Ann Lang Irvine

US Patent:

20220245280, Aug 4, 2022

Filed:

Apr 25, 2022

Appl. No.:

17/728052

Inventors:

- Austin TX, US
Ann Irvine - Baltimore MD, US
Adam Reeve - Redmond WA, US
Russell Snyder - Baltimore MD, US
Benjamin Shih - Baltimore MD, US

International Classification:

G06F 21/62
G06F 21/55
H04L 67/025
G06F 21/57
H04L 9/40
H04L 67/141
H04L 67/146
H04L 67/306
G06F 11/34
G06F 21/60
G06F 21/84

Abstract:

A method, system and computer-usable medium for adaptively assessing risk associated with an endpoint, comprising: determining a risk level corresponding to an entity associated with an endpoint; selecting a frequency and a duration of an endpoint monitoring interval; collecting user behavior to collect user behavior associated with the entity for the duration of the endpoint monitoring interval via the endpoint; processing the user behavior to generate a current risk score for the entity; comparing the current risk score of the user to historical risk scores to determine whether a risk score of a user has changed; and changing the risk score of the user to the current risk score when the risk score of the user has changed.

US Patent:

20200285769, Sep 10, 2020

Filed:

May 21, 2020

Appl. No.:

16/880299

Inventors:

- Austin TX, US
Ann Irvine - Baltimore MD, US
Adam Reeve - Redmond WA, US
Russell Snyder - Baltimore MD, US
Benjamin Shih - Baltimore MD, US

International Classification:

G06F 21/62
G06F 21/55
H04L 29/08
G06F 21/57
H04L 29/06
G06F 11/34
G06F 21/60
G06F 21/84

Abstract:

A method, system and computer-usable medium for adaptively assessing risk associated with an endpoint, comprising: determining a risk level corresponding to an entity associated with an endpoint; selecting a frequency and a duration of an endpoint monitoring interval; collecting user behavior to collect user behavior associated with the entity for the duration of the endpoint monitoring interval via the endpoint; processing the user behavior to generate a current risk score for the entity; comparing the current risk score of the user to historical risk scores to determine whether a risk score of a user has changed; and changing the risk score of the user to the current risk score when the risk score of the user has changed.

US Patent:

20200257822, Aug 13, 2020

Filed:

May 1, 2020

Appl. No.:

16/864980

Inventors:

- Austin TX, US
Ann Irvine - Baltimore MD, US
Russell Snyder - Baltimore MD, US
Adam Reeve - Redmond WA, US

International Classification:

G06F 21/62
G06F 21/84
G06F 21/60
G06F 11/34
H04L 29/08
H04L 29/06
G06F 21/57
G06F 21/55

Abstract:

A method, system and computer-usable medium for generating session-based security information. Generating the session-based security information includes the steps of monitoring user behavior between an enactor and an entity; detecting user behavior data associated with the user behavior; generating a session using the user behavior data, the session relating to an entity discrete interaction of the enactor; and, associating the session and the session-based security information with the user profile.

US Patent:

20200257823, Aug 13, 2020

Filed:

May 1, 2020

Appl. No.:

16/865035

Inventors:

- Austin TX, US
Ann Irvine - Baltimore MD, US
Adam Reeve - Redmond WA, US

International Classification:

G06F 21/62
G06F 21/84
G06F 21/60
G06F 11/34
H04L 29/08
H04L 29/06
G06F 21/57
G06F 21/55

Abstract:

A method, system and computer-usable medium for adaptively remediating multivariate risk, comprising: detecting a violation of a multivariate security policy, the multivariate security policy comprising a plurality of variables; identifying a variable from the plurality of variables associated with a cause of the violation; associating an entity with the variable associated with the cause of the violation; and, adaptively remediating a risk associated with the entity.

US Patent:

20200145447, May 7, 2020

Filed:

Nov 2, 2018

Appl. No.:

16/179062

Inventors:

- Austin TX, US
Richard A. Ford - Austin TX, US
Ann Irvine - Baltimore MD, US
Kristin Machacek Leary - Austin TX, US

International Classification:

H04L 29/06
G06Q 10/06

Abstract:

A method, system, and computer-usable medium for protecting against contagion-based risk events are disclosed for monitoring behavior of users to construct a contagion network relationship map of connection and influence relationships between different users and then analyzing a received stream of events from the users to identify a critical event performed by a first user having a first risk score so that one or more propagated risk scores can be generated from the first risk score for at least a first connected user based on connection and influence relationships between the first user and the first connected user that are extracted from the contagion network relationship so that an adaptive response may be automatically generated to protect and control against actions by at least the first connected user based on the one or more propagated risk scores.

US Patent:

20200076839, Mar 5, 2020

Filed:

Aug 31, 2018

Appl. No.:

16/119156

Inventors:

- Austin TX, US
Christopher Poirel - Baltimore MD, US
Ann Irvine - Baltimore MD, US

International Classification:

H04L 29/06
G06F 17/30

Abstract:

A method, system and computer-usable medium for constructing a distribution of interrelated event features. The constructing a distribution of interrelated event features includes receiving a stream of events, the stream of events comprising a plurality of events; extracting features from the plurality of events; constructing a distribution of the features from the plurality of events; and, analyzing the distribution of the features from the plurality of events.

US Patent:

20200076843, Mar 5, 2020

Filed:

Dec 11, 2018

Appl. No.:

16/216304

Inventors:

- Austin TX, US
Christopher Poirel - Baltimore MD, US
Ann Irvine - Baltimore MD, US

International Classification:

H04L 29/06
G06F 16/28

Abstract:

A method, system and computer-usable medium are disclosed for identifying security risks to a computer system based on a distribution of categorical features of events. Certain embodiments are directed to a computer-implemented method comprising: receiving a stream of events, the stream of events including a plurality of events; extracting a categorical feature from the plurality of events, where the categorical feature includes a set of categorical feature members, where the set of categorical feature members are generated on the fly from string values included in the extracted categorical feature; constructing a distribution for the categorical feature based on categorical feature members extracted from the plurality of events; and, analyzing the distribution of the categorical feature to identify one or more security risk factors.

US Patent:

20190213327, Jul 11, 2019

Filed:

Mar 7, 2019

Appl. No.:

16/295429

Inventors:

- Austin TX, US
Ann Irvine - Baltimore MD, US
Adam Reeve - Redmond WA, US
Russell Snyder - Baltimore MD, US
Benjamin Shih - Baltimore MD, US

International Classification:

G06F 21/55
H04L 29/06
G06F 21/57
H04L 29/08
G06F 21/84
G06F 21/62
G06F 21/60
G06F 11/34

Abstract:

A method, system and computer-usable medium for adaptively assessing risk associated with an endpoint, comprising: determining a risk level corresponding to an entity associated with an endpoint; selecting a frequency and a duration of an endpoint monitoring interval; collecting user behavior to collect user behavior associated with the entity for the duration of the endpoint monitoring interval via the endpoint; processing the user behavior to generate a current risk score for the entity; comparing the current risk score of the user to historical risk scores to determine whether a risk score of a user has changed; and changing the risk score of the user to the current risk score when the risk score of the user has changed.