The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 11777945 B1

Date of Patent:

Oct. 03, 2023

Filed:

Jan. 27, 2022

Predicting suspiciousness of access between entities and resources

Applicant:

Splunk Inc., San Francisco, CA (US);

Inventors:

George Apostolopoulos, San Jose, CA (US);

Ignacio Nicolas Bermudez Corrales, Sunnyvale, CA (US);

Assignee:

Splunk Inc., San Francisco, CA (US);

Attorney:

Shook, Hardy & Bacon L.L.P.

Primary Examiner:

Thanh T Le

Int. Cl.

CPC ...

G06N 20/00 (2019.01); G06N 7/00 (2023.01); H04L 9/40 (2022.01); G06F 16/28 (2019.01);

U.S. Cl.

CPC ...

H04L 63/102 (2013.01); G06F 16/288 (2019.01); G06N 7/00 (2013.01); G06N 20/00 (2019.01); H04L 63/1425 (2013.01);

Abstract

Embodiments of the present invention are directed to facilitating detection of suspicious access to resources. In accordance with aspects of the present disclosure, an access graph is generated. The access graph contains access data that includes observed accesses between entities and resources. Access scores can be determined for entity-resource pairs in the access graph by applying a set of access rules to the entity-resource pairs in the access graph. The access scores indicate an extent of relatedness between the corresponding entity and resource. Thereafter, the access scores can be used to train a probabilistic prediction model that predicts suspiciousness of accesses between entities and resources.

Find Patent Forward Citations