US Patent Application 17715749. AGENTLESS EXTRACTION OF CLOUD CREDENTIALS simplified abstract
Contents
AGENTLESS EXTRACTION OF CLOUD CREDENTIALS
Organization Name
Microsoft Technology Licensing, LLC
Inventor(s)
Ram Haim Pliskin of Rishon Lezion (IL)
Lior Sonntag of Givatayim (IL)
AGENTLESS EXTRACTION OF CLOUD CREDENTIALS - A simplified explanation of the abstract
- This abstract for appeared for US patent application number 17715749 Titled 'AGENTLESS EXTRACTION OF CLOUD CREDENTIALS'
Simplified Explanation
This abstract describes a computing system that can access a cloud storage and create a copy of some or all of the data stored there. The system then searches the copied data for a specific pattern associated with a credential (such as a username or password). If the pattern is found, the system extracts an identifier and the level of access granted to that identifier. This access level is typically related to accessing a specific resource in the cloud. The system then takes steps to reduce the risk of the credential being exposed, such as notifying the owner of the cloud resource, deleting the credential from the cloud, or modifying or revoking the access level associated with the credential.
Original Abstract Submitted
A computing system is configured to access a cloud storage and make a copy of at least a portion of the cloud storage. The copy of the at least portion of the cloud storage to search for a data pattern associated with a credential. In response to finding the data pattern associated with the credential, the computing system extracts an identifier associated with the credential and a scope of permission that the identifier is granted to. The scope of permission is associated with a permission to access a cloud resource. Finally, a risk of potential exposure of the credential is mitigated, such as (but not limited to) notifying an owner of the cloud resource, deleting the credential from the cloud, or modifying or revoking the scope of permission associated with the credential.
