公开(公告)号：US20240187474A1

公开(公告)日：2024-06-06

申请号：US18440682

申请日：2024-02-13

申请人： Sonrai Security Inc.

发明人： Ben Wuest ,  William Bird ,  Brad Peters ,  Albert Lockett

IPC分类号： H04L67/025 ,  G06F11/34 ,  G06F16/2457 ,  G06N5/00 ,  G06N5/025 ,  H04L67/1097 ,  H04L67/306 ,  H04L67/50 ,  H04L67/51 ,  H04L67/75

CPC分类号： H04L67/025 ,  G06F11/34 ,  G06F16/2457 ,  G06N5/00 ,  G06N5/025 ,  H04L67/1097 ,  H04L67/306 ,  H04L67/51 ,  H04L67/535 ,  H04L67/75

摘要： A network-accessible service provides an enterprise with a view of identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. The service enables an enterprise to model all activity and relationships across cloud vendors, accounts and third party stores. Using a domain-specific query language, the system enables rapid interrogation of a complete and centralized data model of all data and identity relationships. User reports may be generated showing all privileges and data to which a particular identity has access. Using the display views, a user can pivot all functions across teams, applications and data, geography, provider and compliance mandates, and the like.

公开(公告)号：US20230179649A1

公开(公告)日：2023-06-08

申请号：US18103821

申请日：2023-01-31

申请人： Sonrai Security Inc.

发明人： Ben Wuest ,  William Bird ,  Brad Peters ,  Albert Lockett

IPC分类号： H04L67/025 ,  H04L67/1097 ,  G06F16/2457 ,  H04L67/306 ,  G06F11/34 ,  G06N5/00 ,  G06N5/025 ,  H04L67/51 ,  H04L67/75 ,  H04L67/50

CPC分类号： H04L67/025 ,  H04L67/1097 ,  G06F16/2457 ,  H04L67/306 ,  G06F11/34 ,  G06N5/00 ,  G06N5/025 ,  H04L67/51 ,  H04L67/75 ,  H04L67/535

摘要： A network-accessible service provides an enterprise with a view of all identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. The service enables an enterprise to model all activity and relationships across cloud vendors, accounts and third party stores. Display views of this information preferably can pivot on cloud provider, country, cloud accounts, application or data store. Using a domain-specific query language, the system enables rapid interrogation of a complete and centralized data model of all data and identity relationships. User reports may be generated showing all privileges and data to which a particular identity has access. Similarly, data reports shown all entities having access to an asset can be generated. Using the display views, a user can pivot all functions across teams, applications and data, geography, provider and compliance mandates, and the like.

公开(公告)号：US20240340288A1

公开(公告)日：2024-10-10

申请号：US18602235

申请日：2024-03-12

申请人： Sonrai Security Inc.

发明人： Veranika Hadun ,  William Bird ,  Ben Wuest

IPC分类号： H04L9/40

CPC分类号： H04L63/105 ,  H04L63/102 ,  H04L63/20

摘要： A network-accessible service provides an enterprise with a view of identity and data activity in the enterprise's cloud accounts. The service enables cloud provider management models to be normalized with centralized analytics and views across cloud accounts. Based on identity and audit data received from a set of cloud deployments, and according to a cloud intelligence model, a set of permissions associated with each of a set of identities are determined. For each identity, and based on a set of identity chains extracted from the cloud intelligence model, a set of identity account action paths (IAAPs) are then determined. An IAAP defines how the identity obtains an ability to perform a given action in a given account. Using the identity account action paths together with context information, one or more roles, groups and accounts in the enterprise that are propagating permissions within the public cloud environment are then identified.

公开(公告)号：US11930017B1

公开(公告)日：2024-03-12

申请号：US18132130

申请日：2023-04-07

申请人： Sonrai Security Inc.

发明人： Veranika Hadun ,  William Bird ,  Ben Wuest

IPC分类号： H04L9/40

CPC分类号： H04L63/105 ,  H04L63/102 ,  H04L63/20

摘要： A network-accessible service provides an enterprise with a view of identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. Based on identity and audit data received from a set of cloud deployments, and according to a cloud intelligence model, a set of permissions associated with each of a set of identities are determined. For each identity, and based on a set of identity chains extracted from the cloud intelligence model, a set of identity account action paths (IAAPs) are then determined. An IAAP defines how the identity obtains an ability to perform a given action in a given account. Using the identity account action paths together with context information, one or more roles, groups and accounts in the enterprise that are propagating permissions within the public cloud environment are then identified.

