Unlock instant, AI-driven research and patent intelligence for your innovation.

Identify behavioral changes in online services

A behavioral, recognizer technology, applied in the field of information processing, which can solve problems such as difficulty in achieving good and satisfactory results, inability to identify security event inspections, etc.

Active Publication Date: 2020-03-27
MICROSOFT TECH LICENSING LLC
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] Hence, it is difficult to achieve good and satisfactory results as such systems often fail to identify important security events or may generate many false positives thus triggering unnecessary checks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Identify behavioral changes in online services
  • Identify behavioral changes in online services
  • Identify behavioral changes in online services

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0024] summary

[0025] Various embodiments provide methods for classifying security events based on the concept of behavioral change detection or "mutability." A security incident is associated with the provision of one or more online services. Behavioral change detection is used instead of the predefined model approach to view the behavior of the system and detect any changes from otherwise normal operating behavior. In operation, machine learning techniques are used as an event classification mechanism that enables scalability of the implementation. This machine learning technique is iterative and learns continuously over time. This constitutes an improvement over rule-based systems that require new rules to be authorized whenever the system changes. Through machine learning techniques, the manual processing usually associated with rule-based systems is eliminated. The operational scalability problem is addressed by using the calculated variability of events in the time...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Various embodiments provide methods for classifying security events based on the concept of behavior change detection or "volatility." Behavior change detection is used instead of the predefined mode method to look at the behavior of the system and detect any changes from the otherwise normal operating behavior. In operation, machine learning techniques are used as an event classification mechanism to facilitate the scalability of the implementation. The machine learning technique is iterative and continues to learn over time. The operational scalability problem is solved by using the computed variability of events in the time series as classifier input. During the learning process (ie, the machine learning process), the system identifies relevant features that are affected by security incidents. When in operation, the system evaluates those characteristics in real time and provides the probability that an accident will occur.

Description

technical field [0001] Embodiments of the present disclosure relate generally to information processing, and more specifically to classifying security events. Background technique [0002] Organizations with large numbers of computers running several different services often monitor both hardware and software events for anomalies that may indicate security threats. To date, operational security assurance programs have generally been based on rules that analyze events for predefined patterns. For example, the rule could be a per-computer log. The predefined patterns can indicate potential security threats that, once identified, can be addressed. The rule-based approach may not be scalable in at least two dimensions, thus making the approach difficult to implement flexibly. First, with respect to rule-based implementations, this requires the rules to be coded ahead of time based on expert knowledge. This means that rule developers must anticipate what is considered vulnera...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/55G06F21/57H04L29/06
CPCG06F21/552G06F21/577H04L63/1416H04L63/1425G06F2221/034
Inventor A·A·S·索尔B·马基R·D·菲什D·J·安克妮D·D·博亚V·拉姆达特米西尔
Owner MICROSOFT TECH LICENSING LLC