Techniques for cloud security monitoring and threat intelligence
Granted: April 16, 2024
Patent Number:
11962614
Systems and methods for cloud security monitoring and threat intelligence in accordance with embodiments of the invention are disclosed. In one embodiment, a process for monitoring and remediation of security threats includes generating a threat model using a first portion of activity data, identifying, based upon the threat model, a threat using a second portion of activity data, selecting a security policy to implement in response to the identified threat, identifying cloud security…
Techniques for automatically configuring minimal cloud service access rights for container applications
Granted: April 16, 2024
Patent Number:
11962599
A computer system may receive one or more requests for access to one or more cloud services and may store the one or more requests in a request log. The computer system may receive one or more access rules applicable to cloud service access rights. The computer system may aggregate the one or more requests of the request log to determine access requirements for a container, the container being configured to store one or more applications. The computer system may generate and store…
Extracting textual information from image documents
Granted: April 16, 2024
Patent Number:
11961317
Aspects of the present disclosure are directed to extracting textual information from image documents. In one embodiment, a system, upon receiving a request to extract textual information from an image document, a digital processing system performs character recognition based on content of the image document using multiple approaches to generate corresponding texts. The texts are then combined to determine a result text representing the textual information contained in the image…
Discourse parsing using semantic and syntactic relations
Granted: April 16, 2024
Patent Number:
11960844
Systems, devices, and methods of the present invention involve discourse trees. In some aspects, a system creates a discourse tree by identifying elementary discourse units in text. The discourse tree includes nodes, each nonterminal node representing a rhetorical relationship between two elementary discourse units and each terminal node associated with an elementary discourse unit. The system identifies, in a reference sentence of the discourse tree, a rhetorical relation of type…
High-performance, block-level fail atomicity on byte-level non-volatile media
Granted: April 16, 2024
Patent Number:
11960742
Techniques are provided for block-level fail atomicity on byte-level non-volatile media. In one technique, an offset table and application data that stores content of a file are stored for a file. The offset table includes multiple entries, each entry being associated with a different offset value and storing a logical block address (LBA) that references a location in the application data. In response to receiving a request, that includes an input buffer and an offset value, to update…
Content display and interaction according to estimates of content usefulness
Granted: April 9, 2024
Patent Number:
11956701
An example system and method for selectively conveying content via User Interface (UI) display screen sections of Business Intelligence (BI) software and for facilitating user interaction therewith, e.g., so as to impart usefulness or preference ratings thereto, which can then affect subsequently displayed content. An example method includes providing one or more UI controls enabling a user to provide an input query and to interact with resulting content (i.e., query results, also called…
Parallel network-based vulnerability scanning
Granted: April 9, 2024
Patent Number:
11956270
A computing device may receive a plurality of scanning requests with at least one scanning request in the plurality identifying a target address of a target network. The computing device may for at least a subset of the plurality of scanning requests: generate a scanner instance and a virtual network interface card (VNIC) in response to the scanning request. The scanner instance and the VNIC communicating with a routing namespace that can communicate with two or more scanner instances…
Software update in a managed server system
Granted: April 9, 2024
Patent Number:
11954483
A method for updating software in one or more servers in a managed system includes bootstrapping of shared secrets to secure communication, using an object store with publicly accessible URLs as a mailbox system between a patch agent locally at the managed system and a patch management server located remotely. The object store provides for indirect and asynchronous communication, allowing the patch management server to manage the updates, whereas the patch agent executes the updates. The…
Routing requests in shared-storage database systems
Granted: April 9, 2024
Patent Number:
11954117
Techniques are described herein for routing queries to particular nodes of a multi-node database system based on the query. A database table is partitioned into a plurality of affinity groups. Each affinity group is assigned a particular node as the master node of the affinity group. A mapping is sent to a query router indicating the master node for each affinity group of the plurality of affinity groups. The query router determines, for a particular query, a target node to which to send…
Methods, systems, and computer readable media for optimized routing of service based interface (SBI) request messages to remote network function (NF) repository functions using indirect communications via service communication proxy (SCP)
Granted: April 2, 2024
Patent Number:
11950178
A method for optimized routing of service based interface (SBI) request messages to remote network function (NF) repository functions (NRFs) using indirect communications via a service communication proxy (SCP) includes, at an SCP including at least one processor, receiving an SBI request message. The method further includes forwarding the SBI request message to a remote NRF. The method further includes determining that the remote NRF is unable to process the SBI request message, and, in…
