TECHNOLOGIES FOR DISTRIBUTED DETECTION OF SECURITY ANOMALIES
First Claim
Patent Images
1. A computing device for distributed detection of security anomalies, the computing device comprising:
- a trusted execution environment module to (i) establish a trusted relationship with a security server, (ii) read one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network in response to establishment of the trusted relationship, and (iii) perform a security threat assessment of the one or more packets; and
a communication module to transmit the security threat assessment to the security server.
1 Assignment
0 Petitions
Accused Products
Abstract
Technologies for distributed detection of security anomalies include a computing device to establish a trusted relationship with a security server. The computing device reads one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network in response to establishing the trusted relationship and performs a security threat assessment of the one or more packets. The computing device transmits the security threat assessment to the security server.
-
Citations
25 Claims
-
1. A computing device for distributed detection of security anomalies, the computing device comprising:
-
a trusted execution environment module to (i) establish a trusted relationship with a security server, (ii) read one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network in response to establishment of the trusted relationship, and (iii) perform a security threat assessment of the one or more packets; and a communication module to transmit the security threat assessment to the security server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method for distributed detection of security anomalies by a computing device, the method comprising:
-
establishing, by the computing device, a trusted relationship with a security server; reading, by the computing device, one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network in response to establishing the trusted relationship; performing, by the computing device, a security threat assessment of the one or more packets; and transmitting, by the computing device, the security threat assessment to the security server. - View Dependent Claims (17, 18, 19, 20)
-
-
21. A security server for distributed detection of security anomalies, the security server comprising:
-
a trusted execution environment module to establish a trusted relationship with a computing device; and a communication module to receive, from the computing device, a security threat assessment of one or more packets of at least one of an inter-virtual network function network or an inter-virtual network function component network of the computing device; wherein the trusted execution environment module is further to correlate the security threat assessment with a security threat database of the security server to determine whether the one or more packets pose a security threat. - View Dependent Claims (22, 23, 24, 25)
-
Specification