公开(公告)号：US12063228B2

公开(公告)日：2024-08-13

申请号：US17559164

申请日：2021-12-22

Applicant: Cisco Technology, Inc.

Inventor： Akram Ismail Sheriff ,  Rajiv Asati ,  Nagendra Kumar Nainar ,  Ariel Shuper ,  Hendrikus G. P. Bosch

IPC: H04L9/40 ,  H04L41/22

CPC classification number: H04L63/1416 ,  H04L41/22 ,  H04L63/1425 ,  H04L63/1466

Abstract: In one embodiment, a method comprises: receiving, by a process, an executed function flow of a daisy chained serverless function-as-a-service (FaaS) function, the executed function flow having been injected with a particular trace identifier in response to an initial event trigger and span identifiers having been injected by each service that was executed; generating, by the process, a serverless flow graph associated with the particular trace identifier based on linking a path of serverless functions according to correlation of the span identifiers between the serverless functions; performing, by the process, a trace-based analysis of the serverless flow graph through comparison to a baseline of expectation; detecting, by the process, one or more anomalies in the serverless flow graph according to the trace-based analysis; and mitigating, by the process, the one or more anomalies in the serverless flow graph.

公开(公告)号：US20230208855A1

公开(公告)日：2023-06-29

申请号：US17559164

申请日：2021-12-22

Applicant: Cisco Technology, Inc.

Inventor： Akram Ismail Sheriff ,  Rajiv Asati ,  Nagendra Kumar Nainar ,  Ariel Shuper ,  Hendrikus G.P. Bosch

IPC: H04L9/40 ,  H04L41/22

CPC classification number: H04L63/1416 ,  H04L41/22 ,  H04L63/1425 ,  H04L63/1466

Abstract: In one embodiment, a method comprises: receiving, by a process, an executed function flow of a daisy chained serverless function-as-a-service (FaaS) function, the executed function flow having been injected with a particular trace identifier in response to an initial event trigger and span identifiers having been injected by each service that was executed; generating, by the process, a serverless flow graph associated with the particular trace identifier based on linking a path of serverless functions according to correlation of the span identifiers between the serverless functions; performing, by the process, a trace-based analysis of the serverless flow graph through comparison to a baseline of expectation; detecting, by the process, one or more anomalies in the serverless flow graph according to the trace-based analysis; and mitigating, by the process, the one or more anomalies in the serverless flow graph.

公开(公告)号：US20230229811A1

公开(公告)日：2023-07-20

申请号：US17843355

申请日：2022-06-17

Applicant: Cisco Technology, Inc.

Inventor： Hendrikus G.P. Bosch ,  Alessandro Duminuco ,  Sape Jurriën Mullender ,  Julien Barbot ,  Ariel Shuper

IPC: G06F21/62 ,  G06F9/54

CPC classification number: G06F21/629 ,  G06F9/547

Abstract: In one embodiment, an illustrative method may comprise: monitoring, by a process, a behavior of an application between one or more client devices and an application programming interface service; establishing, by the process, an application model of objects and functions within the application based on the behavior; and determining, by the process, an authorization logic of the application for the objects and functions based on the application model. In one embodiment, the illustrative method further comprises: testing one or more authorization approaches against the application to determine one or more discrepancies within the authorization logic indicative of faulty authorizations; and mitigating the one or more discrepancies.