×

Assessing risk associated with a computer technology

  • US 8,819,442 B1
  • Filed: 06/08/2009
  • Issued: 08/26/2014
  • Est. Priority Date: 06/08/2009
  • Status: Active Grant
First Claim
Patent Images

1. A method of determining risk associated with a computer technology, comprising:

  • identifying, by a computing device, a plurality of vulnerability occurrences associated with the computer technology;

    determining, by the computing device, a number of vulnerability occurrences of the plurality of vulnerability occurrences associated with the computer technology over a predetermined period of time;

    assigning, by the computing device, a weighted value to each of the determined vulnerability occurrences to determine a weighted vulnerability occurrence score, wherein the weighted value corresponds to a time period within the predetermined time period that each of the determined vulnerability occurrences occurred, wherein a weight of the weighted value assigned to the determined vulnerability occurrences is higher for vulnerability occurrences that occur in a first time period and lower for vulnerability occurrences that occur in a second time period;

    determining, by the computing device, a severity of each of the determined vulnerability occurrences associated with the computer technology;

    determining, by the computing device, an average severity for the determined vulnerability occurrences associated with the computer technology;

    combining, by the computing device, the weighted vulnerability occurrence score with the determined average severity to determine a vulnerability security score for the computer technology; and

    comparing, by the computing device, the determined vulnerability security score with determined vulnerability security scores for another computer technology for the predetermined period of time.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×