US 12,192,228 B2
Adaptive vulnerability management based on diverse vulnerability information
Pradeep Cruz, Issaquah, WA (US); Jan Olav Opedal, Ellensburg, WA (US); Srikrishna Srinivasan, Issaquah, WA (US); and Yanbing Su, Frisco, TX (US)
Assigned to T-Mobile USA, Inc., Bellevue, WA (US)
Filed by T-Mobile USA, Inc., Bellevue, WA (US)
Filed on Jun. 9, 2023, as Appl. No. 18/332,529.
Application 18/332,529 is a continuation of application No. 16/688,915, filed on Nov. 19, 2019, granted, now 11,729,197.
Prior Publication US 2023/0319096 A1, Oct. 5, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 29/06 (2006.01); G06F 8/65 (2018.01); H04L 9/40 (2022.01)
CPC H04L 63/1433 (2013.01) [G06F 8/65 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for adaptive vulnerability management of a computer system, the method comprising:
collecting vulnerability information over a network, from a networked source,
wherein the vulnerability information includes a known vulnerability of a first computer asset, and
wherein the vulnerability information includes a set of cybersecurity vulnerabilities and exposures (CVEs);
collecting system information of the computer system,
wherein the system information includes information about the first computer asset of the computer system; and
processing the vulnerability information and the system information by:
interpreting at least some of the CVEs of the set of CVEs with natural language processing (NLP);
identifying a potential vulnerability of the first computer asset based on a correlation between the at least some of the interpreted CVEs and the system information;
storing, in a database, a subset of the vulnerability information,
wherein the subset of the vulnerability information does not match the system information; and
generating, based on text extracted from the subset of the vulnerability information stored in the database, a search index that enables access to processed analytics of the vulnerability information.