| 发明名称 |
METHOD AND SYSTEM FOR VIRTUAL ASSET ASSISTED EXTRUSION AND INTRUSION DETECTION IN A CLOUD COMPUTING ENVIRONMENT |
| 摘要 |
An analysis trigger monitoring system is provided in one or more virtual assets. One or more analysis trigger parameters are defined and analysis trigger data is generated. The analysis trigger monitoring systems are used to monitor at least a portion of the message traffic sent to, or sent from, the one or more virtual assets to detect any message including one or more of the one or more analysis trigger parameters. A copy of at least a portion of any detected message including one or more of the one or more analysis trigger parameters is then transferred to one or more analysis systems for further analysis using a second communication channel. |
| 申请公布号 |
US2015222647(A1) |
申请公布日期 |
2015.08.06 |
| 申请号 |
US201414171438 |
申请日期 |
2014.02.03 |
| 申请人 |
Intuit Inc. |
发明人 |
Lietz M. Shannon;Cabrera Luis Felipe |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A system for virtual asset assisted extrusion detection in a cloud computing environment comprising:
at least one processor; and at least one memory coupled to the at least one processor, the at least one memory having stored therein instructions which when executed by any set of the one or more processors, perform a process for virtual asset assisted extrusion detection in a cloud computing environment, the process for virtual asset assisted extrusion detection in a cloud computing environment including: providing a cloud computing environment, the cloud computing environment including one or more virtual assets; transforming at least one of the one or more of the virtual assets into an extrusion detection capable virtual asset by providing an analysis trigger monitoring system to the least one of the one or more of the virtual assets; defining one or more analysis trigger parameters; generating analysis trigger data representing the analysis trigger parameters; providing at least part of the analysis trigger data to the analysis trigger monitoring systems of the extrusion detection capable virtual assets; using the analysis trigger monitoring systems and the analysis trigger data to monitor at least a portion of message traffic sent from any of the extrusion detection capable virtual assets to detect any message including one or more of the one or more analysis trigger parameters; classifying any detected message including one or more of the one or more analysis trigger parameters as a suspect message; for each suspect message, generating suspect message copy data representing a copy of at least a portion of the suspect message; and transferring the suspect message copy data to one or more analysis systems for further analysis. |
| 地址 |
Mountain View CA US |
