Patent · US Revoked

Detecting vulnerabilities in configuration code of a cloud environment utilizing infrastructure as code

US12353474B2 · kind B2 · utility

0Cited by

133References

29Claims

0Family size

Assignee

Wiz, Inc. · US

Inventors

Raaz HERZBERG · Tel Aviv-Yafo, IL
Yaniv Joseph Oliver · Tel Aviv-Yafo, IL
Osher HAZAN · Mazkeret Batya, IL
Niv Roit BEN DAVID · Tel Aviv-Yafo, IL
Ami Luttwak · Binyamina - Givat Ada, IL
Roy REZNIK · Tel Aviv-Yafo, IL

Key dates

Filing date	Nov 14, 2022
Grant date	Jul 8, 2025
Priority date	—
Expiry date	Feb 10, 2043

Classification

Technology area (CPC —)General

Abstract

A system and method for applying a unified security policy across a technology stack, includes detecting a cloud object in a first cloud computing environment, the cloud object including a plurality of attributes, each attribute having a corresponding value; detecting a node in a security graph having a data field value which matches an attribute value of the cloud object, wherein the security graph includes a representation of a cloud environment; applying a policy based on the data field value to the detected cloud object; and applying the policy to another cloud object in a second cloud computing environment, in response to determining that a node representing the cloud object in the security graph is connected to a node representing the another cloud object.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.