Patent · US Active

Attack detection based on graph edge context

US11397808B1 · kind B1 · utility

20Cited by

0References

20Claims

0Family size

Assignee

Confluera, Inc. · US

Inventors

Vinay Prabhu · Milpitas, US
Pradeep Gopanapalli Venkata · Mountain View, US
Chamnan So · San Francisco, US
Sandeep Siroya · Cupertino, US
Niloy Mukherjee · Beaverton, US

Key dates

Filing date	Sep 2, 2021
Grant date	Jul 26, 2022
Priority date	—
Expiry date	Sep 2, 2041

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/6218
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Infrastructure attacks based on graph edge context are identified by receiving an execution graph constructed by a central service based on behaviors monitored by a plurality of agents deployed on respective systems including a first system. The execution graph comprises a plurality of execution trails. One or more tags are applied to each edge of an execution trail of the execution graph based on at least one of temporal context or spatial context associated with the edge. One or more behaviors associated with the edge of the execution trail happen across an enterprise infrastructure involving the first system. The execution trail enriched with the one or more tags is analyzed. An action that is performed to mitigate security risks in the execution graph is determined based on the analysis.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.