Visualization tool for building nested queries
Granted: April 2, 2024
Patent Number:
11947527
Techniques for generating an interactive visualization tool for building nested queries are disclosed. The interactive nested query visualization tool allows a user to observe, analyze, and modify query characteristics and attributes of a set of nested queries. A system displays an interactive visual depiction of a set of nested queries. Visual representations of the nested queries are positioned relative to each other based on the relationships between the nested queries. The system…
Machine learning based cryptanalysis
Granted: April 2, 2024
Patent Number:
11949786
Embodiments decrypt or partially decrypt an encoded message or a private key, the encoded message or private key encoded by a public-key cryptography algorithm. Embodiments encode the public-key cryptography algorithm using a language of a program synthesizer and construct a grammar for the program synthesizer. Embodiments train the program synthesizer with training data comprising input-output pairs and execute the trained program synthesizer to generate a mathematical formula.…
Techniques for distributed interface component generation
Granted: April 2, 2024
Patent Number:
11949761
Techniques are disclosed for efficient generation and maintenance of interface components in an infrastructure-as-a-service (IaaS) environment. A system may receive a request to display a dashboard of components. A declarative metadata set of components is generated and a multi-use agent to parse the declarative metadata set. The multi-use agent may be replicated according to the parsed declarative definition in order to create multiple instances of the multi-use agent corresponding to…
Centralized approach for managing cross-service data of cloud resources
Granted: April 2, 2024
Patent Number:
11949735
Techniques for managing network-accessible infrastructure metadata are provided. A method includes receiving a resource request comprising resource metadata corresponding to a network-accessible infrastructure resource, determining whether to commit the resource request based at least in part on a constraint associated with the network-accessible infrastructure resource, and, in accordance with a determination to commit the resource request: generating, by the computer system, a resource…
Systems and methods for multivariate anomaly detection in software monitoring
Granted: April 2, 2024
Patent Number:
11949703
Techniques are disclosed for summarizing, diagnosing, and correcting the cause of anomalous behavior in computing systems. In some embodiments, a system identifies a plurality of time series that track different metrics over time for a set of one or more computing resources. The system detects a first set of anomalies in a first time series that tracks a first metric and assigns a different respective range of time to each anomaly. The system determines whether the respective range of…
Framework for customer control and auditing of operator access to infrastructure in a cloud service
Granted: April 2, 2024
Patent Number:
11949680
Disclosed is an improved approach to implement a mechanism to provide customer control over access to cloud infrastructure by the cloud provider's operator employees. This mechanism allow customer controlled access to any cloud infrastructure that belongs to or is otherwise allocated to the customer.
System and method for ensuring that the results of machine learning models can be audited
Granted: April 2, 2024
Patent Number:
11948051
In one embodiment, a method for auditing the results of a machine learning model includes: retrieving a set of state estimates for original time series data values from a database under audit; reversing the state estimation computation for each of the state estimates to produce reconstituted time series data values for each of the state estimates; retrieving the original time series data values from the database under audit; comparing the original time series data values pairwise with…
Management plane orchestration across service cells
Granted: April 2, 2024
Patent Number:
11948002
Service cells may be utilized to limit the blast radius and reduce the probability of operational incidents (e.g., attacks, load spikes, distributed thrash, and the like). Techniques discussed herein provide any suitable number of service cells, each if which include a management plane and a data plane. A work request that includes an intended state of the service cell can be received and stored. One or more execution tasks can be executed by a management plane of the service cell to…
Zone segment drive management
Granted: April 2, 2024
Patent Number:
11947820
Techniques for management of data storage in distributed storage systems are provided. A method may include receiving, by a computer system, a request to write data to a volume. The method may include identifying, by the computer system, a zone segment mapped to the volume. The zone segment may include a plurality of zones. The method may include identifying, by the computer system, a segment pointer indicating a write location in a zone of the zone segment. The method may include…
Copy avoidance via static analysis for DBMS querying
Granted: April 2, 2024
Patent Number:
11947531
In a computer embodiment, in a polyglot database management system (DBMS) that contains a guest language runtime environment, a database buffer is configured that the guest language runtime environment does not manage. In the polyglot DBMS, logic that is defined in a guest language is invoked to retrieve, into the database buffer, a value stored in a database in the polyglot DBMS. Compiling the logic causes semantic analyzing the logic to detect that usage of the retrieved value cannot…
