Building risk analysis system with risk combination for multiple threats
First Claim
1. A building management system comprising:
- one or more non-transitory computer-readable storage media having instructions stored thereon that, when executed by one or more processors, cause the one or more processors to;
receive a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset;
determine whether the first threat is correlated with the second threat;
determine a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; and
determine the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat;
wherein the instructions cause the one or more processors to determine the first value by;
updating a parameter value of a threat severity parameter for the first threat based on the correlation of the first threat and the second threat;
generating a first risk score for the first threat based on a risk model and the parameter value;
generating a second risk score for the second threat based on the risk model; and
selecting one of the first risk score and the second risk score by comparing a value of the first risk score to the second risk score, wherein a selected risk score comprises a value representing a greatest level of risk.
3 Assignments
0 Petitions
Accused Products
Abstract
A building management system includes one or more computer-readable storage media having instructions stored thereon that, when executed by one or more processors, cause the one or more processors to receive a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset and determine whether the first threat is correlated with the second threat. The instructions cause the one or more processors to determine a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat and determine the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat.
70 Citations
41 Claims
-
1. A building management system comprising:
-
one or more non-transitory computer-readable storage media having instructions stored thereon that, when executed by one or more processors, cause the one or more processors to; receive a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; determine whether the first threat is correlated with the second threat; determine a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; and determine the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat; wherein the instructions cause the one or more processors to determine the first value by; updating a parameter value of a threat severity parameter for the first threat based on the correlation of the first threat and the second threat; generating a first risk score for the first threat based on a risk model and the parameter value; generating a second risk score for the second threat based on the risk model; and selecting one of the first risk score and the second risk score by comparing a value of the first risk score to the second risk score, wherein a selected risk score comprises a value representing a greatest level of risk. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for risk analysis, the method comprising:
-
receiving a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; determining whether the first threat is correlated with the second threat; determining a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; determining the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat; and determining an asset-threat risk score for the first threat and the asset based on; a vulnerability parameter associated with the asset; an asset cost parameter associated with the asset; a severity associated with the first threat; and a geographic distance between the asset and the first threat. - View Dependent Claims (13, 14, 15, 16)
-
-
17. A building management system comprising:
-
one or more non-transitory computer-readable storage media communicably coupled to one or more processors and configured to store instructions; and the one or more processors configured to execute the instructions to; receive a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; determine whether the first threat is correlated with the second threat; determine a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; determine the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat; and determine an asset-threat risk score for the first threat and the asset based on; a vulnerability parameter associated with the asset; an asset cost parameter associated with the asset; a severity associated with the first threat; and a geographic distance between the asset and the first threat.
-
-
18. A building management system comprising:
one or more non-transitory computer-readable storage media having instructions stored thereon that, when executed by one or more processors, cause the one or more processors to; receive a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; generate a first risk score based on the first threat; generate a second risk score based on the second threat; determine whether the first threat is correlated with the second threat; determine a value of the risk score to be a first value by determining a p-norm with the first risk score and the second risk score in response to a determination that the first threat is correlated with the second threat; and determine the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat. - View Dependent Claims (19, 20, 21, 22)
-
23. A building management system comprising:
one or more non-transitory computer-readable storage media having instructions stored thereon that, when executed by one or more processors, cause the one or more processors to; receive a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; determine whether the first threat is correlated with the second threat; determine a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; determine the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat; receive a first set of weather threat data for weather associated with the asset; store the first set of weather threat data in the one or more non-transitory computer-readable storage media; generate, based on the first set of weather threat data stored in the one or more non-transitory computer-readable storage media, normal weather condition rules, wherein the normal weather condition rules indicate an expected weather condition; receive a first weather threat; determine, based on the normal weather condition rules, whether first weather threat indicates the expected weather condition; and generate the risk score based on the first weather threat, wherein generating the risk score comprises generating a first weather value for the risk score in response to a determination that the first weather threat indicates the expected weather condition and generating a second weather value for the risk score in response to a determination that the first weather threat indicates a weather condition that is not the expected weather condition, wherein the second weather value indicates a greater level of risk than the first weather value. - View Dependent Claims (24, 25, 26, 27, 28)
-
29. A method for risk analysis comprising:
-
receiving, by one or more processing circuits, a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; determining, by the one or more processing circuits, whether the first threat is correlated with the second threat; determining, by the one or more processing circuits, a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; and determining, by the one or more processing circuits, the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat; wherein determining, by the one or more processing circuits, the value of the risk score to be the first value comprises; updating a parameter value of a threat severity parameter for the first threat based on the correlation of the first threat and the second threat; generating a first risk score for the first threat based on a risk model and the parameter value; generating a second risk score for the second threat based on the risk model; and selecting one of the first risk score and the second risk score by comparing a value of the first risk score to the second risk score, wherein a selected risk score comprises a value representing a greatest level of risk. - View Dependent Claims (30, 31)
-
-
32. A method for risk analysis comprising:
-
receiving, by one or more processing circuits, a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; generating, by the one or more processing circuits, a first risk score based on the first threat; generating, by the one or more processing circuits, a second risk score based on the second threat; determining, by the one or more processing circuits, whether the first threat is correlated with the second threat; determining, by the one or more processing circuits, a value of the risk score to be a first value by determining a p-norm with the first risk score and the second risk score in response to a determination that the first threat is correlated with the second threat; and determining, by the one or more processing circuits, the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat. - View Dependent Claims (33, 34, 35)
-
-
36. A method for risk analysis comprising:
-
receiving, by one or more processing circuits, a plurality of threats, the plurality of threats comprising a first threat and a second threat, the first threat and the second threat affecting a risk score of an asset; determining, by the one or more processing circuits, whether the first threat is correlated with the second threat; determining, by the one or more processing circuits, a value of the risk score to be a first value in response to a determination that the first threat is correlated with the second threat; determining, by the one or more processing circuits, the value of the risk score to be a second value in response to a determination that the first threat is not correlated with the second threat; receiving, by the one or more processing circuits, a first set of weather threat data for weather associated with the asset; storing, by the one or more processing circuits, the first set of weather threat data in one or more non-transitory computer-readable storage media; generating, by the one or more processing circuits, based on the first set of weather threat data stored in the one or more non-transitory computer-readable storage media, normal weather condition rules, wherein the normal weather condition rules indicate an expected weather condition; receiving, by the one or more processing circuits, a first weather threat; determining, by the one or more processing circuits, based on the normal weather condition rules, whether first weather threat indicates the expected weather condition; and generating, by the one or more processing circuits, the risk score based on the first weather threat, wherein generating the risk score comprises generating a first weather value for the risk score in response to a determination that the first weather threat indicates the expected weather condition and generating a second weather value for the risk score in response to a determination that the first weather threat indicates a weather condition that is not the expected weather condition, wherein the second weather value indicates a greater level of risk than the first weather value. - View Dependent Claims (37, 38, 39, 40, 41)
-
Specification