FIELD: physics.
SUBSTANCE: present invention relates to information technology, and more specifically to means of using large language models when monitoring security and responding to incidents. Technical result is achieved by implementing a method for determining a computer threat using a large language model, comprising steps of: receiving input data from one or more elements of the information security monitoring centre; making a request to a large language model based on input data; parsing a response from a large language model; if additional data is required, repeating the previously described steps; determining a computer threat based on a response from a large language model.
EFFECT: shorter time for collecting and improving the level of processing information during investigation of an information security incident.
7 cl, 3 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD OF COMBINING LARGE LANGUAGE MODEL AND SECURITY AGENT | 2023 |
|
RU2825975C1 |
| METHOD OF GENERATING REQUESTS TO LARGE LANGUAGE MODEL WHEN MONITORING SECURITY AND RESPONDING TO INCIDENTS | 2023 |
|
RU2825973C1 |
| METHOD FOR ADJUSTING THE PARAMETERS OF A MACHINE LEARNING MODEL IN ORDER TO IDENTIFY FALSE TRIGGERING AND INFORMATION SECURITY INCIDENTS | 2020 |
|
RU2763115C1 |
| METHOD FOR PROCESSING INFORMATION SECURITY EVENTS PRIOR TO TRANSMISSION FOR ANALYSIS | 2020 |
|
RU2762528C1 |
| METHOD FOR IDENTIFYING INFORMATION SECURITY THREATS (OPTIONS) | 2023 |
|
RU2802539C1 |
| METHOD FOR FILTERING EVENTS FOR TRANSMISSION TO REMOTE DEVICE | 2022 |
|
RU2813239C1 |
| SYSTEM AND METHOD OF CORRELATING EVENTS FOR DETECTING INFORMATION SECURITY INCIDENT | 2019 |
|
RU2739864C1 |
| INFORMATION SECURITY INCIDENT RESPONSE SYSTEM AND METHOD | 2023 |
|
RU2824732C1 |
| INTELLIGENT CONTROL SYSTEM FOR CYBERTHREATS | 2019 |
|
RU2702269C1 |
| SYSTEM AND METHOD OF DETECTING THE SIGNS OF COMPUTER ATTACKS | 2017 |
|
RU2661533C1 |
