US 12,355,820 B2
Inferential analysis using feedback for extracting and combining cyber risk information
George Y. Ng, San Mateo, CA (US); Brian Wu, San Francisco, CA (US); Ming Yang, San Mateo, CA (US); Paul Yang, San Mateo, CA (US); and Fernando Tancioco, Jr., San Ramon, CA (US)
Assigned to Guidewire Software, Inc., San Mateo, CA (US)
Filed by Guidewire Software, Inc., San Mateo, CA (US)
Filed on Nov. 17, 2023, as Appl. No. 18/513,085.
Application 18/513,085 is a continuation of application No. 17/477,294, filed on Sep. 16, 2021, granted, now 11,863,590.
Application 17/477,294 is a continuation of application No. 16/662,936, filed on Oct. 24, 2019, granted, now 11,153,349, issued on Oct. 19, 2021.
Application 16/662,936 is a continuation of application No. 15/971,946, filed on May 4, 2018, granted, now 10,511,635, issued on Dec. 17, 2019.
Application 15/971,946 is a continuation of application No. 15/371,047, filed on Dec. 6, 2016, granted, now 10,230,764, issued on Mar. 12, 2019.
Application 15/371,047 is a continuation in part of application No. 15/141,779, filed on Apr. 28, 2016, granted, now 9,521,160, issued on Dec. 13, 2016.
Application 15/141,779 is a continuation in part of application No. PCT/US2015/067968, filed on Dec. 29, 2015.
Application 15/141,779 is a continuation in part of application No. 14/931,510, filed on Nov. 3, 2015, granted, now 9,373,144, issued on Jun. 21, 2016.
Application PCT/US2015/067968 is a continuation of application No. 14/614,897, filed on Feb. 5, 2015, abandoned.
Application 14/931,510 is a continuation in part of application No. 14/585,051, filed on Dec. 29, 2014, granted, now 9,253,203, issued on Feb. 2, 2016.
Claims priority of provisional application 62/098,238, filed on Dec. 30, 2014.
Prior Publication US 2024/0244084 A1, Jul. 18, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 29/06 (2006.01); G06N 20/00 (2019.01); G06Q 30/012 (2023.01); G06Q 40/06 (2012.01); G06Q 40/08 (2012.01); H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) [G06N 20/00 (2019.01); G06Q 30/012 (2013.01); G06Q 40/06 (2013.01); G06Q 40/08 (2013.01); H04L 63/1433 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method, comprising:
assessing risk of a cyber security failure in a computer network of an entity, using a computer agent configured to collect information from at least one accessible Internet elements, wherein the assessing of the risk comprises:
determining circumstantial or indirect information that is indicative of the entity at least in part by inferring that the collected information relates to the entity based on an inferential analysis; and
determining a certainty level that the circumstantial or indirect information pertains to the entity, wherein an impact of analysis of the circumstantial or indirect information in assessing the risk of the cyber security failure is determined based on the certainty level;
automatically determining, based on the assessed risk, a computer network change to reduce the assessed risk; and
causing a recommendation that is generated based at least in part on the computer network change to be provided over a network to the entity.