首页> 外国专利> GENETIC FUZZING FOR CUSTOMIZATION OF SECURITY OPERATIONS CENTER RULES PER ORGANIZATION

GENETIC FUZZING FOR CUSTOMIZATION OF SECURITY OPERATIONS CENTER RULES PER ORGANIZATION

机译：遗传模糊每组安全运营中心规则的定制

页面导航

摘要
著录项
相似文献

摘要

Embodiments may provide techniques that that may automatically generate a customized SOC rule set for an organization. For example, in an embodiment, a method may be implemented in a computer comprising a processor, memory accessible by the processor, and computer program instructions stored in the memory and executable by the processor, the method may comprise simulating operation of a security incident and event management system by running a plurality of rules of the system on labeled data, determining fitness metrics of the plurality of rules, selecting at least one rule of the plurality of rules based on the determined fitness metrics; modifying the selected rule to form an updated rule, and repeating running the updated rule on the labeled data, determining fitness metrics of the updated rule, and mutating the updated rule.

机译：实施例可以提供可以自动生成用于组织的定制SOC规则的技术。例如，在一个实施例中，可以在包括处理器，由处理器访问的计算机上的计算机中实现方法，以及存储在存储器中的计算机程序指令并由处理器可执行，该方法可以包括模拟安全事件的操作和安全事件的操作事件管理系统通过在标记的数据上运行多个系统规则，确定多条规则的适合度量，基于所确定的适应度量选择多个规则的至少一个规则; 修改所选规则以形成更新的规则，并重复在标记的数据上运行更新规则，确定更新规则的适合度量，并突变更新规则。

著录项

公开/公告号US2021264286A1

专利类型
公开/公告日2021-08-26

原文格式PDF
申请/专利权人 INTERNATIONAL BUSINESS MACHINES CORPORATION;
展开▼

申请/专利号US202016801173
发明设计人 FADY COPTY;BENJAMIN ZELTSER;
展开▼

申请日2020-02-26
分类号G06N3/12;G06N5/02;G06F21/57;
国家 US
入库时间 2022-08-24 20:47:57

相似文献

专利
外文文献
中文文献