DYNAMIC PRIORITIZATION OF ATTACK PATHS IN CLOUD NATIVE APPLICATION

Organization Name

Inventor(s)

DYNAMIC PRIORITIZATION OF ATTACK PATHS IN CLOUD NATIVE APPLICATION

This abstract first appeared for US patent application 20250097252 titled 'DYNAMIC PRIORITIZATION OF ATTACK PATHS IN CLOUD NATIVE APPLICATION

Original Abstract Submitted

techniques for using real-time metrics and telemetry information to dynamically prioritize attack paths identified during a static analysis of a cloud native application, and using top priority attack paths identified during the static analysis to steer the dynamic analysis. the techniques may include identifying components of the cloud native application and connections between the components. the components and connections are analyzed to identify a set of attack paths. network communications are monitored between the connections and metrics representing signals in the communications collected. a first subset of the attack paths based on a first portion of the metric indicating a real-time security vulnerability are identified. finally, the first subset of the attack paths is prioritized over a second subset of the attack paths based at least in part on the first subset having the first portion of the metrics indicating real-time security vulnerabilities.