REAL-TIME APPLICATION STATE MONITORING, WHITE LIST PROFILE INSTANTIATION, BEHAVIORAL DETECTION AND AUTOMATIC CYBER ATTACK DEFENSE (BUSHIDO)

REAL-TIME APPLICATION STATE MONITORING, WHITE LIST PROFILE INSTANTIATION, BEHAVIORAL DETECTION AND AUTOMATIC CYBER ATTACK DEFENSE (BUSHIDO)

Methods, computer readable media, and apparatuses for real-time application state monitoring, white list profile instantiation, behavioral detection and automatic cyber-attack defense are presented. For example, according to one aspect, multiple application behavioral metrics are received from multi...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Malhotra, Sameer, Parsacala, Nazario
Format: Patent
Sprache:eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Methods, computer readable media, and apparatuses for real-time application state monitoring, white list profile instantiation, behavioral detection and automatic cyber-attack defense are presented. For example, according to one aspect, multiple application behavioral metrics are received from multiple behavioral metric collection agents. At least some of the behavioral metrics are identified based on an association with an application profile or common entity. The identified behavioral metrics are utilized to evaluate whether behavioral conditions specified by application white lists, policies and or security policies associated with the common entity have been satisfied. Responsive to evaluating that a behavioral condition has been deviated, an alert is generated and communicated to one or more response devices associated with the common entity.