Invention Grant
US08949931B2 System and method for monitoring application security in a network environment
有权
监控网络环境中的应用安全性的系统和方法
- Patent Title: System and method for monitoring application security in a network environment
- Patent Title (中): 监控网络环境中的应用安全性的系统和方法
-
Application No.: US13462110Application Date: 2012-05-02
-
Publication No.: US08949931B2Publication Date: 2015-02-03
- Inventor: Vina Ermagan , Suraj Nellikar , Sudarshana Kandachar Sridhara Rao , Fabio R. Maino , Massimiliano Menarini
- Applicant: Vina Ermagan , Suraj Nellikar , Sudarshana Kandachar Sridhara Rao , Fabio R. Maino , Massimiliano Menarini
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Patent Capital Group
- Main IPC: G06F17/00
- IPC: G06F17/00 ; H04L29/06
Abstract:
A method includes determining an application role in a distributed application in a network environment, generating a role profile for the application role from an interaction pattern, mapping the role profile to a virtual machine (VM), and detecting a security breach of the VM. Determining the application role includes obtaining network traces from the distributed application, and analyzing the network traces to extract the application role. In one embodiment, detection of the security breach includes generating an access control policy for the VM from the role profile, and determining an anomaly in traffic based thereon. In another embodiment, detection of the security breach includes inserting the role profile in a port profile of the VM, generating a small state machine from the role profile, running the small state machine on a port associated with the VM, and inspecting, by the small state machine, an application level traffic at the port.
Public/Granted literature
- US20130298184A1 SYSTEM AND METHOD FOR MONITORING APPLICATION SECURITY IN A NETWORK ENVIRONMENT Public/Granted day:2013-11-07
Information query
