US 12,355,801 B2
Matching common vulnerabilities and exposures
Maxim Bakman, Tel Aviv (IL); and Julia Ballos Shefi, Tel Aviv (IL)
Assigned to Forescout Technologies, Inc., San Jose, CA (US)
Filed by FORESCOUT TECHNOLOGIES, INC., San Jose, CA (US)
Filed on Sep. 30, 2022, as Appl. No. 17/937,385.
Claims priority of provisional application 63/326,587, filed on Apr. 1, 2022.
Prior Publication US 2023/0319094 A1, Oct. 5, 2023
Int. Cl. H04L 9/40 (2022.01); G06F 40/205 (2020.01)
CPC H04L 63/1433 (2013.01) [G06F 40/205 (2020.01); H04L 63/1425 (2013.01)] 17 Claims
OG exemplary drawing
 
1. A method comprising:
determining a classification of an entity that is coupled to a network;
accessing a plurality of entity security vulnerabilities and exposures;
extracting one or more keywords from each of the entity security vulnerabilities and exposures of the plurality of entity security vulnerabilities and exposures;
accessing entity property data associated with the entity coupled to the network;
comparing, by a processing device, the one or more keywords from each of the entity security vulnerabilities and exposures of the plurality of entity security vulnerabilities and exposures to the entity property data associated with the entity coupled to the network;
determining, by the processing device, one or more entity security vulnerabilities and exposures of the plurality of entity security vulnerabilities and exposures that are associated with the entity coupled to the network based on the comparing of the one or more keywords and the entity property data;
monitoring network traffic with the entity; and
determining a risk score associated with the entity based on the classification of the entity, the network traffic with the entity, and the one or more of the entity security vulnerabilities and exposures that are associated with the entity coupled to the network.