Network risk analysis
First Claim
Patent Images
1. A method of analyzing security risk in a computer network comprising:
- constructing asset relationships among a plurality of objects in the computer network;
receiving an event associated with a selected object;
wherein the event has an event risk level;
propagating the event to objects related to the selected object if the event risk level exceeds a propagation threshold.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and method are disclosed for analyzing security risks in a computer network. The system constructs asset relationships among a plurality of objects in the computer network and receives an event associated with a selected object, where the event has an event risk level. The system also propagates the event to objects related to the selected object if the event risk level exceeds a propagation threshold.
-
Citations
22 Claims
-
1. A method of analyzing security risk in a computer network comprising:
-
constructing asset relationships among a plurality of objects in the computer network;
receiving an event associated with a selected object;
wherein the event has an event risk level;
propagating the event to objects related to the selected object if the event risk level exceeds a propagation threshold. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method of analyzing security risk in a computer network comprising:
-
receiving an event associated with a selected object in the computer network;
determining an object risk level for the selected object based on the event received and a time function that changes the object risk level over time. - View Dependent Claims (19, 20)
-
-
21. A computer program product for analyzing security risk in a computer network, the computer program product being embodied in a computer readable medium and comprising computer instructions for:
-
constructing asset relationships among a plurality of objects in the computer network;
receiving an event associated with a selected object;
wherein the event has an event risk level; and
propagating the event to objects related to the selected object if the event risk level exceeds a propagation threshold.
-
-
22. A system for analyzing security risk in a computer network comprising:
-
an input interface configured to receive an event associated with a selected object;
a processor configured to construct asset relationships among a plurality of objects in the computer network and propagating the event to objects related to the selected object if the event risk level exceeds a propagation threshold.
-
Specification