US Patent:
20230013808, Jan 19, 2023
Inventors:
- Palo Alto CA, US
Nafisa Mandliwala - Sunnyvale CA, US
Rajitha Arcot - Fremont CA, US
Subrahmanyam Manuguri - San Jose CA, US
International Classification:
H04L 29/06
G06F 9/54
Abstract:
Some embodiments of the invention provide a method of implementing an intent-based intrusion detection and prevention system in a datacenter that includes at least one host computer executing multiple machines. The method receives an intent-based application programming interface (API) command that defines intent for a set of one or more context-based intrusion detection rules for detecting and preventing intrusions on the at least one host computer. The method uses multiple contextual attributes to convert the defined intent into a set of one or more intrusion detection scripts for enforcement on the at least one host computer. The method provides the set of one or more intrusion detection scripts to an intrusion detection system operating on the at least one host computer for enforcement.