×

Multi-tenant cloud security threat detection

  • US 10,298,605 B2
  • Filed: 11/16/2016
  • Issued: 05/21/2019
  • Est. Priority Date: 11/16/2016
  • Status: Active Grant
First Claim
Patent Images

1. A system of security threat detection, the system comprising:

  • a first plurality of virtual machines including at least a first virtual machine, which includes;

    a plurality of applications including at least a first application and a second application;

    a plurality of application security modules (ASMs) respectively associated with each of the plurality of applications, including at least a first ASM associated with the first application and a second ASM associated with the second application; and

    a network interface;

    a first network controller associated with a first network;

    one or more processors, in communication with the first network controller; and

    a first security policy engine (SPE), executing on the one or more processors;

    wherein the first ASM;

    detects an abnormality with a request to the first application;

    identifies a source and a mode of the abnormality, wherein the first ASM is configured to detect a component of the request as the mode, which includes an identifying characteristic used to identify related further abnormalities associated with additional requests;

    reports the source and the mode to the first SPE, andwherein responsive to receiving a report with the source and the mode from the first ASM, the first SPE;

    prevents a further abnormality with at least one of the source and the mode from affecting the second application by adjusting a threshold for detecting a mode associated with the second ASM; and

    commands the first network controller to prevent the source from interacting with the first network.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×