&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
			function printpage()
			{
			window.print()
			}
			</script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=11818155.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 11,818,155 B2</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Cognitive information security using a behavior recognition system</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Wesley Kenneth Cobb,  The Woodlands, TX (US);  Ming-Jung Seow,  The Woodlands, TX (US);  Curtis Edward Cole, Jr.,  Spring, TX (US);  Cody Shay Falcon,  Katy, TX (US);  Benjamin A. Konosky,  Friendswood, TX (US);  Charles Richard Morgan,  Katy, TX (US);  Aaron Poffenberger,  Houston, TX (US); and  Thong Toan Nguyen,  Richmond, TX (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Intellective Ai, Inc.,  Dallas, TX (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Intellective Ai, Inc.,  Dallas, TX (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Jan.  4, 2022, as Appl. No. 17/568,399.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 17/568,399 is a continuation of application No. 16/945,087, filed on Jul.  31, 2020, abandoned.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 16/945,087 is a continuation of application No. 15/978,150, filed on May   13, 2018, granted, now 10,735,446, issued on Aug.  4, 2020.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/978,150 is a continuation of application No. 15/363,871, filed on Nov.  29, 2016, granted, now 9,973,523, issued on May   15, 2018.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Application 15/363,871 is a continuation of application No. 14/457,060, filed on Aug.  11, 2014, granted, now 9,507,768, issued on Nov.  29, 2016.</b></td>
          </tr>
          <tr>
            <td colspan="3" class="table_data" align="center"><b>Claims priority of provisional application 61/864,274, filed on Aug.  9, 2013.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Prior Publication US 2022/0150267 A1, May   12, 2022</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>This patent is subject to a terminal disclaimer.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 9/40</b></i> (2022.01); <i><b>G06N 20/00</b></i> (2019.01); <i><b>G06F 40/30</b></i> (2020.01); <i><b>G06F 40/226</b></i> (2020.01); <i><b>G06F 40/242</b></i> (2020.01); <i><b>G06F 40/289</b></i> (2020.01); <i><b>G06F 40/40</b></i> (2020.01); <i><b>G06F 40/247</b></i> (2020.01); <i><b>G06F 40/253</b></i> (2020.01); <i><b>G06F 40/284</b></i> (2020.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 63/1425</b></i> (2013.01)&#xa0;[<i><b>G06F 40/226</b></i> (2020.01); <i><b>G06F 40/242</b></i> (2020.01); <i><b>G06F 40/289</b></i> (2020.01); <i><b>G06F 40/30</b></i> (2020.01); <i><b>G06N 20/00</b></i> (2019.01); <i><b>H04L 63/1408</b></i> (2013.01); <i>G06F 40/247</i> (2020.01); <i>G06F 40/253</i> (2020.01); <i>G06F 40/284</i> (2020.01); <i>G06F 40/40</i> (2020.01)]</td>
            <td class="table_data" align="right"><b>18 Claims</b></td>
          </tr>
        </table>
        <center><img src="US11818155-20231114-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A method, comprising:<div class="claim_text">receiving, at a processor, a first ordered stream of normalized values associated with information security data for a computer network;</div>
                <div class="claim_text">generating a stable neuro-linguistic model by:<div class="claim_text">clustering the first ordered stream of normalized values to form a plurality of clusters,</div>
                  <div class="claim_text">outputting an ordered sequence of letters based on the plurality of clusters,</div>
                  <div class="claim_text">building a dictionary of words based on the ordered sequence of letters, each word from the dictionary of words having a length from a plurality of lengths, each length from the plurality of lengths being less than or equal to a specified maximum letter length,</div>
                  <div class="claim_text">outputting an ordered stream of words based on the ordered sequence of letters, and</div>
                  <div class="claim_text">generating a plurality of phrases based on the ordered stream of words;</div>
                </div>
                <div class="claim_text">detecting, using a codelet template, a pattern in a linguistic representation of the information security data, the linguistic representation of the information security data including at least one of the ordered sequence of letters, the ordered stream of words, or the plurality of phrases;</div>
                <div class="claim_text">receiving a second ordered stream of normalized values associated with the information security data for the computer network; and</div>
                <div class="claim_text">issuing an alert based on the stable neuro-linguistic model, the pattern, and the second ordered stream of normalized values.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>