Testing security incident response through automated injection of known indicators of compromise

Testing security incident response through automated injection of known indicators of compromise

Disclosed are various embodiments for testing the security incident response of an organization through automated injection of a known indicator of compromise. A stream of event data generated by a network monitoring system of an organization is received. The stream of event data is modified to incl...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Stathakopoulos, George Nikolaos, McClintock, Jon Arron
Format: Patent
Sprache:eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Stathakopoulos, George Nikolaos
McClintock, Jon Arron
description Disclosed are various embodiments for testing the security incident response of an organization through automated injection of a known indicator of compromise. A stream of event data generated by a network monitoring system of an organization is received. The stream of event data is modified to include data embodying a fabricated indicator of compromise. The stream of event data that has been modified is then provided to an intrusion detection system of the organization. Metrics are then generated that assess the response of the organization to the fabricated indicator of compromise.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US10135862B1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US10135862B1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US10135862B13</originalsourceid><addsrcrecordid>eNqNjUEKwkAMAHvxIOof4gME16L0rCjeree6bNM2apOySRF_7wo-wNPAMDDT7FaiGnELimGMZG8gDlQjG0TUQVgRrIsyth340aT3hnVq7hiMhEEaeLC8OKmagjeJ-nVB-iFKT4rzbNL4p-Lix1m2PB3Lw3mFg1Tp4AMyWnW9uLXLt8Vus3f5P80HdaY-rQ</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Testing security incident response through automated injection of known indicators of compromise</title><source>esp@cenet</source><creator>Stathakopoulos, George Nikolaos ; McClintock, Jon Arron</creator><creatorcontrib>Stathakopoulos, George Nikolaos ; McClintock, Jon Arron</creatorcontrib><description>Disclosed are various embodiments for testing the security incident response of an organization through automated injection of a known indicator of compromise. A stream of event data generated by a network monitoring system of an organization is received. The stream of event data is modified to include data embodying a fabricated indicator of compromise. The stream of event data that has been modified is then provided to an intrusion detection system of the organization. Metrics are then generated that assess the response of the organization to the fabricated indicator of compromise.</description><language>eng</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2018</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20181120&amp;DB=EPODOC&amp;CC=US&amp;NR=10135862B1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20181120&amp;DB=EPODOC&amp;CC=US&amp;NR=10135862B1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Stathakopoulos, George Nikolaos</creatorcontrib><creatorcontrib>McClintock, Jon Arron</creatorcontrib><title>Testing security incident response through automated injection of known indicators of compromise</title><description>Disclosed are various embodiments for testing the security incident response of an organization through automated injection of a known indicator of compromise. A stream of event data generated by a network monitoring system of an organization is received. The stream of event data is modified to include data embodying a fabricated indicator of compromise. The stream of event data that has been modified is then provided to an intrusion detection system of the organization. Metrics are then generated that assess the response of the organization to the fabricated indicator of compromise.</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2018</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNjUEKwkAMAHvxIOof4gME16L0rCjeree6bNM2apOySRF_7wo-wNPAMDDT7FaiGnELimGMZG8gDlQjG0TUQVgRrIsyth340aT3hnVq7hiMhEEaeLC8OKmagjeJ-nVB-iFKT4rzbNL4p-Lix1m2PB3Lw3mFg1Tp4AMyWnW9uLXLt8Vus3f5P80HdaY-rQ</recordid><startdate>20181120</startdate><enddate>20181120</enddate><creator>Stathakopoulos, George Nikolaos</creator><creator>McClintock, Jon Arron</creator><scope>EVB</scope></search><sort><creationdate>20181120</creationdate><title>Testing security incident response through automated injection of known indicators of compromise</title><author>Stathakopoulos, George Nikolaos ; McClintock, Jon Arron</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US10135862B13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2018</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>Stathakopoulos, George Nikolaos</creatorcontrib><creatorcontrib>McClintock, Jon Arron</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Stathakopoulos, George Nikolaos</au><au>McClintock, Jon Arron</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Testing security incident response through automated injection of known indicators of compromise</title><date>2018-11-20</date><risdate>2018</risdate><abstract>Disclosed are various embodiments for testing the security incident response of an organization through automated injection of a known indicator of compromise. A stream of event data generated by a network monitoring system of an organization is received. The stream of event data is modified to include data embodying a fabricated indicator of compromise. The stream of event data that has been modified is then provided to an intrusion detection system of the organization. Metrics are then generated that assess the response of the organization to the fabricated indicator of compromise.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US10135862B1
source esp@cenet
subjects ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title Testing security incident response through automated injection of known indicators of compromise
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-04T13%3A32%3A03IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Stathakopoulos,%20George%20Nikolaos&rft.date=2018-11-20&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS10135862B1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true