Patenton — panteon of patents

(19)

RU

(11)

2 758 041

(13)

C2

(51)

IPC

G06F21/55(2013-01-01)

(21) (22)

Application

2019126640, 2018-01-22

(24)

Start date

2018-01-22

(22)

Actual filing date

2018-01-22

(45)

Published

2021-10-25

(72)

Inventor

Luo, PengchengBriggs, Reeves HoppeAhmad, Naveed

(73)

Holder

Microsoft Technology Licensing, Llc

CONSTANT TRAINING FOR INTRUSION DETECTION Russian patent published in 2021 - IPC G06F21/55 

Abstract RU 2758041 C2

FIELD: network security.

SUBSTANCE: method for ensuring the security of an online service provided through a network, by means of a model with constant training, contains: collecting a set of security signals from the online service, wherein the set of security signals is collected in a sliding time window; identifying, whether each security signal from the set of security signals is malicious or harmless; creating a balanced training dataset for the sliding time window by: balancing malicious signals from the set of security signals based on an attack type identified for each malicious signal, balancing harmless signals from the set of security signals to create the balanced training dataset based on a type of device from which each harmless signal is received, and balancing malicious signals with harmless signals by cross-linking malicious signals with harmless signals; and creating a predictive model based on the balanced training dataset, wherein, in response to receiving an additional security signal associated with a new network session from the online service, the predictive model is used to determine, whether this additional security signal is malicious or harmless.

EFFECT: providing more reliable and fast identification of new forms of attacks, increase in network security, as well as reduction in processing resources used to protect the network from malicious parties.

20 cl, 5 dwg

Similar patents RU2758041C2

Title Year Author Number
MULTI-SIGNAL ANALYSIS FOR IDENTIFICATION OF A COMPROMISED APPLICATION AREA 2018
  • Luo, Pengcheng
  • Briggs, Reeves Hoppe
  • Sadovsky, Art
  • Ahmad, Naveed
 RU2768562C2
METHOD FOR ADJUSTING THE PARAMETERS OF A MACHINE LEARNING MODEL IN ORDER TO IDENTIFY FALSE TRIGGERING AND INFORMATION SECURITY INCIDENTS 2020
  • Filonov Pavel Vladimirovich
  • Soldatov Sergej Vladimirovich
  • Udimov Daniil Alekseevich
 RU2763115C1
PROTECTION METHOD OF VEHICLE CONTROL SYSTEMS AGAINST INTRUSIONS 2019
  • Mikhajlov Dmitrij Mikhajlovich
  • Dolgikh Artem Dmitrievich
  • Pronichkin Aleksej Sergeevich
  • Bagrov Sergej Valerevich
  • Pedanov Vladimir Aleksandrovich
 RU2737229C1
SYSTEM AND METHOD FOR DETERMINING THE LEVEL OF DANGER OF INFORMATION SECURITY EVENTS 2022
  • Zaitsev Oleg Vladimirovich
 RU2800739C1
METHOD FOR PROTECTING COMPUTER NETWORK AGAINST INTRUSION 2021
  • Chajkovskij Sergej Stanislavovich
 RU2758997C1
METHOD FOR PROCESSING INFORMATION SECURITY EVENTS PRIOR TO TRANSMISSION FOR ANALYSIS 2020
  • Filonov Pavel Vladimirovich
  • Soldatov Sergej Vladimirovich
  • Udimov Daniil Alekseevich
 RU2762528C1
SYSTEM AND METHOD OF SELECTING MEANS OF DETECTING MALICIOUS FILES 2019
  • Chistyakov Aleksandr Sergeevich
  • Romanenko Aleksej Mikhajlovich
 RU2739830C1
SYSTEM AND METHOD FOR PROTECTING USER DEVICES 2020
  • Shchetinin Evgenij Igorevich
  • Tikhomirov Anton Vladimirovich
 RU2770146C2
SYSTEMS AND METHODS FOR DETECTING BEHAVIOURAL THREATS 2019
  • Dichiu Daniel
  • Niculae Stefan
  • Bosinceanu Elena A.
  • Zamfir Sorina N.
  • Dincu Andreea
  • Apostoae Andrei A.
 RU2778630C1
SYSTEMS AND METHODS FOR DETECTING BEHAVIOURAL THREATS 2019
  • Dichiu Daniel
  • Niculae Stefan
  • Bosinceanu Elena A.
  • Zamfir Sorina N.
  • Dincu Andreea
  • Apostoae Andrei A.
 RU2803399C2

RU 2 758 041 C2

Authors

Luo, Pengcheng

Briggs, Reeves Hoppe

Ahmad, Naveed

Dates

2021-10-25Published

2018-01-22Filed

download Download PDF read Similar patents