METHOD AND SYSTEM FOR MAKING DECISION ON NEED FOR AUTOMATED RESPONSE TO INCIDENT Russian patent published in 2020 - IPC G06F21/56 

Abstract RU 2738334 C1

FIELD: computer equipment.

SUBSTANCE: invention relates to the computer equipment. Computer-implemented method of automated incident response comprises stages, when receiving from at least one incident from third-party systems, by means of interface module, wherein the incident information comprises at least an incident category, an incident threat level, a host name or address on which the incident occurred and a degree of assurance that the incident is not a false actuation; information on the incident is transmitted to the analytical module, where it is determined whether the incident was previously prevented, and if not, then determining the level of danger of the incident, and if the hazard level exceeds a predetermined threshold, an automated incident response is performed by means of an analytical module and a response module.

EFFECT: technical result consists in implementation of automated response to incident.

19 cl, 4 dwg

Similar patents RU2738334C1

Title Year Author Number
METHOD OF USING LARGE LANGUAGE MODELS WHEN RESPONDING TO INFORMATION SECURITY INCIDENTS 2023
  • Sergeev Viktor Gennadevich
RU2825972C1
METHOD OF GENERATING REQUESTS TO LARGE LANGUAGE MODEL WHEN MONITORING SECURITY AND RESPONDING TO INCIDENTS 2023
  • Sergeev Viktor Gennadevich
RU2825973C1
SYSTEM AND METHOD OF SPEEDING UP PROBLEM SOLVING BY ACCUMULATING STATISTICAL INFORMATION 2010
  • Zajtsev Oleg Vladimirovich
RU2444056C1
METHOD FOR ADJUSTING THE PARAMETERS OF A MACHINE LEARNING MODEL IN ORDER TO IDENTIFY FALSE TRIGGERING AND INFORMATION SECURITY INCIDENTS 2020
  • Filonov Pavel Vladimirovich
  • Soldatov Sergej Vladimirovich
  • Udimov Daniil Alekseevich
RU2763115C1
METHOD FOR PROCESSING INFORMATION SECURITY EVENTS PRIOR TO TRANSMISSION FOR ANALYSIS 2020
  • Filonov Pavel Vladimirovich
  • Soldatov Sergej Vladimirovich
  • Udimov Daniil Alekseevich
RU2762528C1
METHOD OF COMBINING LARGE LANGUAGE MODEL AND SECURITY AGENT 2023
  • Sergeev Viktor Gennadevich
  • Tushkanov Vladislav Nikolaevich
RU2825975C1
SYSTEM AND METHOD FOR OUTSIDE CONTROL OF THE CYBERATTACK SURFACE 2021
  • Bobak Tim Dzhon Oskar
  • Volkov Dmitrij Aleksandrovich
RU2778635C1
METHOD AND SYSTEM FOR DETECTING THE INFRASTRUCTURE OF A MALICIOUS SOFTWARE OR A CYBERCRIMINAL 2020
  • Volkov Dmitrij Aleksandrovich
  • Mileshin Filipp Alekseevich
RU2722693C1
INFORMATION SECURITY INCIDENT RESPONSE SYSTEM AND METHOD 2023
  • Zaitsev Oleg Vladimirovich
RU2824732C1
METHOD AND SYSTEM FOR DETERMINING MALICIOUS ACTIVITY BY ANALYZING THE BEHAVIOUR OF OBJECTS IN NON-INSULATED ENVIRONMENT 2020
  • Perfilev Sergej Sergeevich
  • Andreev Nikolaj Nikolaevich
RU2743620C1

RU 2 738 334 C1

Authors

Volkov Dmitry Aleksandrovich

Dates

2020-12-11Published

2020-03-25Filed