29/06 |
主分类号 |
G06F11/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|