Patents by Inventor Bryan Douglas Williams
Bryan Douglas Williams has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 8141157Abstract: A security management system includes a fusion engine which “fuses” or assembles information from multiple data sources and analyzes this information in order to detect relationships between raw events that may indicate malicious behavior and to provide an organized presentation of information to consoles without slowing down the processing performed by the data sources. The multiple data sources can comprise sensors or detectors that monitor network traffic or individual computers or both. The sensors can comprise devices that may be used in intrusion detection systems (IDS). The data sources can also comprise firewalls, audit systems, and other like security or IDS devices that monitor data traffic in real-time. The present invention can identify relationships between one or more real-time, raw computer events as they are received in real-time. The fusion engine can also assess and rank the risk of real-time raw events as well as mature correlation events.Type: GrantFiled: December 7, 2009Date of Patent: March 20, 2012Assignee: International Business Machines CorporationInventors: Timothy P. Farley, John M. Hammer, Bryan Douglas Williams, Philip Charles Brass, George C. Young, Derek John Mezack
-
Patent number: 7921459Abstract: A computer-implemented system for managing security event data collected from a computing network. The system employs an event managing software module that can reside on a computing network that is being monitored with security devices. The event managing software collects security event data from security devices located in the monitored computing network and can process the security event data. In processing the security event data, the event manager module can format the data and create manageable summaries of the data. The event manager also supports storage of the security event data and the results of any processing performed on the data. Security event data can be identified by the event manager for use in responding to a security event.Type: GrantFiled: April 27, 2001Date of Patent: April 5, 2011Assignee: International Business Machines CorporationInventors: Gregory Neil Houston, Christian D. Kobsa, Sridhar Embar, Matthew Thaddeus Di Iorio, Bryan Douglas Williams, Michael George Nikitaides
-
Publication number: 20100083382Abstract: A security management system includes a fusion engine which “fuses” or assembles information from multiple data sources and analyzes this information in order to detect relationships between raw events that may indicate malicious behavior and to provide an organized presentation of information to consoles without slowing down the processing performed by the data sources. The multiple data sources can comprise sensors or detectors that monitor network traffic or individual computers or both. The sensors can comprise devices that may be used in intrusion detection systems (IDS). The data sources can also comprise firewalls, audit systems, and other like security or IDS devices that monitor data traffic in real-time. The present invention can identify relationships between one or more real-time, raw computer events as they are received in real-time. The fusion engine can also assess and rank the risk of real-time raw events as well as mature correlation events.Type: ApplicationFiled: December 7, 2009Publication date: April 1, 2010Inventors: Timothy P. Farley, John M. Hammer, Bryan Douglas Williams, Philip Charles Brass, George C. Young, Derek John Mezack
-
Patent number: 7089428Abstract: A security management system includes a fusion engine which “fuses” or assembles information from multiple data sources and analyzes this information in order to detect relationships between raw events that may indicate malicious behavior and to provide an organized presentation of information to consoles without slowing down the processing performed by the data sources. The multiple data sources can comprise sensors or detectors that monitor network traffic or individual computers or both. The sensors can comprise devices that may be used in intrusion detection systems (IDS). The data sources can also comprise firewalls, audit systems, and other like security or IDS devices that monitor data traffic in real-time. The present invention can identify relationships between one or more real-time, raw computer events as they are received in real-time. The fusion engine can also assess and rank the risk of real-time raw events as well as mature correlation events.Type: GrantFiled: April 27, 2001Date of Patent: August 8, 2006Assignee: Internet Security Systems, Inc.Inventors: Timothy P. Farley, John M. Hammer, Bryan Douglas Williams, Philip Charles Brass, George C. Young, Derek John Mezack
-
Publication number: 20020078381Abstract: A security management system includes a fusion engine which "fuses" or assembles information from multiple data sources and analyzes this information in order to detect relationships between raw events that may indicate malicious behavior and to provide an organized presentation of information to consoles without slowing down the processing performed by the data sources. The multiple data sources can comprise sensors or detectors that monitor network traffic or individual computers or both. The sensors can comprise devices that may be used in intrusion detection systems (IDS). The data sources can also comprise firewalls, audit systems, and other like security or IDS devices that monitor data traffic in real-time. The present invention can identify relationships between one or more real-time, raw computer events as they are received in real-time. The fusion engine can also assess and rank the risk of real-time raw events as well as mature correlation events.Type: ApplicationFiled: April 27, 2001Publication date: June 20, 2002Applicant: Internet Security Systems, Inc.Inventors: Timothy P. Farley , John M. Hammer , Bryan Douglas Williams , Philip Charles Brass , George C. Young , Derek John Mezack
-
Publication number: 20020019945Abstract: A computer-implemented system for managing security event data collected from a computing network. The system employs an event managing software module that can reside on a computing network that is being monitored with security devices. The event managing software collects security event data from security devices located in the monitored computing network and can process the security event data. In processing the security event data, the event manager module can format the data and create manageable summaries of the data. The event manager also supports storage of the security event data and the results of any processing performed on the data. Security event data can be identified by the event manager for use in responding to a security event.Type: ApplicationFiled: April 27, 2001Publication date: February 14, 2002Applicant: Internet Security System, Inc.Inventors: Gregory Neil Houston, Christian D. Kobsa, Sridhar Embar, Matthew Thaddeus Di Iorio, Bryan Douglas Williams, Michael George Nikitaides