Invention Grant
- Patent Title: Method and system for responding to a computer intrusion
- Patent Title (中): 响应计算机入侵的方法和系统
-
Application No.: US10313732Application Date: 2002-12-05
-
Publication No.: US07941854B2Publication Date: 2011-05-10
- Inventor: Paul T. Baffes , John Michael Garrison , Michael Gilfix , Allan Hsu , Tyron Jerrod Stading
- Applicant: Paul T. Baffes , John Michael Garrison , Michael Gilfix , Allan Hsu , Tyron Jerrod Stading
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Dillon & Yudell LLP
- Main IPC: G06F12/14
- IPC: G06F12/14 ; G08B23/00
Abstract:
A method and system for managing an intrusion on a computer by graphically representing an intrusion pattern of a known past intrusion, and then comparing the intrusion pattern of the known intrusion with a current intrusion. The intrusion pattern may either be based on intrusion events, which are the effects of the intrusion or activities that provide a signature of the type of intrusion, or the intrusion pattern may be based on hardware topology that is affected by the intrusion. The intrusion pattern is graphically displayed with scripted responses, which in a preferred embodiment are presented in pop-up windows associated with each node in the intrusion pattern. Alternatively, the response to the intrusion may be automatic, based on a pre-determined percentage of common features in the intrusion pattern of the known past intrusion and the current intrusion.
Public/Granted literature
- US20040111637A1 Method and system for responding to a computer intrusion Public/Granted day:2004-06-10
Information query
