白丝美女被狂躁免费视频网站,500av导航大全精品,yw.193.cnc爆乳尤物未满,97se亚洲综合色区,аⅴ天堂中文在线网官网

Distributed digital security system

專利號(hào)
US11616790B2
公開日期
2023-03-28
申請(qǐng)人
CrowdStrike, Inc.(US CA Irvine)
發(fā)明人
David F. Diehl; Michael Edward Lusignan; Thomas Johann Essebier
IPC分類
H04L9/40; G06F16/2455; G06Q50/26
技術(shù)領(lǐng)域
event,data,security,engine,bounding,compute,rally,or,can,client
地域: CA CA Irvine

摘要

A distributed security system can include instances of a compute engine that can execute either locally in security agents on client devices or as cloud instances in a security network. Event data can be processed by elements of the distributed security system according to centrally-defined ontological definitions and/or configurations. Bounding managers of local security agents can control how much event data is sent to the security network. A storage engine in the security network can store event data received from client devices, can route event data to other elements of the security network, including cloud instances of the compute engine. An experimentation engine of the security network can also at least temporarily adjust other elements of the distributed security system during experiments or tests.

說明書

As another example, when a new ontological definition 134 for a new context collection interface 138 is defined at the ontology service 110, the compiler 114 can automatically generate configurations 132 for local and cloud instances of the compute engine 102. The configurations 132 can indicate expected data elements according to the new context collection interface 138, such that the compute engine 102 can process any type of event data 122 that is based on any context collection format 136 that includes at least those expected data elements when a corresponding interface fulfillment map 140 exists, even though no new source code has been written for the compute engine 102 that directly indicates how to process each possible type or format of event data 122 that may include those expected data types. Similarly, the bounding service 118 can generate configurations 132 for bounding managers 128 based at least in part on the ontological definition 134 of a new context collection interface 138, such that the bounding manager 128 can also process event data 122 that matches the new context collection interface 138 when a corresponding interface fulfillment map 140 exists. In other examples, when a new ontological definition 134 for a new context collection format 136 is defined at the ontology service 110, new interface fulfillment maps 140 that correspond to the new context collection format 136 and one or more context collection interfaces 138 can be generated and provided to elements of the distributed security system 100. Accordingly, a new context collection interface 138 can be used by both the compute engine 102 and the bounding manager 128 based on a corresponding interface fulfillment map 140, without directly recoding either of the compute engine 102 or the bounding manager 128 or regardless of whether instances of the compute engine 102 and/or the bounding manager 128 execute using different runtimes.

權(quán)利要求

1
微信群二維碼
意見反饋