Some content of this application is unavailable at the moment.
If this situation persist, please contact us atFeedback&Contact
1. (WO2017142694) NON-INTRUSIVE TECHNIQUES FOR DISCOVERING AND USING ORGANIZATIONAL RELATIONSHIPS
Latest bibliographic data on file with the International Bureau    Submit observation

Pub. No.: WO/2017/142694 International Application No.: PCT/US2017/015483
Publication Date: 24.08.2017 International Filing Date: 27.01.2017
IPC:
G06Q 10/00 (2012.01)
G PHYSICS
06
COMPUTING; CALCULATING; COUNTING
Q
DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
10
Administration; Management
Applicants:
SECURITY SCORECARD, INC. [US/US]; 214 W 29th Street, 5th Floor New York, NY 10001, US
Inventors:
RASUMOV, Nikon; US
Agent:
BRAXDALE, Allan; US
Priority Data:
15/046,31817.02.2016US
15/198,56030.06.2016US
Title (EN) NON-INTRUSIVE TECHNIQUES FOR DISCOVERING AND USING ORGANIZATIONAL RELATIONSHIPS
(FR) TECHNIQUES NON INTRUSIVES PERMETTANT DE DÉCOUVRIR ET D'UTILISER DES RELATIONS ORGANISATIONNELLES
Abstract:
(EN) The present disclosure provides techniques for calculating an entity's cybersecurity risk based on identified relationships between the entity and one or more vendors. Customer/vendor relationships may impact the cybersecurity risk for each of the parties involved because a security compromise of a downstream or upstream provider can lead to a compromise of multiple other companies. For example, if organization A uses B (e.g., a cloud service provider) to store files, and B is compromised, this may lead to organization A being compromised (e.g., the files organization A stored using B may have been compromised by the breach of B's cybersecurity). Embodiments of the present disclosure further provide a technique for calculating a cybersecurity risk score for an organization based on identified customer/vendor relationships.
(FR) La présente invention concerne des techniques permettant de calculer un risque de cybersécurité d'une entité sur la base de relations identifiées entre l'entité et un ou plusieurs vendeurs. Des relations client/vendeur peuvent avoir un impact sur le risque de cybersécurité concernant chacune des parties impliquées car une compromission de sécurité d'un fournisseur aval ou amont peut mener à une compromission de multiples autres sociétés. Par exemple, si une organisation A utilise B (par exemple, un fournisseur de service nuagique) afin de stocker des fichiers, et si B est compromise, ceci peut mener à une compromission de l'organisation A (par exemple, les fichiers de l'organisation A stockés au moyen de B peuvent avoir été compromis par l'atteinte à la cybersécurité de B). Des modes de réalisation de la présente invention concernent en outre une technique permettant de calculer un niveau de risque de cybersécurité d'une organisation sur la base de relations de vendeur/client identifiées.
front page image
Designated States: AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JP, KE, KG, KH, KN, KP, KR, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW
African Regional Intellectual Property Organization (ARIPO) (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW)
Eurasian Patent Office (AM, AZ, BY, KG, KZ, RU, TJ, TM)
European Patent Office (EPO) (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR)
African Intellectual Property Organization (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG)
Publication Language: English (EN)
Filing Language: English (EN)