	US 12,015,634 B2
	System and method for mitigating cyber security threats by devices using risk factors
Nadir Izrael, Mountain View, CA (US); Shiri Ladelsky Lellouch, Menlo Park, CA (US); and Misha Seltzer, Toronto (CA)
Assigned to Armis Security Ltd., Tel Aviv-Jaffa (IL)
Filed by Armis Security Ltd., Tel Aviv-Jaffa (IL)
Filed on May 9, 2022, as Appl. No. 17/662,529.
Application 17/662,529 is a continuation of application No. 16/371,794, filed on Apr. 1, 2019, granted, now 11,363,051.
Prior Publication US 2022/0263853 A1, Aug. 18, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06F 21/55 (2013.01); G06F 21/57 (2013.01)

CPC H04L 63/1433 (2013.01) [G06F 21/552 (2013.01); G06F 21/554 (2013.01); G06F 2221/034 (2013.01)]

18 Claims

1. A method for mitigating cyber security threats by devices using risk factors, comprising:

determining a plurality of risk factors for a device based on a plurality of risk behaviors indicated by network activity and information of the device, wherein the plurality of risk behaviors includes observed risk behaviors and assumed risk behaviors, wherein the observed risk behaviors are indicated by data related to network activity by the device, wherein the assumed risk behaviors are extrapolated based on known contextual information related to the device, wherein the observed risk behaviors are determined based on data related to at least one of: configuration of the device, network activity by the device, geographic movement of the device, signal strength of the device, and a protocol used by the device;

determining a risk score for the device based on the plurality of risk factors and a plurality of associated weights, wherein each of the plurality of associated weights is applied to one of the plurality of risk factors; and

performing at least one mitigation action based on the risk score.