首页>
外国专利>
GENETIC FUZZING FOR CUSTOMIZATION OF SECURITY OPERATIONS CENTER RULES PER ORGANIZATION
GENETIC FUZZING FOR CUSTOMIZATION OF SECURITY OPERATIONS CENTER RULES PER ORGANIZATION
展开▼
机译:遗传模糊每组安全运营中心规则的定制
展开▼
页面导航
摘要
著录项
相似文献
摘要
Embodiments may provide techniques that that may automatically generate a customized SOC rule set for an organization. For example, in an embodiment, a method may be implemented in a computer comprising a processor, memory accessible by the processor, and computer program instructions stored in the memory and executable by the processor, the method may comprise simulating operation of a security incident and event management system by running a plurality of rules of the system on labeled data, determining fitness metrics of the plurality of rules, selecting at least one rule of the plurality of rules based on the determined fitness metrics; modifying the selected rule to form an updated rule, and repeating running the updated rule on the labeled data, determining fitness metrics of the updated rule, and mutating the updated rule.
展开▼