首页> 外国专利> Automated management of security operations centers

Automated management of security operations centers

机译：安全运营中心的自动化管理

页面导航

摘要
著录项
相似文献

摘要

Disclosed are various embodiments providing automated management of security operations centers. In one embodiment, a correlation and decision engine correlates event data generated by a plurality of monitoring services with a plurality of alerts generated by a plurality of threat intelligence services. The engine then adjusts at least one rule of one or more threat intelligence services with respect to at least one event based at least in part on a corresponding frequency of at least one of the plurality of alerts meeting a threshold, where the adjusted alert(s) are associated with the event(s).

机译：公开了提供安全操作中心自动化管理的各种实施例。在一个实施例中，相关和决策引擎将由多个监视服务生成的事件数据与多个威胁情报服务生成的多个警报相关联。然后，发动机至少部分地基于至少一个事件来调整一个或多个威胁情报服务的至少一个规则，至少部分地基于满足阈值的多个警报中的至少一个的相应频率，其中调整的警报（s ）与事件相关联。

著录项

公开/公告号US11228614B1

专利类型
公开/公告日2022-01-18

原文格式PDF
申请/专利权人 AMAZON TECHNOLOGIES INC.;
展开▼

申请/专利号US201816043817
发明设计人 JESSICA ERIN CLARK;MATTHEW RYAN JEZOREK;MATTHEW MICHAEL SOMMER;
展开▼

申请日2018-07-24
分类号H04L29/06;G06Q10/06;
国家 US
入库时间 2022-08-24 23:22:54

相似文献

专利
外文文献
中文文献