公开(公告)号：US10063654B2

公开(公告)日：2018-08-28

申请号：US14749522

申请日：2015-06-24

申请人： Oracle International Corporation

发明人： Ganesh Kirti ,  Kamalendu Biswas ,  Prakash Gurumurthy ,  Raja S. Alomari ,  Sumedha Nalin Perera

IPC分类号： H04L29/08 ,  H04L29/06

CPC分类号： H04L67/306 ,  H04L63/107 ,  H04L63/108 ,  H04L63/1416 ,  H04L63/1433 ,  H04L67/10 ,  H04L67/22 ,  H04W12/00505

摘要： Systems and methods for contextual and cross application threat detection in cloud applications in accordance with embodiments of the invention are disclosed. In one embodiment, a method for detecting threat activity in a cloud application using past activity data from cloud applications includes receiving activity data concerning actions performed by a user account associated with a user within a monitored cloud application, receiving external contextual data about the user that does not concern actions performed using the user account within the monitored cloud application, where the external contextual data is retrieved from outside of the monitored cloud application, deriving a baseline user profile using the activity data and external contextual data and associating the baseline user profile with the user account, and determining the likelihood of anomalous activity using the baseline user profile.