公开(公告)号：US11080077B2

公开(公告)日：2021-08-03

申请号：US16170225

申请日：2018-10-25

申请人： EMC IP Holding Company LLC

发明人： Amihai Savir ,  Oron Golan ,  Aviram Fireberger ,  Or Herman Saffar ,  Roie Ben Eliyahu

IPC分类号： G06F9/455 ,  G06F9/48 ,  H04L9/14 ,  H04L29/06 ,  G06F21/53 ,  G06F21/60 ,  G06F21/57 ,  H04L29/12

摘要： Life cycle management techniques are provided for cloud-based application executors with key-based access to other devices. An exemplary method comprises determining that a retention time for a first cloud-based application executor (e.g., a virtual machine or a container) has elapsed, wherein the first cloud-based application executor has key-based access to at least one other device using a first key; in response to the determining, performing the following steps: creating a second cloud-based application executor; and determining a second key for the second cloud-based application executor that is different than the first key, wherein the second cloud-based application executor uses the first key to add the second key to one or more trusted keys of the at least one other device and deactivates the first key from the one or more trusted keys.

公开(公告)号：US10936717B1

公开(公告)日：2021-03-02

申请号：US15883707

申请日：2018-01-30

申请人： EMC IP Holding Company LLC

发明人： Or Herman Saffar ,  Amihai Savir ,  Oron Golan ,  Roie Ben Eliyahu

IPC分类号： H04L29/06 ,  G06F21/56 ,  G06F9/455 ,  G06N7/00 ,  G06F9/54 ,  G06F9/50 ,  G06N20/00

摘要： A method includes monitoring data of one or more containers running on one or more container host devices, a given one of the containers providing operating-system level virtualization for running at least one application. The method also includes determining a first set of behavior metrics for the given container based on the monitoring data, the first set of behavior metrics characterizing current behavior of the given container. The method further includes generating a model characterizing normal operation of the at least one application running in the given container using a second set of behavior metrics obtained during a learning period, utilizing the model to detect one or more anomalies in the first set of behavior metrics characterizing the current behavior of the given container, generating an alert responsive to detecting one or more anomalies in the first set of behavior metrics, and delivering the alert to a client device.

公开(公告)号：US10824726B1

公开(公告)日：2020-11-03

申请号：US15940228

申请日：2018-03-29

申请人： EMC IP Holding Company LLC

发明人： Or Herman Saffar ,  Roie Ben Eliyahu ,  Oron Golan ,  Amihai Savir

IPC分类号： G06F21/00 ,  G06F21/56 ,  G06F11/30 ,  G06F11/32 ,  G06F11/34

摘要： Methods, apparatus and computer program products are provided for detection of anomalies in containers using corresponding container profiles. An exemplary method comprises: obtaining at least one container and a corresponding container profile from a container registry, wherein the container profile characterizes an expected normal operation of an application executing in the container; comparing a behavior of the application executing in the container to the expected normal operation in the corresponding container profile to determine if the container exhibits anomalous behavior; and providing a notification of the anomalous behavior when the container exhibits the anomalous behavior. The container profile is obtained, for example, by monitoring a behavior of (i) a plurality of versions of the at least one container, and/or (ii) the at least one application executing in the at least one container on a plurality of different container host devices.