- Patent Title: Employing a relatively simple machine learning classifier to explain evidence that led to a security action decision by a relatively complex machine learning classifier
-
Application No.: US15609659Application Date: 2017-05-31
-
Publication No.: US10581887B1Publication Date: 2020-03-03
- Inventor: Jonathan J. Dinerstein
- Applicant: CA, Inc.
- Applicant Address: US CA San Jose
- Assignee: CA, Inc.
- Current Assignee: CA, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Maschoff Brennan
- Main IPC: G06F7/04
- IPC: G06F7/04 ; H04L29/06 ; G06N3/08 ; G06F17/30
Abstract:
Employing a relatively simple machine learning classifier to explain evidence that led to a security action decision by a relatively complex machine learning classifier. In one embodiment, a method may include identifying training data, training a relatively complex machine learning classifier (MLC) using the training data, making a first security action decision using the relatively complex MLC, performing a security action on a network device based on the first security action decision, training a relatively simple MLC using the training data or using a subset of the training data, making a second security action decision using the relatively simple MLC, extracting evidence that led to the second security action decision by the relatively simple MLC, and explaining the first security action decision by the relatively complex MLC using the evidence extracted from the relatively simple MLC.
Information query
