Adaptive remediation of multivariate risk
First Claim
Patent Images
1. A computer-implementable method for adaptively remediating multivariate risk by performing a multivariate risk remediation operation, the multivariate risk remediation operation improving processor efficiency by adaptively remediating a risk, comprising:
- providing a multivariate security policy, the multivariate security policy comprising a plurality of security policy elements, each of the plurality of security policy elements comprising an associated a variable such that the multivariate security policy comprises a plurality of variables;
processing each of the plurality of security policy elements to generate a plurality of risk score values, the respective risk score value of each of the plurality of security policy elements providing a multivariate risk score;
detecting a violation of the multivariate security policy, the violation of the multivariate security policy occurring when a respective risk score value of the multivariate risk score meets or exceeds a particular multivariate risk score;
identifying a variable from the plurality of variables associated with a cause of the violation;
associating an entity with the variable associated with the cause of the violation; and
,adaptively remediating a risk associated with the entity, the adaptively remediating the risk performing a remediation operation commensurate with a characteristic of the risk, the characteristic of the risk being represented by at least one respective scoring value, the remediation operation mitigating an effect of the risk.
6 Assignments
0 Petitions
Accused Products
Abstract
A method, system and computer-usable medium for adaptively remediating multivariate risk, comprising: detecting a violation of a multivariate security policy, the multivariate security policy comprising a plurality of variables; identifying a variable from the plurality of variables associated with a cause of the violation; associating an entity with the variable associated with the cause of the violation; and, adaptively remediating a risk associated with the entity.
56 Citations
20 Claims
-
1. A computer-implementable method for adaptively remediating multivariate risk by performing a multivariate risk remediation operation, the multivariate risk remediation operation improving processor efficiency by adaptively remediating a risk, comprising:
-
providing a multivariate security policy, the multivariate security policy comprising a plurality of security policy elements, each of the plurality of security policy elements comprising an associated a variable such that the multivariate security policy comprises a plurality of variables; processing each of the plurality of security policy elements to generate a plurality of risk score values, the respective risk score value of each of the plurality of security policy elements providing a multivariate risk score; detecting a violation of the multivariate security policy, the violation of the multivariate security policy occurring when a respective risk score value of the multivariate risk score meets or exceeds a particular multivariate risk score; identifying a variable from the plurality of variables associated with a cause of the violation; associating an entity with the variable associated with the cause of the violation; and
,adaptively remediating a risk associated with the entity, the adaptively remediating the risk performing a remediation operation commensurate with a characteristic of the risk, the characteristic of the risk being represented by at least one respective scoring value, the remediation operation mitigating an effect of the risk. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
a processor; a data bus coupled to the processor; and a non-transitory, computer-readable storage medium embodying computer program code for adaptively remediating multivariate risk by performing a multivariate risk remediation operation, the multivariate risk remediation operation improving processor efficiency by adaptively remediating a risk, the non-transitory, computer-readable storage medium being coupled to the data bus, the computer program code interacting with a plurality of computer operations and comprising instructions executable by the processor and configured for; providing a multivariate security policy, the multivariate security policy comprising a plurality of security policy elements, each of the plurality of security policy elements comprising an associated a variable such that the multivariate security policy comprises a plurality of variables; processing each of the plurality of security policy elements to generate a plurality of risk score values, the respective risk score value of each of the plurality of security policy elements providing a multivariate risk score; detecting a violation of the multivariate security policy, the violation of the multivariate security policy occurring when a respective risk score value of the multivariate risk score meets or exceeds a particular multivariate risk score; identifying a variable from the plurality of variables associated with a cause of the violation; associating an entity with the variable associated with the cause of the violation; and
,adaptively remediating a risk associated with the entity, the adaptively remediating the risk performing a remediation operation commensurate with a characteristic of the risk, the characteristic of the risk being represented by at least one respective scoring value, the remediation operation mitigating an effect of the risk. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A non-transitory, computer-readable storage medium embodying computer program code, the computer program code comprising computer executable instructions configured for:
-
providing a multivariate security policy, the multivariate security policy comprising a plurality of security policy elements, each of the plurality of security policy elements comprising an associated a variable such that the multivariate security policy comprises a plurality of variables; processing each of the plurality of security policy elements to generate a plurality of risk score values, the respective risk score value of each of the plurality of security policy elements providing a multivariate risk score; detecting a violation of the multivariate security policy, the violation of the multivariate security policy occurring when a respective risk score value of the multivariate risk score meets or exceeds a particular multivariate risk score; identifying a variable from the plurality of variables associated with a cause of the violation; associating an entity with the variable associated with the cause of the violation; and
,adaptively remediating a risk associated with the entity, the adaptively remediating the risk performing a remediation operation commensurate with a characteristic of the risk, the characteristic of the risk being represented by at least one respective scoring value, the remediation operation mitigating an effect of the risk. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification