公开(公告)号：US20250023905A1

公开(公告)日：2025-01-16

申请号：US18371469

申请日：2023-09-22

Applicant: VMWARE, INC.

Inventor： SIDDHARTH BURLE ,  AMIT MEENA ,  GEETA GOKHALE

IPC: H04L9/40

Abstract: Techniques associated with adaptive infrastructure security are disclosed. Information regarding a plurality of threat events from one or more source systems is received. For each of the plurality of threat events, a probability of a target system being exploited can be computed. A threat event can be selected at a first time from the plurality of threat events associated with a first probability that meets a threshold. Remedial actions performed to address the threat event at a respective source system can be received, and a guardrail to apply to the target system can be determined based on the remedial actions. The guardrail can then be applied to the target system.

公开(公告)号：US20250028549A1

公开(公告)日：2025-01-23

申请号：US18376452

申请日：2023-10-04

Applicant: VMWARE, INC.

Inventor： SIDDHARTH BURLE ,  AMIT MEENA ,  SANJAY KUMAR ,  SAIFUDDIN RANGWALA

IPC: G06F9/455 ,  G06F9/445

Abstract: Techniques associated with security orchestration for on-premises infrastructure are disclosed. A policy definition associated with on-premises infrastructure that defines a desired state can be received. From the policy definition, a target of the on-premises infrastructure can be identified. A management service associated with the target can be determined, and a plugin for the management service can be identified. The policy definition can be communicated to the management service through the plugin, and the management service sets the state of the target to the desired state. The state of the target can be monitored. If the state differs from the desired state, a remediation workflow is initiated to set the state to the desired state specified by the policy definition.