Invention Grant
- Patent Title: Supplementing network flow analysis with endpoint information
-
Application No.: US15352150Application Date: 2016-11-15
-
Publication No.: US10708285B2Publication Date: 2020-07-07
- Inventor: Ryan Holeman , Al Hartmann , Josh Harriman , Josh Applebaum
- Applicant: Ziften Technologies, Inc.
- Applicant Address: US TX Austin
- Assignee: Ziften Technologies, Inc.
- Current Assignee: Ziften Technologies, Inc.
- Current Assignee Address: US TX Austin
- Agency: Kowert, Hood, Munyon, Rankin & Goetzel, P.C.
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F9/455 ; H04L12/24 ; H04L29/08 ; H04L12/26

Abstract:
Techniques are disclosed for facilitating analysis of cloud activity. A cloud activity analysis agent may run within a virtual machine in a cloud computing environment to collecting information regarding computing activity within the virtual machine. The cloud activity analysis agent may include, in network flow data records, cloud activity data based on the collected information. The cloud activity analysis agent may then transmit the network flow data records to a network device for flow analysis. In some embodiments, the network flow data records are transmitted to a network flow analyzer that is configured to receive the cloud activity data and is further configured to receive network flow data from one or more flow collectors within a network of the entity. The network flow analyzer may then perform a security analysis for the entity based on the network flow data and the cloud activity data.
Public/Granted literature
- US20170237641A1 Supplementing Network Flow Analysis with Endpoint Information Public/Granted day:2017-08-17
Information query