专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08880893B2 Enterprise information asset protection through insider attack specification, monitoring and mitigation 有权
标题翻译：企业信息资产保护通过内部人员攻击规范，监测和减轻
公开(公告)号：US08880893B2
公开(公告)日：2014-11-04
申请号：US10950070
申请日：2004-09-24
申请人： Pratyush Moghe , Narain Gehani , Peter T. Smith
发明人： Pratyush Moghe , Narain Gehani , Peter T. Smith
IPC分类号： H04K1/00 , G06F21/31 , H04L29/06 , G06F21/55
CPC分类号： H04L63/1441 , G06F21/316 , G06F21/552 , G06F2221/2101 , G06F2221/2115
摘要： The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.
摘要翻译：本发明提供了一种策略规范框架，以使得企业能够使用给定数据访问的整体视图来指定给定的内部攻击，以及响应于这种检测来指定和实现一个或多个入侵缓解方法的手段一次攻击政策规范规定了使用“异常”和“签名”属性来捕捉非法数据访问的复杂行为特征。当发生攻击时，然后实现先前定义的管理员（或系统定义的）缓解响应（例如，验证，断开，解除配置等）。

2. 发明申请

US20080307493A1 Policy specification framework for insider intrusions 失效
标题翻译：内幕侵入政策规范框架
公开(公告)号：US20080307493A1
公开(公告)日：2008-12-11
申请号：US12193136
申请日：2008-08-18
申请人： Pratyush Moghe , Narain Gehani
发明人： Pratyush Moghe , Narain Gehani
IPC分类号： G06F17/00
CPC分类号： H05K7/1495
摘要： This disclosure provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.
摘要翻译：本公开提供了一种策略规范框架，以使得企业能够使用给定数据访问的整体视图来指定给定的内部攻击，以及响应于检测到这种攻击的方法来指定和实现一个或多个入侵缓解方法攻击。政策规范规定了使用“异常”和“签名”属性来捕捉非法数据访问的复杂行为特征。当发生攻击时，然后实现先前定义的管理员（或系统定义的）缓解响应（例如，验证，断开，解除配置等）。

3. 发明授权

US07415719B2 Policy specification framework for insider intrusions 失效
标题翻译：内幕侵入政策规范框架
公开(公告)号：US07415719B2
公开(公告)日：2008-08-19
申请号：US10950073
申请日：2004-09-24
申请人： Pratyush Moghe , Narain Gehani
发明人： Pratyush Moghe , Narain Gehani
IPC分类号： H04L9/00 , H04L9/32
CPC分类号： H05K7/1495
摘要： The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, deprovision, or the like) is then implemented.
摘要翻译：本发明提供了一种策略规范框架，以使得企业能够使用给定数据访问的整体视图来指定给定的内部攻击，以及响应于这种检测来指定和实现一个或多个入侵缓解方法的手段一次攻击政策规范规定了使用“异常”和“签名”属性来捕捉非法数据访问的复杂行为特征。当发生攻击时，然后实现先前定义的管理员（或系统定义的）缓解响应（例如，验证，断开连接，取消配置等）。

4. 发明授权

US07870598B2 Policy specification framework for insider intrusions 失效
标题翻译：内幕侵入政策规范框架
公开(公告)号：US07870598B2
公开(公告)日：2011-01-11
申请号：US12193136
申请日：2008-08-18
申请人： Pratyush Moghe , Narain Gehani
发明人： Pratyush Moghe , Narain Gehani
IPC分类号： H04L9/00 , H04L9/32
CPC分类号： H05K7/1495
摘要： This disclosure provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.
摘要翻译：本公开提供了一种策略规范框架，以使得企业能够使用给定数据访问的整体视图来指定给定的内部攻击，以及响应于检测到这种攻击的方法来指定和实现一个或多个入侵缓解方法攻击。政策规范规定了使用“异常”和“签名”属性来捕捉非法数据访问的复杂行为特征。当发生攻击时，然后实现先前定义的管理员（或系统定义的）缓解响应（例如，验证，断开，解除配置等）。

5. 发明申请

US20050071644A1 Policy specification framework for insider intrusions 失效
标题翻译：内幕侵入政策规范框架
公开(公告)号：US20050071644A1
公开(公告)日：2005-03-31
申请号：US10950073
申请日：2004-09-24
申请人： Pratyush Moghe , Narain Gehani
发明人： Pratyush Moghe , Narain Gehani
IPC分类号： H04K1/00
CPC分类号： H05K7/1495
摘要： The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, deprovision, or the like) is then implemented.
摘要翻译：本发明提供了一种策略规范框架，以使得企业能够使用给定数据访问的整体视图来指定给定的内部攻击，以及响应于这种检测来指定和实现一个或多个入侵缓解方法的手段一次攻击政策规范规定了使用“异常”和“签名”属性来捕捉非法数据访问的复杂行为特征。当发生攻击时，然后实现先前定义的管理员（或系统定义的）缓解响应（例如，验证，断开连接，取消配置等）。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式