Pattern-based application classification
作者: Bjorn Markus Jakobsson
DOI:
关键词: Engineering 、 Computer security 、 Audit 、 Identification (information) 、 Security information and event management 、 Client machine
摘要: Embodiments of present disclosure provide a method and system for remotely auditing security posture client machine at centralized server. The receives an integrity-protected report from the machine, or other devices related to comprising entries associated with events states both machine. comprise characteristics facilitate identification probable attack also detects pattern among one more reports. Finally, classifies based on detected pattern, which could indicate
lens.org 参考文章(2)
Partha Bhattacharya, Aji Joseph, Eli Stevens, Diwakar Naramreddy, Imin T. Lee, Method and system for displaying network security incidents ,(2004)
Travis E. Dawson, John N. Larson, Jing J. Yea, Centralized security management system ,(2013)