RATING THREAT SUBMITTER
First Claim
Patent Images
1. A non-transitory machine-readable storage medium storing instructions that, if executed by at least one processor of a computing system, cause the computing system to:
- receive information about a plurality of threat observables from a respective plurality of threat submitters;
provide data about the respective threat observables to one or more entities;
receive respective feedback from at least one of the entities about the respective threat observables; and
update a rating of one of the threat submitters associated with the respective feedback.
8 Assignments
0 Petitions
Accused Products
Abstract
Example embodiments disclosed herein relate to update a rating of threat submitters. Information is received of threat observables from threat submitters. Information about the threat observables is provided to one or more entities. Feedback about a threat observable is received from one of the entities. A rating of the threat submitter associated with the feedback is updated.
-
Citations
15 Claims
-
1. A non-transitory machine-readable storage medium storing instructions that, if executed by at least one processor of a computing system, cause the computing system to:
-
receive information about a plurality of threat observables from a respective plurality of threat submitters; provide data about the respective threat observables to one or more entities; receive respective feedback from at least one of the entities about the respective threat observables; and update a rating of one of the threat submitters associated with the respective feedback. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method comprising:
-
receiving threat observable information about a threat observable from a threat submitter; providing the threat observable information to one or more entities; updating a rating for the threat submitter, wherein the rating represents a confidence that the threat submitter is submitting useful threat data based on an analysis of the threat observable and information received from at least one of the entities; receiving other threat observable information about another threat observable from the threat submitter; determining a threat score for the other threat observable based, at least in part, on the rating. - View Dependent Claims (11, 12)
-
-
13. A computing system comprising:
-
a communication engine to receive threat data from a threat submitter; a score engine to score the threat data for one or more entities, wherein the communication engine is further to provide the score to the one or more entities; wherein the communication engine is further to receive usage information of the threat data; a rating engine to update a rating for the threat submitter based on the usage information. - View Dependent Claims (14, 15)
-
Specification