Information security – Monitoring or scanning of software or data including attack... – Vulnerability assessment
Reexamination Certificate
2011-07-19
2011-07-19
Zand, Kambiz (Department: 2434)
Information security
Monitoring or scanning of software or data including attack...
Vulnerability assessment
C726S023000, C713S151000, C713S165000, C713S166000, C713S167000, C709S224000
Reexamination Certificate
active
07984504
ABSTRACT:
Analyzing security risk in a computer network includes receiving an event associated with a selected object in the computer network, and determining an object risk level for the selected object based at least in part on an event risk level of the event received, wherein the event risk level accounts for intrinsic risk that depends at least in part on the event that is received and source risk that depends at least in part on a source from which the event originated.
REFERENCES:
patent: 5278901 (1994-01-01), Shieh et al.
patent: 5557742 (1996-09-01), Smaha et al.
patent: 5574898 (1996-11-01), Leblang et al.
patent: 5621889 (1997-04-01), Lermuzeaux et al.
patent: 5638509 (1997-06-01), Dunphy et al.
patent: 5649194 (1997-07-01), Miller et al.
patent: 5680585 (1997-10-01), Bruell
patent: 5724569 (1998-03-01), Andres
patent: 5757913 (1998-05-01), Bellare et al.
patent: 5778070 (1998-07-01), Mattison
patent: 5844986 (1998-12-01), Davis
patent: 5978791 (1999-11-01), Farber et al.
patent: 6134664 (2000-10-01), Walker
patent: 6269447 (2001-07-01), Maloney et al.
patent: 6393386 (2002-05-01), Zager et al.
patent: 6556989 (2003-04-01), Naimark et al.
patent: 6578025 (2003-06-01), Pollack et al.
patent: 6681331 (2004-01-01), Munson et al.
patent: 6826697 (2004-11-01), Moran
patent: 7353511 (2008-04-01), Ziese
patent: 7624447 (2009-11-01), Horowitz et al.
patent: 7664845 (2010-02-01), Kurtz et al.
patent: 2002/0078381 (2002-06-01), Farley et al.
patent: 2002/0083168 (2002-06-01), Sweeney et al.
patent: 2002/0083343 (2002-06-01), Crosbie et al.
patent: 2003/0046582 (2003-03-01), Black et al.
patent: 2003/0154393 (2003-08-01), Young
patent: 2003/0204632 (2003-10-01), Willebeek-Lemair et al.
Bace, R., Introduction to Intrusion Detection Assessment, no date, for System and Network Security Management.
Kim and Spafford, “Writing, Supporting and Evaluating Tripware: A Publically Available Security Tool”, Mar. 12, 1994, Purdue Technical Report; Purdue University.
Latham, Department of Defense Trusted Computer System Evaluation Criteria, Dec. 1985, Department of Defense Standard.
Lunt et al., A Real-Time Intrusion-Detection Expert System (IDES), Feb. 28, 1992, SRI International Project 6784.
Moran et al. DERBI: Diagnosis, Explanation and Recovery From Break-Ins, no date, Artificial Intelligence Center SRI International.
Norvill, T., “Auditing and Event Correction”, Department of IT & EE, University of Queensland, 2001.
Pennington, A.G., et al., “Storage-Based Intrusion Detection: Watching Storage Activity for Suspicious Behavior”, Carnegie Mellon University, USENIX Security Symposium, Aug. 2003.
Staniford-Chen et al., “GrIDS—A Graph Based Intrusion Detection System for Large Networks”, University of California a, Davis, Davis, CA 95616. Proceedings of the 19thNational Information Systems Security Conference, vol. 1, pp. 361-370, Oct. 1996, Retrieved from the Internet at: http://citeseer.nj.nec.com1artidelstanifordchen96grids.html.
Tyson, Ph.D., Explaining and Recovering From Computer Break-Ins, Jan. 12, 2001, SRI International.
Unknown, James P. Anderson Co., Computer Security Threat Monitoring and Surveillance, Feb. 26, 1980, Contract 79F296400.
Unknown, Aleph One, Smashing the Stack for Fun and Profit, no date, vol. 7, Issue 49; File 14 of 16 of BugTraq, r00t, and Underground. Org.
Bennett Jeremy
Hernacki Brian
Hunton & Williams LLP
Symantec Corporation
Tran Tongoc
Zand Kambiz
LandOfFree
Network risk analysis does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Network risk analysis, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Network risk analysis will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2668247