Threat mitigation system and method
US-11637847-B2 · Apr 25, 2023 · US
Protecting risk entries using disinformation entries
US2025077678A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2025077678-A1 |
| Application number | US-202217894486-A |
| Country | US |
| Kind code | A1 |
| Filing date | Aug 24, 2022 |
| Priority date | Aug 24, 2022 |
| Publication date | Mar 6, 2025 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method of protecting a risk threat is disclosed. A new entry to be stored in a database store is received, wherein the new entry identifies a risk threat. A plurality of disinformation entries is generated based on the new entry to be stored in the database store. Security signatures for the new entry and the plurality of disinformation entries are determined. An authorized user is allowed to use the security signatures to identify the new entry in the database store as a legitimate entry.
First claim
Opening claim text (preview).
What is claimed is: 1 . A method, comprising: receiving a new entry to be stored in a database store, wherein the new entry identifies a risk threat; generating a plurality of disinformation entries based on the new entry to be stored in the database store; determining security signatures for the new entry and the plurality of disinformation entries; and allowing an authorized user to use the security signatures to identify the new entry in the database store as a legitimate entry. 2 . The method of claim 1 , further comprising receiving the new entry to be stored in the database store from a data risk assessment module, and wherein the new entry includes one or more results obtained at one of a plurality of stages of the data risk assessment module, and wherein the plurality of stages of the data risk assessment module includes an identifying risk stage, an analyzing risk stage, and an evaluating risk stage. 3 . The method of claim 1 , further comprising determining a number of the plurality of disinformation entries based on a measure of riskiness associated with the risk threat of the new entry. 4 . The method of claim 1 , further comprising determining a number of the plurality of disinformation entries based on a measure of harm associated with the risk threat of the new entry. 5 . The method of claim 1 , further comprising determining a number of the plurality of disinformation entries based on a level of impact associated with the risk threat of the new entry. 6 . The method of claim 1 , further comprising determining a number of the plurality of disinformation entries based on a measure of difficulty of identifying the new entry from the plurality of disinformation entries. 7 . The method of claim 1 , wherein the generating of the plurality of disinformation entries based on the new entry comprises: generating the plurality of disinformation entries as modified versions of the new entry, wherein a field of one of the plurality of disinformation entries includes false information that is modified from an original field of the new entry. 8 . The method of claim 7 , further comprising: generating the field of the one of the plurality of disinformation entries based on multiplicative hashing and a random number generator. 9 . The method of claim 7 , further comprising: generating the field of the one of the plurality of disinformation entries based on a probabilistic curve. 10 . The method of claim 7 , wherein the field of the one of the plurality of disinformation entries identifies one of the following: an owner of the risk threat, a threat vector associated with the risk threat, an asset class associated with the risk threat, an asset associated with the risk threat, a likelihood of the risk threat, a primary loss associated with the risk threat, or a secondary loss associated with the risk threat. 11 . The method of claim 1 , further comprising: using certificate-based signing to dynamically revoke the allowing of the authorized user to identify the new entry in the database store as the legitimate entry. 12 . The method of claim 1 , further comprising: distributing different signing algorithms and certificates to different functional groups, such that a functional group among the different functional groups is able to identify only a subset of a plurality of legitimate entries stored in the database store. 13 . A system, comprising: a processor configured to: receive a new entry to be stored in a database store, wherein the new entry identifies a risk threat; generate a plurality of disinformation entries based on the new entry to be stored in the database store; determine security signatures for the new entry and the plurality of disinformation entries; and allow an authorized user to use the security signatures to identify the new entry in the database store as a legitimate entry; and a memory coupled to the processor and configured to provide the processor with instructions. 14 . The system of claim 13 , wherein the processor is configured to: receive the new entry to be stored in the database store from a data risk assessment module, and wherein the new entry includes one or more results obtained at one of a plurality of stages of the data risk assessment module, and wherein the plurality of stages of the data risk assessment module includes an identifying risk stage, an analyzing risk stage, and an evaluating risk stage. 15 . The system of claim 13 , wherein the processor is configured to: determine a number of the plurality of disinformation entries based on a measure of riskiness associated with the risk threat of the new entry. 16 . The system of claim 13 , wherein the processor is configured to: generate the plurality of disinformation entries as modified versions of the new entry, wherein a field of one of the plurality of disinformation entries includes false information that is modified from an original field of the new entry. 17 . A computer program product embodied in a non-transitory computer readable medium and comprising computer instructions for: receiving a new entry to be stored in a database store, wherein the new entry identifies a risk threat; generating a plurality of disinformation entries based on the new entry to be stored in the database store; determining security signatures for the new entry and the plurality of disinformation entries; and allowing an authorized user to use the security signatures to identify the new entry in the database store as a legitimate entry. 18 . The computer program product of claim 17 , further comprising computer instructions for: receiving the new entry to be stored in the database store from a data risk assessment module, and wherein the new entry includes one or more results obtained at one of a plurality of stages of the data risk assessment module, and wherein the plurality of stages of the data risk assessment module includes an identifying risk stage, an analyzing risk stage, and an evaluating risk stage. 19 . The computer program product of claim 17 , further comprising computer instructions for: determining a number of the plurality of disinformation entries based on a measure of riskiness associated with the risk threat of the new entry. 20 . The computer program product of claim 17 , further comprising computer instructions for: generating the plurality of disinformation entries as modified versions of the new entry, wherein a field of one of the plurality of disinformation entries includes false information that is modified from an original field of the new entry.
Assignees
Inventors
Classifications
to a system of files or objects, e.g. local or distributed file system or database · CPC title
Test or assess a computer or a system · CPC title
- G06F21/577Primary
Assessing vulnerabilities and evaluating computer system security · CPC title
- G06F21/64Primary
Protecting data integrity, e.g. using checksums, certificates or signatures · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2025077678A1 cover?
- A method of protecting a risk threat is disclosed. A new entry to be stored in a database store is received, wherein the new entry identifies a risk threat. A plurality of disinformation entries is generated based on the new entry to be stored in the database store. Security signatures for the new entry and the plurality of disinformation entries are determined. An authorized user is allowed to…
- Who is the assignee on this patent?
- Meta Platforms Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/577. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Mar 06 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).