| CPC H04L 63/10 (2013.01) | 20 Claims |
|
1. A method executed by a computer system that scores a permission change request associated with a directory service permission, comprising:
comparing, by the computer system, the permission change request associated with the directory service permission to a directory service permission profile that describes predicted directory service permissions associated with a directory service; and
determining, by the computer system, whether the permission change request is suspicious by generating a directory service permission score based on the comparing of the permission change request to the directory service permission profile that describes the predicted directory service permissions.
|