Fortinet has patented a method for multi-feed classification of security events to automate Incident Response (IR) orchestration. A cloud-based security service receives initial event classification from an endpoint protection platform, collects classification results from various data feeds, and generates a final classification result for efficient threat detection and response. GlobalData’s report on Fortinet gives a 360-degree view of the company including its patenting strategy. Buy the report here.

According to GlobalData’s company profile on Fortinet, was a key innovation area identified from patents. Fortinet's grant share as of February 2024 was 72%. Grant share is based on the ratio of number of grants to total number of patents.

Automated multi-feed classification of security events

Source: United States Patent and Trademark Office (USPTO). Credit: Fortinet Inc

A recently granted patent (Publication Number: US11930022B2) outlines a method for a cloud-based security service to enhance incident response capabilities within a private network. The method involves receiving an initial classification of an event and its context from an endpoint protection platform, accessing multiple data feeds to collect classification results, and generating a final classification result based on the initial classification and the data feed results. This final classification can trigger an automated incident response by the cloud-based security service, providing output to the endpoint protection platform for further action.

Furthermore, the patent details the inclusion of automated incident response playbooks within the cloud-based security service, allowing for actions such as notifying end-users, opening tickets, isolating devices, quarantining files, and remediating endpoints based on the final classification. The system also incorporates machine-learning classifiers to process the initial classification and data feed results, without the need for normalization. Each classification result can categorize events as malicious, suspicious, potentially unwanted programs (PUPs), inconclusive, likely safe, or safe, providing a comprehensive approach to incident handling within the private network. Overall, the patent highlights a sophisticated method for leveraging cloud-based security services to enhance incident response and classification processes within a network environment.

To know more about GlobalData’s detailed insights on Fortinet, buy the report here.

Premium Insights


The gold standard of business intelligence.

Blending expert knowledge with cutting-edge technology, GlobalData’s unrivalled proprietary data will enable you to decode what’s happening in your market. You can make better informed decisions and gain a future-proof advantage over your competitors.


GlobalData, the leading provider of industry intelligence, provided the underlying data, research, and analysis used to produce this article.

GlobalData Patent Analytics tracks bibliographic data, legal events data, point in time patent ownerships, and backward and forward citations from global patenting offices. Textual analysis and official patent classifications are used to group patents into key thematic areas and link them to specific companies across the world’s largest industries.