Title:
ネットワークへの脅威のインジケータの抽出及び応答
Document Type and Number:
Japanese Patent JP7340368
Kind Code:
B2
Abstract:
A device includes a communication interface and a processor. The communication interface is configured to receive a network threat report. The processor is configured to extract an indicator from the network threat report. The indicator is reported to be associated with a network threat. The processor is also configured to determine, based on the indicator, a confidence score indicating a likelihood that the indicator is associated with malicious activity. The processor is further configured to determine, based on the indicator, an impact score indicating a potential severity of the malicious activity. The processor is further configured to identify, based on the indicator, the confidence score, and the impact score, an action to be performed. The action includes blocking network traffic corresponding to the indicator or monitoring network traffic corresponding to the indicator. The processor is also configured to initiate performance of the action.
Inventors:
Rego, Isaac D.
Logan, Bradley Earle.
Logan, Bradley Earle.
Application Number:
JP2019124191A
Publication Date:
September 07, 2023
Filing Date:
July 03, 2019
Export Citation:
Assignee:
The Boeing Company
International Classes:
H04L67/00; G06F21/55; G06F21/56
Domestic Patent References:
JP2009110334A | ||||
JP2013525927A | ||||
JP2014049119A | ||||
JP2019204264A |
Foreign References:
US20140007238 |
Attorney, Agent or Firm:
Sonoda & Kobayashi Patent Attorneys Corporation