Security risk analysis system and method
First Claim
Patent Images
1. A method for assessing a risk to a computer network, comprising:
- identifying a human factor related to a risk to the computer network;
determining a risk level using the human factor; and
remediating at least a portion of the computer network based on the risk level.
14 Assignments
0 Petitions
Accused Products
Abstract
A system and method for assessing risks to computer network is provided. The system includes a first module assesses a human factor related to a risk to the computer network. A second module assesses a remediation to the computer network, and a third module is operable to assess a life cycle of an asset on the computer network. A fourth module assesses a type of the asset used by the computer network.
-
Citations
45 Claims
-
1. A method for assessing a risk to a computer network, comprising:
-
identifying a human factor related to a risk to the computer network;
determining a risk level using the human factor; and
remediating at least a portion of the computer network based on the risk level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A method for assessing a risk to a computer network, comprising:
-
identifying a remediation signature to remediate vulnerabilities on at least a portion of the computer network;
determining a remediation signature risk related to the remediation signature to remediate at least a portion of the computer network; and
deciding whether to remediate the portion of the computer network using the remediation signature based on the remediation signature risk. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
-
24. Software capable of assessing a risk to a computer network, comprising:
-
a first software module operable to assess a human factor related to a risk to the computer network;
a second software module operable to assess a patch to the computer network;
a third software module operable to assess a life cycle of an asset on the computer network; and
a fourth software module operable to assess a type of the asset used by the computer network. - View Dependent Claims (25, 26, 27)
-
-
28. A system for protecting a computer network from vulnerabilities, the system comprising:
-
an analysis module operable to determine whether a specified device resides on the computer network;
a risk assessment module to evaluate at least one risk factor used to assess risk to the computer network; and
a remediation module to remediate the specified device on the computer network. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
-
Specification