Risk modeling
First Claim
1. A non-transitory computer-readable storage medium that stores one or more sequences of instructions for modeling a risk of security breaches to a network, which when executed by one or more processors, cause:
- one or more agents gathering, from multiple sources across the network, analysis data that identifies observed characteristics of one or more nodes of the network;
generating, using the analysis data, a multi-layer risk model for the network that comprises a first model layer that models an inherent risk of security breaches to assets of the network based on the observed characteristics of the one or more nodes;
generating, using the multi-layer model, a statistical likelihood of a risk of security breach for each node of the network; and
providing, to a user, the statistical likelihood of the risk of security breach for at least one node of the network.
1 Assignment
0 Petitions
Accused Products
Abstract
Approaches for modeling a risk of security breaches to a network. Agents gather, from multiple sources across the network, analysis data that identifies observed characteristics of habitable nodes and opaque nodes. Using the analysis data a multi-layer risk model for the network is generated that comprises a first layer that models an inherent risk of security breaches to assets of the network based on the observed characteristics. The model also comprises a second layer that models a present state of the inherent risk to the assets caused by global and temporal events. The model also comprises a third layer that models a change to the risk of security breaches in response to potential mitigative actions. The model may be used to understand how risk of a security breach is distributed and interdependent upon the nodes of the network so as to allow the most valuable preventive measures to be taken.
-
Citations
22 Claims
-
1. A non-transitory computer-readable storage medium that stores one or more sequences of instructions for modeling a risk of security breaches to a network, which when executed by one or more processors, cause:
-
one or more agents gathering, from multiple sources across the network, analysis data that identifies observed characteristics of one or more nodes of the network; generating, using the analysis data, a multi-layer risk model for the network that comprises a first model layer that models an inherent risk of security breaches to assets of the network based on the observed characteristics of the one or more nodes; generating, using the multi-layer model, a statistical likelihood of a risk of security breach for each node of the network; and providing, to a user, the statistical likelihood of the risk of security breach for at least one node of the network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An apparatus for modeling a risk of security breaches to a network, comprising:
-
one or more processors; and one or more non-transitory computer-readable storage mediums storing one or more sequences of instructions, which when executed, cause; one or more agents gathering, from multiple sources across the network, analysis data that identifies observed characteristics of one or more nodes of the network; generating, using the analysis data, a multi-layer risk model for the network that comprises a first model layer that models an inherent risk of security breaches to assets of the network based on the observed characteristics of the one or more nodes; generating, using the multi-layer model, a statistical likelihood of a risk of security breach for each node of the network; and providing, to a user, the statistical likelihood of the risk of security breach for at least one node of the network.
-
-
22. A method for modeling a risk of security breaches to a network, comprising:
-
one or more agents gathering, from multiple sources across the network, analysis data that identifies observed characteristics of one or more nodes of the network, wherein said one or more agents are implemented in one or more of hardware and software; generating, using the analysis data, a multi-layer risk model for the network that comprises a first model layer that models an inherent risk of security breaches to assets of the network based on the observed characteristics of the one or more nodes; generating, using the multi-layer model, a statistical likelihood of a risk of security breach for each node of the network, wherein said analysis data and said statistical likelihood of a risk of security breach for each node of the network are generated using one or more entities that are implemented in one or more of hardware and software; and providing, to a user, the statistical likelihood of the risk of security breach for at least one node of the network, wherein said statistical likelihood of the risk is transmitted over a computer network or electronically displayed upon a physical display.
-
Specification