SYSTEM AND METHOD OF DETECTING SOURCE OF MALICIOUS ACTIVITY ON COMPUTER SYSTEM Russian patent published in 2020 - IPC G06F21/56

Abstract RU 2724800 C1

FIELD: physics.

SUBSTANCE: invention relates to data security. Method comprises collecting information on computer system objects (hereinafter, objects); generating graph based on collected information on objects, wherein graph vertices are objects, as edges are defined based on analysis of collected communication information between objects; selecting from formed graph at least two generated subgraphs (hereinafter, subgraph); determining a severity index for each selected subgraph, wherein the severity index is a numerical characteristic describing power of links between vertices of said subgraph; determining from the selected subgraphs a subgraph for which the severity index is the minimum of the determined harming severity coefficients of the subgraphs, the total harming severity of the subgraphs associated with said subgraph, is maximum; as a source of malicious activity on a computer system, an object matched with at least one vertex of a defined subgraph is determined.

EFFECT: technical result of the present invention is to detect a source of malicious activity on a computer system based on analysis of links between objects of said computer system.

12 cl, 6 dwg

Similar patents RU2724800C1

Title	Year	Author	Number
SYSTEM AND METHOD FOR DETECTING MALICIOUS ACTIVITY ON A COMPUTER SYSTEM	2018	Sumenkov Igor Igorevich Golovanov Sergej Yurevich	RU2697958C1
METHOD FOR CLASSIFYING OBJECTS TO PREVENT SPREAD OF MALICIOUS ACTIVITY	2023	Parinov Denis Igorevich Vlasova Viktoriia Vladimirovna Romanenko Aleksei Mikhailovich Antonov Aleksei Evgenevich	RU2808385C1
SYSTEM AND METHOD OF CLASSIFICATION OF OBJECTS	2017	Chistyakov Aleksandr Sergeevich Lobacheva Ekaterina Maksimovna Romanenko Aleksej Mikhajlovich	RU2679785C1
SYSTEM AND METHOD OF CLASSIFYING OBJECTS OF COMPUTER SYSTEM	2018	Chistyakov Aleksandr Sergeevich Romanenko Aleksej Mikhajlovich Shevelev Aleksandr Sergeevich	RU2724710C1
SYSTEM AND METHOD OF INCREASING EFFICIENCY OF DETECTING UNKNOWN HARMFUL OBJECTS	2010	Mashevskij Jurij Vjacheslavovich Vasilenko Roman Sergeevich	RU2454714C1
SYSTEM AND METHOD FOR TRAINING HARMFUL CONTAINER DETECTION MODEL	2018	Krylov Vladimir Vladimirovich Liskin Aleksandr Viktorovich Antonov Aleksej Evgenevich	RU2697955C2
METHOD OF DETECTING MALICIOUS FILES USING LINK GRAPH	2023	Kogtenkov Aleksei Aleksandrovich Romanenko Aleksei Mikhailovich Antonov Aleksei Evgenevich	RU2823749C1
SYSTEM AND METHOD OF MACHINE TRAINING MODEL OF DETECTING MALICIOUS FILES	2017	Chistyakov Aleksandr Sergeevich Lobacheva Ekaterina Maksimovna Romanenko Aleksej Mikhajlovich	RU2673708C1
SYSTEM AND METHOD OF DETECTING A MALICIOUS FILE	2018	Chistyakov Aleksandr Sergeevich Romanenko Aleksej Mikhajlovich Shevelev Aleksandr Sergeevich	RU2739865C2
SYSTEM AND METHOD OF MANAGING COMPUTING RESOURCES FOR DETECTING MALICIOUS FILES	2017	Chistyakov Aleksandr Sergeevich Lobacheva Ekaterina Maksimovna Romanenko Aleksej Mikhajlovich	RU2659737C1

RU 2 724 800 C1

Authors

Sumenkov Igor Igorevich

Golovanov Sergej Yurevich

Dates

2020-06-25—Published

2018-12-28—Filed