发明名称 |
DETERMINING THREAT LEVEL ASSOCIATED WITH NETWORK ACTIVITY |
摘要 |
Network devices such as intrusion detection systems, routers, firewalls, servers, and other network devices are monitored to aggregate all event data generated by monitored devices to provide a threat ranking of all network activity. A threat level for a given host is determined by a threat weighting assigned to that host and a threat weighting assigned to that host's netblock. In addition, a vulnerability for a given event is determined by the event's destination threat associated with a vulnerability value indexed by the event's destination and the event's type.
|
申请公布号 |
CA2496779(C) |
申请公布日期 |
2011.02.15 |
申请号 |
CA20032496779 |
申请日期 |
2003.08.26 |
申请人 |
GUARDEDNET, INC. |
发明人 |
CONNARY, IVEN;BUCK, DARIN J.;CALDWELL, MATTHEW F.;HUGHES, ROBERT T. |
分类号 |
G06F12/14;H04L12/26;H04L29/06;H04L29/08 |
主分类号 |
G06F12/14 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|