US 12,395,514 B2
Network portion risk assessment
Arun Raghuramu, Milpitas, CA (US); Aveek Kumar Das, Santa Clara, CA (US); and Yang Zhang, Fremont, CA (US)
Assigned to Forescout Technologies, Inc., San Jose, CA (US)
Filed by FORESCOUT TECHNOLOGIES, INC., San Jose, CA (US)
Filed on Mar. 14, 2022, as Appl. No. 17/694,448.
Application 17/694,448 is a continuation of application No. 16/583,023, filed on Sep. 25, 2019, granted, now 11,310,258.
Claims priority of provisional application 62/831,118, filed on Apr. 8, 2019.
Prior Publication US 2022/0201032 A1, Jun. 23, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1433 (2013.01) [H04L 63/0227 (2013.01); H04L 63/102 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
accessing network traffic from a network;
determining an entity type associated with at least one entity communicatively coupled to the network;
determining a network portion including the at least one entity;
determining a risk associated with the at least one entity based on an impact of a potential attack on the at least one entity and a probability of the potential attack occurring with respect to the at least one entity;
determining, by a processing device and after determining the risk associated with the at least one entity, a risk associated with the network portion including the at least one entity based on the risk associated with the at least one entity;
storing the risk associated with the network portion; and
performing an action to reduce an attack surface of the network portion for the potential attack based on the risk associated with the network portion.