Display screen with graphical user interface
US-D756372-S · May 17, 2016 · US
Methods for using organizational behavior for risk ratings
US10326786B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10326786-B2 |
| Application number | US-201615216955-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jul 22, 2016 |
| Priority date | Sep 9, 2013 |
| Publication date | Jun 18, 2019 |
| Grant date | Jun 18, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Among other things, traces are received of activities of an online user who is associated with an entity. By analysis of the traces a security state of the entity is inferred. Also, a map is generated between (a) technical assets that contribute to security characteristics of respective entities and (b) the identities of the entities that are associated with the respective technical assets. At least part of the generating of the map is done automatically. A user can be engaged to assist in the generating of the map by presenting to the user through a user interface (a) data about the technical assets of entities and (b) an interactive tool for associating the technical assets with the identities of the entities.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method comprising: receiving traces of activities of a plurality of online users who are associated with an entity, wherein the traces of the online users' activities are received from a plurality of disassociated sources including a shared service servicing multiple entities, the traces comprising indications of security characteristics with respect to electronic signals associated with the online users; and inferring, by analysis of the traces of the online users' activities and the use of a shared service, a security rating for the entity, wherein at least one trace originated in a context controlled by the entity and at least one trace originated in a context not controlled by the entity, wherein the analysis comprises a comparison of traces that originated in different contexts of online activities of a user of the plurality of online users, wherein the different contexts comprise different times, wherein the traces that originated at one of the times reflect a user deletion relative to the traces that originated at an earlier time, and wherein the traces that originated at one of the times reflect a user deletion of malicious data or code relative to the traces at the earlier time. 2. The method of claim 1 in which the traces indicate successful attacks on computer systems of the entity. 3. The method of claim 1 comprising distinguishing between traces that represent a less satisfactory security state of the entity and traces that represent a more satisfactory security state of the entity. 4. The method of claim 1 in which the different contexts comprise a context the security of which is controlled by the entity and a context the security of which is at least partly uncontrolled by the entity. 5. The method of claim 4 in which the controlled context comprises a computer system or device made accessible by the entity to the user, and the partly uncontrolled context comprises a computer system or device owned by the user. 6. The method of claim 1 in which the traces comprise tracking of an identity of the online user between two of the different contexts. 7. The method of claim 6 in which the tracking comprises cookies associated with advertising directed to the online user. 8. The method of claim 1 in which the security characteristics comprise indications of whether email messages conform to DomainKeys Identified Mail standards or email domains conform to Sender Policy Framework. 9. The method of claim 1 in which the traces of activities comprise logs of online activities of employees of the entity. 10. The method of claim 1 in which the traces of activities comprise information associated with a user device that represents online activities. 11. The method of claim 10 in which the information associated with the user device comprises information about one or more cookies stored in a memory of the user device. 12. The method of claim 1 in which the traces of activities comprise information about social media activities. 13. The method of claim 1 in which the traces of activities comprise information about email communications. 14. The method of claim 1 in which the traces of activities comprise information about content presented to the online users. 15. The method of claim 1 in which the traces of activities comprise information about receipt by a user of the plurality of online users of malicious mail and the compromise of a domain identified as an origin of the malicious mail. 16. The method of claim 1 wherein an entity comprises an individual or business that has electronic data and that communicates electronically with other individuals and businesses.
Assignees
Inventors
Classifications
Business processes related to social networking or social networking services · CPC title
for the control of specific functions or operations, e.g. selecting or manipulating an object, an image or a displayed text element, setting a parameter value or selecting a range · CPC title
- H04L63/1433Primary
Vulnerability analysis · CPC title
Event detection, e.g. attack signature detection · CPC title
Online advertisement · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10326786B2 cover?
- Among other things, traces are received of activities of an online user who is associated with an entity. By analysis of the traces a security state of the entity is inferred. Also, a map is generated between (a) technical assets that contribute to security characteristics of respective entities and (b) the identities of the entities that are associated with the respective technical assets. At …
- Who is the assignee on this patent?
- Bitsight Tech Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/1433. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jun 18 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).