发明名称 |
MALICIOUS ATTACK DETECTION AND ANALYSIS |
摘要 |
<p>A system for characterizing malicious activity in an intelligent utility grid system includes a system storage in which to store a database including a plurality of rules. A collector is operable to collect and store in the system storage information-technology (IT) data including IT-related activity from the intelligent grid system. A complex event processing (CEP) bus is operable to receive non-IT data including location-specific event data from a plurality of electronic sources, the CEP bus further operable to disregard the non-IT data failing to meet a predetermined level of relevance to one of a plurality of risk-related events. A processor is operable to apply the plurality of rules to the relevant non-IT data to: associate an undesired event with reference to the IT-related activity; and determine a probability that the undesired event is indicative of malicious activity. The processor further applies a risk characterization to the undesired event based on the probability and the IT-related activity.</p> |
申请公布号 |
WO2011146284(A2) |
申请公布日期 |
2011.11.24 |
申请号 |
WO2011US35888 |
申请日期 |
2011.05.10 |
申请人 |
ACCENTURE GLOBAL SERVICES LIMITED;SCOTT, ANTHONY, DAVID |
发明人 |
SCOTT, ANTHONY, DAVID |
分类号 |
G05B9/02;G06F1/26 |
主分类号 |
G05B9/02 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|