×

Microsegmented networks that implement vulnerability scanning

  • US 9,438,634 B1
  • Filed: 08/28/2015
  • Issued: 09/06/2016
  • Est. Priority Date: 03/13/2015
  • Status: Active Grant
First Claim
Patent Images

1. A system comprising:

  • a memory;

    one or more processors;

    a plurality of microsegmented environments, each of the plurality of microsegmented environments comprising a hypervisor, an enforcement point comprising an active probe device, and a plurality of virtual machines each implementing at least one microservice component, the plurality of microsegmented environments collectively providing a microservice, each of the plurality of microsegmented environments providing a portion of the microservice; and

    a cloud data center server coupled with the plurality of microsegmented environments over a network, the cloud data center server comprising;

    a security controller providing a security policy to each of the plurality of microsegmented environments, the security policy being configured using the microservice; and

    an active probe controller requesting each active probe device of the plurality of microsegmented environments to perform a respective vulnerability scan of a plurality of vulnerability scans, the vulnerability scans including packet insertion and/or modification, the vulnerability scans being performed concurrently, the vulnerability scans performed on the plurality of microsegmented environments collectively providing the microservice, the vulnerability scans occurring in parallel on the plurality of virtual machines implementing at least one microservice component, the active probe device identifying an affected microsegmented environment for remediation when a vulnerability is detected.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×