US Patent Application 18208022. THREAT DETECTION USING CLOUD RESOURCE MANAGEMENT LOGS simplified abstract
Contents
THREAT DETECTION USING CLOUD RESOURCE MANAGEMENT LOGS
Organization Name
Microsoft Technology Licensing, LLC
Inventor(s)
Ram Haim Pliskin of Rishon Leizon (IL)
Johnathan Samuel Simon of Redmond WA (US)
THREAT DETECTION USING CLOUD RESOURCE MANAGEMENT LOGS - A simplified explanation of the abstract
- This abstract for appeared for US patent application number 18208022 Titled 'THREAT DETECTION USING CLOUD RESOURCE MANAGEMENT LOGS'
Simplified Explanation
This abstract discusses devices, systems, and methods for enhancing the security of cloud resources. The method involves obtaining a log that records the actions performed by users in a cloud portal, such as user IDs, operations performed, target resources, and timestamps. Each action is assigned a score, which is then compared to a specified criterion. If the score meets the criterion, it indicates an anomalous action, and this information is provided as an indication.
Original Abstract Submitted
Generally discussed herein are devices, systems, and methods for improving cloud resource security. A method can include obtaining a cloud resource management log that details actions performed by users of cloud resources in a cloud portal, the actions including entries comprising at least two of a user identification (ID) of a user of the users, an operation of operations performed on the cloud resource, a uniform resource identifier (URI) of a cloud resource of the cloud resources that is a target of the operation, or a time the operation was performed. The method can include determining a respective score for each action in the cloud resource management log, comparing the respective score to a specified criterion, and providing an indication of anomalous action in response to determining the respective score satisfies the specified criterion.
