20240039936. SYSTEM AND METHOD FOR GENERATING NORMALIZED EVENT LOGS FOR CLOUD DETECTION AND RESPONSE IN A MULTI-LAYERED CLOUD ENVIRONMENT simplified abstract (Wiz, Inc.)

From WikiPatents
Jump to navigation Jump to search

SYSTEM AND METHOD FOR GENERATING NORMALIZED EVENT LOGS FOR CLOUD DETECTION AND RESPONSE IN A MULTI-LAYERED CLOUD ENVIRONMENT

Organization Name

Wiz, Inc.

Inventor(s)

George Pisha of Giv'atayim (IL)

Liran Moysi of Kfar Saba (IL)

Itay Vanzetti of Petah Tikva (IL)

Alon Schindel of Tel Aviv (IL)

SYSTEM AND METHOD FOR GENERATING NORMALIZED EVENT LOGS FOR CLOUD DETECTION AND RESPONSE IN A MULTI-LAYERED CLOUD ENVIRONMENT - A simplified explanation of the abstract

This abstract first appeared for US patent application 20240039936 titled 'SYSTEM AND METHOD FOR GENERATING NORMALIZED EVENT LOGS FOR CLOUD DETECTION AND RESPONSE IN A MULTI-LAYERED CLOUD ENVIRONMENT

Simplified Explanation

The patent application describes a system and method for improving cloud detection and response by generating a normalized event log from multiple layers of cloud computing. Here are the bullet points explaining the patent:

  • The system receives events from different layers of a cloud computing environment.
  • Data is extracted from each event.
  • A normalized event is generated based on the extracted data and a predefined data schema.
  • The normalized event is stored in a transactional database as a normalized event log.
  • A rule engine is applied to the normalized event to detect cybersecurity threats in the cloud computing environment.

Potential applications of this technology:

  • Enhancing cybersecurity in cloud computing environments.
  • Improving incident response and threat detection in cloud computing.
  • Providing a centralized and standardized event log for monitoring and analysis.

Problems solved by this technology:

  • Lack of standardized event logs across different cloud computing layers.
  • Difficulty in detecting and responding to cybersecurity threats in cloud environments.
  • Inefficient incident response due to fragmented event data.

Benefits of this technology:

  • Improved visibility and understanding of events in cloud computing environments.
  • Enhanced detection and response capabilities for cybersecurity threats.
  • Streamlined incident response and investigation processes.
  • Standardized event logs for easier monitoring and analysis.


Original Abstract Submitted

a system and method improves cloud detection and response by generating a normalized event log from a plurality of cloud computing layers. the method includes receiving a plurality of events, wherein a first event is generated in a first cloud layer of a cloud computing environment provided by a cloud service provider (csp) and a second event is generated in a second cloud layer of the cloud computing environment; extracting data from each event; generating a normalized event based on the extracted data and further based on a predefined data schema, the predefined schema including a plurality of data fields, at least a portion of which are related to cloud layers; storing the normalized event in a transactional database having stored therein a normalized event log; and applying a rule from a rule engine on the normalized event to detect a cybersecurity threat in the cloud computing environment.

Retrieved from "http://wikipatents.org/index.php?title=20240039936._SYSTEM_AND_METHOD_FOR_GENERATING_NORMALIZED_EVENT_LOGS_FOR_CLOUD_DETECTION_AND_RESPONSE_IN_A_MULTI-LAYERED_CLOUD_ENVIRONMENT_simplified_abstract_(Wiz,_Inc.)&oldid=30935"