×

Assessment of cyber threats

  • US 9,537,884 B1
  • Filed: 06/01/2016
  • Issued: 01/03/2017
  • Est. Priority Date: 06/01/2016
  • Status: Active Grant
First Claim
Patent Images

1. A system comprising:

  • one or more computers comprising one or more hardware processors;

    one or more computer-readable media storing instructions that, when executed by the one or more computers, cause the one or more computers to perform operations comprising;

    receiving, by the one or more computers, data indicating a time window having a beginning and an end;

    accessing, by the one or more computers, data indicating at least one dynamic Bayesian network (DBN) that specifies relationships among (i) infrastructure nodes representing computing devices of an organization and a network connecting the computing devices, (ii) asset nodes indicating characteristics of assets of the organization, (iii) threat nodes representing computer-based threats including at least one selected from the group consisting of a virus, malware, a network intrusion, and a denial of service attack, and (iv) mitigation nodes representing threat mitigation measures of the organization;

    performing, by the one or more computers, a plurality of simulations using the DBN, each simulation involving propagating data through the DBN for various time steps within the time window;

    sampling, by the one or more computers, outcomes of the plurality of simulations according to the state of the DBN representing the end of the time window;

    based on the sampled outcomes of the simulations, determining, by the one or more computers, a measure of impact of the computer-based threats to the organization over the time window; and

    providing, by the one or more computers and for output to a user, a graphical representation of the determined measure of impact of the computer-based threats to the organization over the time window in a graphical user interface.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×