System, method and computer program product for determining a risk score for an entity
First Claim
Patent Images
1. A computer program product, comprising a non-transitory computer usable medium having a computer readable program code embodied therein, the computer readable program code being executable by a computer to perform operations, the operations comprising:
- identifying by a system a plurality of parameters associated with an entity'"'"'s access to system data, where the plurality of parameters includes a data sharing rule assigned to the entity that enables the entity to create and grant specific system data access to another entity, the specific system data access including access to one or more elements of the system data;
determining by the system a selection of one of a plurality of algorithms, where each of the plurality of algorithms is used to determine a risk score for the entity in accordance with a plurality of predetermined categories of risk, wherein the plurality of predetermined categories of risk includes one or more of;
data loss by the system in association with the entity, data theft by the entity, or insider trading by the entity;
determining by the system a predetermined number of points assigned to each of the plurality of parameters according to the selected algorithm,determining by the system a plurality of weighted numbers respectively corresponding to the plurality of parameters, wherein determining a given one of the weighted numbers respectively corresponding to a given one of the parameters includes multiplying the predetermined number of points assigned to the given parameter by a weight associated with the given parameter by the selected algorithm,determining by the system the risk score for the entity by summing the weighted numbers respectively corresponding to the plurality of parameters;
identifying by the system that the entity is attempting to perform one or more actions within the system; and
preventing by the system the performance of the one or more actions when the system determines that the risk score for the entity is higher than a predetermined threshold.
1 Assignment
0 Petitions
Accused Products
Abstract
In accordance with embodiments, there are provided mechanisms and methods for determining a risk score for an entity. These mechanisms and methods for determining a risk score for an entity can enable more effective monitoring of a system, can create more relevant data associated with the entity, etc.
-
Citations
17 Claims
-
1. A computer program product, comprising a non-transitory computer usable medium having a computer readable program code embodied therein, the computer readable program code being executable by a computer to perform operations, the operations comprising:
-
identifying by a system a plurality of parameters associated with an entity'"'"'s access to system data, where the plurality of parameters includes a data sharing rule assigned to the entity that enables the entity to create and grant specific system data access to another entity, the specific system data access including access to one or more elements of the system data; determining by the system a selection of one of a plurality of algorithms, where each of the plurality of algorithms is used to determine a risk score for the entity in accordance with a plurality of predetermined categories of risk, wherein the plurality of predetermined categories of risk includes one or more of;
data loss by the system in association with the entity, data theft by the entity, or insider trading by the entity;determining by the system a predetermined number of points assigned to each of the plurality of parameters according to the selected algorithm, determining by the system a plurality of weighted numbers respectively corresponding to the plurality of parameters, wherein determining a given one of the weighted numbers respectively corresponding to a given one of the parameters includes multiplying the predetermined number of points assigned to the given parameter by a weight associated with the given parameter by the selected algorithm, determining by the system the risk score for the entity by summing the weighted numbers respectively corresponding to the plurality of parameters; identifying by the system that the entity is attempting to perform one or more actions within the system; and preventing by the system the performance of the one or more actions when the system determines that the risk score for the entity is higher than a predetermined threshold. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method, comprising:
-
identifying by a system a plurality of parameters associated with an entity'"'"'s access to system data, where the plurality of parameters includes a data sharing rule assigned to the entity that enables the entity to create and grant specific system data access to another entity, the specific system data access including access to one or more elements of the system data; determining by the system a selection of one of a plurality of algorithms, where each of the plurality of algorithms is used to determine a risk score for the entity in accordance with a plurality of predetermined categories of risk, wherein the plurality of predetermined categories of risk includes one or more of;
data loss by the system in association with the entity, data theft by the entity, or insider trading by the entity;determining by the system a predetermined number of points assigned to each of the plurality of parameters according to the selected algorithm, determining by the system a plurality of weighted numbers respectively corresponding to the plurality of parameters, wherein determining a given one of the weight numbers respectively corresponding to a given one of the parameters includes multiplying the predetermined number of points assigned to the given parameter by a weight associated with the given parameter by the selected algorithm, determining by the system the risk score for the entity by summing the weighted numbers respectively corresponding to the plurality of parameters; identifying by the system that the entity is attempting to perform one or more actions within the system; and preventing by the system the performance of the one or more actions when the system determines that the risk score for the entity is higher than a predetermined threshold.
-
-
17. A system, comprising:
-
a hardware processor; and a memory that stores instructions, wherein the instructions are executable by the hardware processor to perform operations comprising; identifying by the system a plurality of parameters associated with an entity'"'"'s access to system data, where the plurality of parameters includes a data sharing rule assigned to the entity that enables the entity to create and grant specific system data access to another entity, the specific system data access including access to one or more elements of the system data; determining by the system a selection of one of a plurality of algorithms, where each of the plurality of algorithms is used to determine a risk score for the entity in accordance with a plurality of predetermined categories of risk, wherein the plurality of predetermined categories of risk includes one or more of;
data loss by the system in association with the entity, data theft by the entity, or insider trading by the entity;determining by the system a predetermined number of points assigned to each of the plurality of parameters according to the selected algorithm, determining by the system a plurality of weighted numbers respectively corresponding to the plurality of parameters, wherein determining a given one of the weighted numbers respectively corresponding to a given one of the parameters includes multiplying the predetermined number of points assigned to the given parameter by a weight associated with the given parameter by the selected algorithm, determining by the system the risk score for the entity by summing the weighted numbers respectively corresponding to the plurality of parameters; identifying by the system that the entity is attempting to perform one or more actions within the system; and preventing by the system the performance of the one or more actions when the system determines that the risk score for the entity is higher than a predetermined threshold.
-
Specification