公开(公告)号：US11902354B2

公开(公告)日：2024-02-13

申请号：US18103821

申请日：2023-01-31

申请人： Sonrai Security Inc.

发明人： Ben Wuest ,  William Bird ,  Brad Peters ,  Albert Lockett

IPC分类号： H04L67/50 ,  H04L67/306 ,  G06N5/025 ,  H04L67/025 ,  H04L67/1097 ,  G06F16/2457 ,  G06F11/34 ,  G06N5/00 ,  H04L67/51 ,  H04L67/75

CPC分类号： H04L67/025 ,  G06F11/34 ,  G06F16/2457 ,  G06N5/00 ,  G06N5/025 ,  H04L67/1097 ,  H04L67/306 ,  H04L67/51 ,  H04L67/535 ,  H04L67/75

摘要： A network-accessible service provides an enterprise with a view of all identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. The service enables an enterprise to model all activity and relationships across cloud vendors, accounts and third party stores. Display views of this information preferably can pivot on cloud provider, country, cloud accounts, application or data store. Using a domain-specific query language, the system enables rapid interrogation of a complete and centralized data model of all data and identity relationships. User reports may be generated showing all privileges and data to which a particular identity has access. Similarly, data reports shown all entities having access to an asset can be generated. Using the display views, a user can pivot all functions across teams, applications and data, geography, provider and compliance mandates, and the like.

公开(公告)号：US11570231B2

公开(公告)日：2023-01-31

申请号：US16939890

申请日：2020-07-27

申请人： Sonrai Security Inc.

发明人： Ben Wuest ,  William Bird ,  Brad Peters ,  Albert Lockett

IPC分类号： H04L67/306 ,  H04L67/50 ,  G06N5/00 ,  H04L67/025 ,  H04L67/1097 ,  G06F16/2457 ,  G06F11/34 ,  G06N5/02 ,  H04L67/51 ,  H04L67/75

摘要： A network-accessible service provides an enterprise with a view of all identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. The service enables an enterprise to model all activity and relationships across cloud vendors, accounts and third party stores. Display views of this information preferably can pivot on cloud provider, country, cloud accounts, application or data store. Using a domain-specific query language, the system enables rapid interrogation of a complete and centralized data model of all data and identity relationships. User reports may be generated showing all privileges and data to which a particular identity has access. Similarly, data reports shown all entities having access to an asset can be generated. Using the display views, a user can pivot all functions across teams, applications and data, geography, provider and compliance mandates, and the like.

公开(公告)号：US10728307B2

公开(公告)日：2020-07-28

申请号：US16505038

申请日：2019-07-08

申请人： Sonrai Security Inc.

发明人： Ben Wuest ,  William Bird ,  Brad Peters ,  Albert Lockett

IPC分类号： H04L29/08 ,  G06F16/2457 ,  G06F11/34

摘要： A network-accessible service provides an enterprise with a view of all identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. The service enables an enterprise to model all activity and relationships across cloud vendors, accounts and third party stores. Display views of this information preferably can pivot on cloud provider, country, cloud accounts, application or data store. Using a domain-specific query language, the system enables rapid interrogation of a complete and centralized data model of all data and identity relationships. User reports may be generated showing all privileges and data to which a particular identity has access. Similarly, data reports shown all entities having access to an asset can be generated. Using the display views, a user can pivot all functions across teams, applications and data, geography, provider and compliance mandates, and the like.

公开(公告)号：US20200112602A1

公开(公告)日：2020-04-09

申请号：US16505038

申请日：2019-07-08

申请人： Sonrai Security Inc.

发明人： Ben Wuest ,  William Bird ,  Brad Peters ,  Albert Lockett

IPC分类号： H04L29/08 ,  G06F16/2457

摘要： A network-accessible service provides an enterprise with a view of all identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. The service enables an enterprise to model all activity and relationships across cloud vendors, accounts and third party stores. Display views of this information preferably can pivot on cloud provider, country, cloud accounts, application or data store. Using a domain-specific query language, the system enables rapid interrogation of a complete and centralized data model of all data and identity relationships. User reports may be generated showing all privileges and data to which a particular identity has access. Similarly, data reports shown all entities having access to an asset can be generated. Using the display views, a user can pivot all functions across teams, applications and data, geography, provider and compliance mandates, and the like.