首页> 外国专利> Method and system for automated cybersecurity incident and artifact visualization and correlation for security operation centers and computer emergency response teams

Method and system for automated cybersecurity incident and artifact visualization and correlation for security operation centers and computer emergency response teams

机译：用于安全运营中心和计算机紧急响应团队的自动化网络安全事件以及工件可视化和关联的方法和系统

页面导航

摘要
著录项
相似文献

摘要

A method and system is provided for visualizing and navigating cybersecurity information. A hypertree is displayed on a display device of a computerized system. The hypertree includes a plurality of nodes linked by edges, one or more of the nodes representing cybersecurity incidents, and one or more of the nodes representing elements or artifacts of cybersecurity incidents, the edges representing a specific relationship between the nodes linked by the edges. The computerized system displays an interactive navigation aid to enable a user to navigate the hypertree, and receives a navigation command from the user through the interactive navigation aid. The computerized system modifies the displayed hypertree in response to the navigation command. The navigation command comprises selective elimination or restoration of edges or nodes on the hypertree so as to enable the user to readily visualize interrelationships between the displayed nodes that are significant to a cybersecurity investigation or response.

机译：提供了一种用于可视化和导航网络安全信息的方法和系统。超树显示在计算机系统的显示设备上。超树包括由边缘链接的多个节点，一个或多个节点代表网络安全事件，以及一个或多个节点代表网络安全事件的要素或人工产物，边缘代表由边缘链接的节点之间的特定关系。该计算机系统显示交互式导航辅助以使用户能够导航超树，并通过交互式导航辅助从用户接收导航命令。计算机系统响应于导航命令修改显示的超树。导航命令包括有选择地消除或恢复超树上的边缘或节点，以使用户能够容易地可视化所显示的节点之间对网络安全调查或响应很重要的相互关系。

著录项

公开/公告号US10412117B2

专利类型
公开/公告日2019-09-10

原文格式PDF
申请/专利权人 DARIO V. FORTE;MICHELE ZAMBELLI;
展开▼

申请/专利号US201414521328
发明设计人 DARIO V. FORTE;MICHELE ZAMBELLI;
展开▼

申请日2014-10-22
分类号G06F16/901;G06F16/904;G06F9/451;G06F16/954;G06F3/0481;G06F3/0482;G06F3/0484;H04L12/24;H04L29/06;G06F16/9538;
国家 US
入库时间 2022-08-21 12:11:34

相似文献

专利
外文文献
中文文献