DETECTION MITIGATION AND REMEDIATION OF CYBERATTACKS EMPLOYING AN ADVANCED CYBER-DECISION PLATFORM
First Claim
1. A system for detection and mitigation of cyberattacks employing an advanced cyber decision platform comprising:
- a time series data retrieval and storage module stored in a memory of and operating on a processor of a computing device;
a directed computational graph analysis module stored in a memory of and operating on a processor of a computing device;
an action outcome simulation module stored in a memory of and operating on a processor of a computing device; and
an observation and state estimation module stored in a memory of and operating on a processor of a computing device;
wherein, the time series data retrieval and storage module;
monitors cybersecurity related data from a plurality of sources;
continuously monitors traffic on at least one client network; and
stores retrieved and monitored data;
wherein, the directed computational graph analysis module;
retrieves a plurality of data from the time series data retrieval and storage module;
analyzes at least a portion of retrieved data for baseline pattern determination;
analyzes at least a portion of retrieved data for predetermined anomalous occurrences; and
provides relevant data and metadata to the action outcome simulation module;
wherein, the action outcome simulation module;
receives data and metadata for predictive simulation analysis from the directed computational graph analysis module;
performs predictive simulation transformations on data provided by other modules of the advanced cyber decision platform; and
provides results of predictive simulation analysis to predetermined modules of advanced cyber decision platform;
wherein, the observation and state estimation module formats data received from other modules of the advanced cyber decision platform in ways predesigned to maximize conveyance of included information and data.
9 Assignments
0 Petitions
Accused Products
Abstract
A system for mitigation of cyberattacks employing an advanced cyber decision platform comprising a time series data retrieval module, a directed computational graph module, an outcome simulation module, and an observation module. The time series data retrieval module monitors cybersecurity related data from multiple sources, and continuously monitors traffic on a client network. The directed computational graph module analyzes the retrieved data for baseline pattern determination, and analyzes the data for anomalous occurrences. The outcome simulation module performs predictive simulation transformations on data provided by other modules of the platform and provides results as needed. The observation module formats data to maximize impact of included information and data.
81 Citations
16 Claims
-
1. A system for detection and mitigation of cyberattacks employing an advanced cyber decision platform comprising:
-
a time series data retrieval and storage module stored in a memory of and operating on a processor of a computing device; a directed computational graph analysis module stored in a memory of and operating on a processor of a computing device; an action outcome simulation module stored in a memory of and operating on a processor of a computing device; and an observation and state estimation module stored in a memory of and operating on a processor of a computing device; wherein, the time series data retrieval and storage module;
monitors cybersecurity related data from a plurality of sources;
continuously monitors traffic on at least one client network; and
stores retrieved and monitored data;wherein, the directed computational graph analysis module;
retrieves a plurality of data from the time series data retrieval and storage module;
analyzes at least a portion of retrieved data for baseline pattern determination;
analyzes at least a portion of retrieved data for predetermined anomalous occurrences; and
provides relevant data and metadata to the action outcome simulation module;wherein, the action outcome simulation module;
receives data and metadata for predictive simulation analysis from the directed computational graph analysis module;
performs predictive simulation transformations on data provided by other modules of the advanced cyber decision platform; and
provides results of predictive simulation analysis to predetermined modules of advanced cyber decision platform;wherein, the observation and state estimation module formats data received from other modules of the advanced cyber decision platform in ways predesigned to maximize conveyance of included information and data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for mitigation of cyberattacks employing an advanced cyber decision platform comprising the steps of:
-
a) retrieving a plurality of cybersecurity related data from a plurality of sources using a time series data retrieval and storage module; b) analyzing the cybersecurity related data using a directed computational graph analysis module to detect ongoing cyberattacks; c) simulating a plurality of outcomes from the available cybersecurity related data to predict network vulnerability and probable timeline of an ongoing cyberattack using an action outcome simulation module; d) presenting resultant information from advanced cyber decision platform analysis in format predesigned to convey the maximal actionable impact using an observation and state estimation module. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification