Patent · US Active

Profiling of container images and enforcing security policies respective thereof

US10586042B2 · kind B2 · utility

10Cited by

42References

28Claims

0Family size

Assignee

Twistlock Ltd. · IL

Inventors

Dima Stopel · Herzliya, IL
Liron Levin · Herzliya, IL
Lior Yankovich · Herzliya, IL

Key dates

Filing date	Jan 3, 2017
Grant date	Mar 10, 2020
Priority date	—
Expiry date	May 14, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method for securing execution of software containers using security profiles. The method comprises receiving an event indicating that a container image requires profiling, wherein the container image includes resources utilized to execute a corresponding application container; generating a security profile for the container image, wherein the generated security profile includes at least a system calls profile; monitoring the operation of a runtime execution of the application container; and detecting a violation of the security profile based on the monitored operation, wherein the security profile is of the container image corresponding to the application container.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.