US 11,956,208 B2
Graphical representation of security threats in a network
Martin Kopp, Lochovice (CZ); and Lukas Machlica, Prague (CZ)
Assigned to CISCO TECHNOLOGY, INC., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Apr. 18, 2022, as Appl. No. 17/722,915.
Application 17/722,915 is a continuation of application No. 16/360,494, filed on Mar. 21, 2019, granted, now 11,336,617.
Prior Publication US 2022/0239630 A1, Jul. 28, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06T 11/20 (2006.01)
CPC H04L 63/02 (2013.01) [H04L 63/1425 (2013.01); H04L 63/145 (2013.01); G06T 11/206 (2013.01); G06T 2200/24 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
detecting network incidents associated with a user device, the network incidents relating to security threats in a network;
grouping the network incidents into one or more groups based on types of the security threats associated with the network incidents;
generating a graph for a group of the one or more groups, the graph including a plurality of nodes, each node representing a behavior indicator associated with the group, wherein generating the graph includes:
assigning an edge to connect a first node and a second node when the first node and the second node correspond to behavior indicators that belong to a same network incident, and
assigning a weight to the edge based on a number of co-occurrences of the first node and the second node in the group; and
displaying the graph on a graphical user interface.