-
公开(公告)号:US11818014B2
公开(公告)日:2023-11-14
申请号:US17590221
申请日:2022-02-01
发明人: Nitzan Niv , Gad Naor
IPC分类号: H04L41/142 , H04L9/40 , H04L67/30 , H04L41/14 , H04L43/062 , H04W12/06 , G06N20/00 , G06Q30/0251 , G06F9/54 , H04L67/50
CPC分类号: H04L41/142 , G06F9/546 , G06N20/00 , G06Q30/0271 , H04L41/145 , H04L43/062 , H04L63/102 , H04L63/104 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L67/30 , H04L67/535 , H04W12/06
摘要: A method and system for detecting anomalous network activity in a cloud-based compute environment. The method comprises receiving configuration data and network activity observations for a set of virtual entities in the cloud-based compute environment; creating a profile for each virtual entity in the set of virtual entities, when the virtual entity does not already have an associated profile; dynamically updating the virtual entity of a profile with the respective network activity observations of the virtual entity; and determining whether anomalies have been detected.
-
公开(公告)号:US20220159025A1
公开(公告)日:2022-05-19
申请号:US17590221
申请日:2022-02-01
发明人: Nitzan NIV , Gad NAOR
IPC分类号: H04L9/40 , H04L67/30 , H04L41/142 , H04L41/14 , H04L43/062
摘要: A method and system for detecting anomalous network activity in a cloud-based compute environment. The method comprises receiving configuration data and network activity observations for a set of virtual entities in the cloud-based compute environment; creating a profile for each virtual entity in the set of virtual entities, when the virtual entity does not already have an associated profile; dynamically updating the virtual entity of a profile with the respective network activity observations of the virtual entity; and determining whether anomalies have been detected.
-
公开(公告)号:US12008222B1
公开(公告)日:2024-06-11
申请号:US17979122
申请日:2022-11-02
发明人: Nitzan Niv , Gad Naor
IPC分类号: G06F3/0484 , G06F9/54 , G06N7/01 , G06N20/00 , G06Q30/0251 , H04L9/40 , H04L41/14 , H04L41/142 , H04L43/062 , H04L67/30 , H04W12/06
CPC分类号: G06F3/0484 , G06F9/546 , G06N7/01 , G06N20/00 , G06Q30/0271 , H04L41/142 , H04L41/145 , H04L43/062 , H04L63/102 , H04L63/104 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L67/30 , H04W12/06
摘要: Various embodiments include systems and methods to implement a security platform providing cyberattack detection. The security platform may, with respect to a cloud compute environment, use audit log data that is associated with a particular domain of operational activity within the cloud compute environment. Based on a domain specific graph representative of factor data and dependencies between factor data, the security platform may determine a behavioral anomaly that is associated with a cyberattack.
-
公开(公告)号:US12010127B1
公开(公告)日:2024-06-11
申请号:US17979132
申请日:2022-11-02
发明人: Nitzan Niv , Gad Naor
IPC分类号: G06F3/0484 , G06F9/54 , G06N20/00 , G06Q30/0251 , H04L9/40 , H04L41/14 , H04L41/142 , H04L43/062 , H04L67/30 , H04W12/06
CPC分类号: H04L63/1416 , G06F9/546 , G06N20/00 , G06Q30/0271 , H04L41/142 , H04L41/145 , H04L43/062 , H04L63/102 , H04L63/104 , H04L63/1425 , H04L63/1441 , H04L67/30 , H04W12/06
摘要: Various embodiments include systems and methods to implement a security platform providing cyberattack detection. The security platform may, with respect to a cloud compute environment, use audit log data that is associated with a particular domain of operational activity within the cloud compute environment. Based on multiple baseline profiles associated with the operational activity, the security platform may use a probabilistic graph to determine a behavioral anomaly. The security platform may, based on the behavioral anomaly, identify a cyberattack.
-
-
-
搜索结果
4 条记录 (耗时 0.012 秒)
