METHOD FOR DETECTING AN ANOMALY IN THE BEHAVIOR OF A TRUSTED PROCESS AND A SYSTEM FOR ITS IMPLEMENTATION Russian patent published in 2023 - IPC G06F21/50 G06N20/00

Abstract RU 2790329 C1

FIELD: malicious behavior cases detection.

SUBSTANCE: invention relates to solutions for detecting cases of malicious behavior based on the exploitation of vulnerabilities in trusted processes. The specified effect is achieved by joint application of a module that includes a machine learning algorithm and a stochastic modeling tool, namely the Markov chain. On the basis of Markov chains, basic models of the behavior of each trusted process are formed, while each event that occurs is determined by a weighting factor. The event weight indicates the probability that the event will occur during the execution of the trusted process.

EFFECT: improving the efficiency of detecting anomalies in the behavior of trusted processes.

10 cl, 5 dwg

Similar patents RU2790329C1

Title	Year	Author	Number
PROTECTION METHOD OF VEHICLE CONTROL SYSTEMS AGAINST INTRUSIONS	2019	Mikhajlov Dmitrij Mikhajlovich Dolgikh Artem Dmitrievich Pronichkin Aleksej Sergeevich Bagrov Sergej Valerevich Pedanov Vladimir Aleksandrovich	RU2737229C1
METHOD OF SELECTIVE USE OF PATTERNS OF DANGEROUS PROGRAM BEHAVIOR	2017	Pavlyushchik Mikhail Aleksandrovich Slobodyanyuk Yurij Gennadevich Monastyrskij Aleksej Vladimirovich Martynenko Vladislav Valerevich	RU2665909C1
SYSTEM AND METHOD FOR DETECTING AND MEASURING ANOMALIES IN SIGNALLING ORIGINATING FROM COMPONENTS USED IN INDUSTRIAL PROCESSES	2020	Michan, Alison	RU2784925C1
SYSTEM AND METHOD OF ADAPTING PATTERNS OF DANGEROUS PROGRAM BEHAVIOR TO USERS' COMPUTER SYSTEMS	2017	Pavlyushchik Mikhail Aleksandrovich Slobodyanyuk Yurij Gennadevich Monastyrskij Aleksej Vladimirovich Martynenko Vladislav Valerevich	RU2652448C1
SYSTEMS AND METHODS FOR DETECTING BEHAVIOURAL THREATS	2019	Dichiu Daniel Niculae Stefan Bosinceanu Elena A. Zamfir Sorina N. Dincu Andreea Apostoae Andrei A.	RU2778630C1
SYSTEMS AND METHODS FOR DETECTING BEHAVIOURAL THREATS	2019	Dichiu Daniel Niculae Stefan Bosinceanu Elena A. Zamfir Sorina N. Dincu Andreea Apostoae Andrei A.	RU2772549C1
SYSTEMS AND METHODS FOR DETECTING BEHAVIOURAL THREATS	2019	Dichiu Daniel Niculae Stefan Bosinceanu Elena A. Zamfir Sorina N. Dincu Andreea Apostoae Andrei A.	RU2803399C2
SYSTEM AND METHOD FOR DETERMINING PROCESS ASSOCIATED WITH MALWARE ENCRYPTING COMPUTER SYSTEM FILES	2020	Lopatin Evgenij Igorevich Kondratev Dmitrij Andreevich	RU2770570C2
MALWARE FILES IN NETWORK TRAFFIC DETECTION SERVER AND METHOD	2018	Kislitsin Nikita Igorevich Andreev Nikolay Nikolaevich	RU2680736C1
METHOD AND SYSTEM FOR DETERMINING MALICIOUS ACTIVITY BY ANALYZING THE BEHAVIOUR OF OBJECTS IN NON-INSULATED ENVIRONMENT	2020	Perfilev Sergej Sergeevich Andreev Nikolaj Nikolaevich	RU2743620C1

RU 2 790 329 C1

Authors

Ivanov Andrei Aleksandrovich

Dates

2023-02-16—Published

2022-05-06—Filed