Qualys has patented a method for generating attack paths based on user and system risk profiles. The system determines user information, system exploitability, and system criticality to quantify a risk profile for the computing device, aiding in identifying potential attack routes for attackers. GlobalData’s report on Qualys gives a 360-degree view of the company including its patenting strategy. Buy the report here.

According to GlobalData’s company profile on Qualys, Network threat detection was a key innovation area identified from patents. Qualys's grant share as of April 2024 was 73%. Grant share is based on the ratio of number of grants to total number of patents.

Generating attack paths based on user and system risk profiles

Source: United States Patent and Trademark Office (USPTO). Credit: Qualys Inc

A recently granted patent (Publication Number: US11968225B2) outlines a method for assessing and quantifying the vulnerability of a computing device based on user information, system exploitability information, and system criticality information. The method involves determining user attributes such as website usage, browser history, downloaded files, and passwords, quantifying this information, and then assessing the vulnerability, security window, and criticality of the system. By combining these factors, a risk profile for the computing device is generated, leading to the initiation of an attack path to identify potential routes for attackers to access the device.

Furthermore, the patent details the inclusion of data related to vulnerability and patching, such as hardware specifications, operating system updates, shared directories, and security solutions, in determining the vulnerability of the computing device. The security window concept is introduced, indicating the time the device remains unpatched after a new patch is released or when the security infrastructure lacks necessary definitions, patches, or signatures. The risk profile is determined by combining user information, system exploitability, and system criticality data, providing a comprehensive approach to assessing and addressing potential vulnerabilities in computing systems.

To know more about GlobalData’s detailed insights on Qualys, buy the report here.

Premium Insights


The gold standard of business intelligence.

Blending expert knowledge with cutting-edge technology, GlobalData’s unrivalled proprietary data will enable you to decode what’s happening in your market. You can make better informed decisions and gain a future-proof advantage over your competitors.


GlobalData, the leading provider of industry intelligence, provided the underlying data, research, and analysis used to produce this article.

GlobalData Patent Analytics tracks bibliographic data, legal events data, point in time patent ownerships, and backward and forward citations from global patenting offices. Textual analysis and official patent classifications are used to group patents into key thematic areas and link them to specific companies across the world’s largest industries.