×

System and method of cyber threat intensity determination and application to cyber threat mitigation

  • US 9,749,344 B2
  • Filed: 04/03/2014
  • Issued: 08/29/2017
  • Est. Priority Date: 04/03/2014
  • Status: Active Grant
First Claim
Patent Images

1. A security system, comprising:

  • a computer system;

    a memory accessible to the computer system;

    a data store comprising a plurality of consensus evaluations and a plurality of cyber threat analyst ratings; and

    an application stored in the memory that, when executed by the computer system;

    generates a cyber threat report based on user inputs, wherein the report comprises an identification of a cyber threat intent and the identification of a cyber threat technology,receives from a cyber threat analyst an input of a cyber threat frequency score associated with a set of cyber threat intelligence, an input of a cyber threat likelihood score associated with the set of cyber threat intelligence, and an input of a cyber threat capability score associated with the set of cyber threat intelligence, andgenerates a cyber threat intensity based on the cyber threat frequency score, based on the cyber threat likelihood score, based on the cyber threat capability score, and based on a cyber threat analyst rating of the plurality of cyber threat analyst ratings stored in the data store, wherein the cyber threat analyst rating indicates at least one accuracy of the cyber threat analyst in scoring at least one of a cyber threat frequency, a cyber threat likelihood, or a cyber threat capability, and wherein the cyber threat intensity is different depending on the cyber threat analyst rating,wherein the cyber threat report and the cyber threat intensity are used to select one or more cyber risk mitigation actions to manage a cyber risk of an enterprise or organization.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×