&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
			function printpage()
			{
			window.print()
			}
			</script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11792229.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,792,229 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>AI-driven defensive cybersecurity strategy analysis and recommendation system</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Jason Crabtree,  Vienna, VA (US); and  Andrew Sellers,  Monument, CO (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  QOMPLX, INC.,  Tysons, VA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  QOMPLX, Inc.,  Tysons, VA (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Jul.  30, 2021, as Appl. No. 17/389,863.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/389,863 is a continuation of application No. 16/792,754, filed on Feb.  17, 2020, granted, now 11,184,401.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/792,754 is a continuation in part of application No. 16/779,801, filed on Feb.  3, 2020, granted, now 11,032,323, issued on Jun.  8, 2021.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/779,801 is a continuation in part of application No. 16/777,270, filed on Jan.  30, 2020, granted, now 11,025,674, issued on Jun.  1, 2021.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/777,270 is a continuation in part of application No. 16/720,383, filed on Dec.  19, 2019, granted, now 10,944,795, issued on Mar.  9, 2021.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/720,383 is a continuation of application No. 15/823,363, filed on Nov.  27, 2017, granted, now 10,560,483, issued on Feb.  11, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/823,363 is a continuation in part of application No. 15/725,274, filed on Oct.  4, 2017, granted, now 10,609,079, issued on Mar.  31, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/725,274 is a continuation in part of application No. 15/655,113, filed on Jul.  20, 2017, granted, now 10,735,456, issued on Aug.  4, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/655,113 is a continuation in part of application No. 15/616,427, filed on Jun.  7, 2017, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/616,427 is a continuation in part of application No. 15/237,625, filed on Aug.  15, 2016, granted, now 10,248,910, issued on Apr.  2, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/237,625 is a continuation in part of application No. 15/206,195, filed on Jul.  8, 2016, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/206,195 is a continuation in part of application No. 15/186,453, filed on Jun.  18, 2016, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/186,453 is a continuation in part of application No. 15/166,158, filed on May   26, 2016, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/166,158 is a continuation in part of application No. 15/141,752, filed on Apr.  28, 2016, granted, now 10,860,962, issued on Dec.  8, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/141,752 is a continuation in part of application No. 15/091,563, filed on Apr.  5, 2016, granted, now 10,204,147, issued on Feb.  12, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/091,563 is a continuation in part of application No. 14/986,536, filed on Dec.  31, 2015, granted, now 10,210,255, issued on Feb.  19, 2019.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 14/986,536 is a continuation in part of application No. 14/925,974, filed on Oct.  28, 2015, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/616,427 is a continuation in part of application No. 14/925,974, filed on Oct.  28, 2015, abandoned.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2022/0060511 A1, Feb.  24, 2022</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>This patent is subject to a terminal disclaimer.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01); <i><b>G06F 16/2458</b></i> (2019.01); <i><b>G06F 16/951</b></i> (2019.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/20</b></i> (2013.01)&#xa0;[<i><b>G06F 16/2477</b></i> (2019.01); <i><b>G06F 16/951</b></i> (2019.01); <i><b>H04L 63/1425</b></i> (2013.01); <i><b>H04L 63/1441</b></i> (2013.01)]</td>
            <td class="table_data" align="right"><b>16 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11792229-20231017-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A system for automated cybersecurity defensive strategy analysis and recommendations, comprising:<div class="claim_text">an attack implementation engine comprising a first plurality of programming instructions stored in a memory of, and operating on a processor of, a computing device, wherein the first plurality of programming instructions, when operating on the processor, cause the computing device to:<div class="claim_text">execute a cyberattack on a network under test; and</div>
                  <div class="claim_text">gather system information about the operation of the network under test during the cyberattack, the system information comprising information about the sequence of events and response of affected devices during the cyberattack;</div>
                </div>
                <div class="claim_text">a machine learning simulator comprising a second plurality of programming instructions stored in the memory of, and operating on the processor of, the computing device, wherein the second plurality of programming instructions, when operating on the processor, cause the computing device to:<div class="claim_text">use the system information to initiate an iterative simulation of a cyberattack strategy sequence, each iteration comprising a simulated attack on a model of the network under test and a simulated defense against the simulated attack, each simulated attack being generated by a first machine learning algorithm;</div>
                  <div class="claim_text">obtain a simulation result comprising the cyberattack strategy sequence and a probability of success of the attack and the defense in each iteration; and</div>
                </div>
                <div class="claim_text">a recommendation engine comprising a third plurality of programming instructions stored in the memory of, and operating on the processor of, the computing device, wherein the third plurality of programming instructions, when operating on the processor, cause the computing device to:<div class="claim_text">compare the simulation result against one or more cost factors and one or more benefit factors; and</div>
                  <div class="claim_text">determine a cybersecurity improvement recommendation for the network under test based on the comparison.</div>
                </div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>