公开(公告)号：US10754506B1

公开(公告)日：2020-08-25

申请号：US16594434

申请日：2019-10-07

Applicant: CyberArk Software Ltd.

Inventor： Noa Moyal ,  Rotem Elias ,  Guy Ben Arie ,  Tal Kandel ,  Gil Makmel

IPC: G06F3/0482 ,  G06F3/0484 ,  H04L12/24

Abstract: Techniques include analyzing risk data for a plurality of network-based identities and generating interactive graphical user interfaces to allow for visualization of the risk data. Operations may include identifying a plurality of network-based identities that have been deployed in a network environment; identifying a scope of permissions associated with the plurality of network-based identities; determining a scope of activity of at least one of: use of the permissions, non-use of the permissions, or activity associated with the permissions for the plurality of network-based identities; developing risk statuses for the plurality of network-based identities; and generating a graphical user interface representing the risk statuses, the graphical user interface comprising a first graphical element having a size and a color, the size and the color being determined based on the risk statuses associated with a first platform within the network environment.

公开(公告)号：US12028366B2

公开(公告)日：2024-07-02

申请号：US17199069

申请日：2021-03-11

Applicant: CyberArk Software Ltd.

Inventor： Niv Rabin ,  Michael Balber ,  Noa Moyal ,  Asaf Hecht ,  Gal Naor

IPC: H04L9/40

CPC classification number: H04L63/1433 ,  H04L63/105 ,  H04L63/1416 ,  H04L63/20

Abstract: Disclosed embodiments relate to systems and methods for dynamically performing entity-specific security assessments for entities of virtualized network environments. Techniques include identifying an entity associated with a virtualized network environment, identifying a plurality of security factors, determining entity-specific weights to the plurality of security factors, and generating a composite exposure assessment for the entity. Further techniques include selecting at least two security factors of the plurality of security factors, identifying the weights corresponding to the selected security factors, and calculating the composite exposure assessment using the selected security factors and corresponding weights, analyzing the composite exposure assessment, and generating at least one of: a security recommendation based on the analysis to alter a scope of privileges of the entity, a notification providing an indication of the composite exposure assessment, or a visual representation of the composite exposure assessment of the entity.

公开(公告)号：US20210203687A1

公开(公告)日：2021-07-01

申请号：US17199069

申请日：2021-03-11

Applicant: CyberArk Software Ltd.

Inventor： Niv Rabin ,  Michael Balber ,  Noa Moyal ,  Asaf Hecht ,  Gal Naor

IPC: H04L29/06

Abstract: Disclosed embodiments relate to systems and methods for dynamically performing entity-specific security assessments for entities of virtualized network environments. Techniques include identifying an entity associated with a virtualized network environment, identifying a plurality of security factors, determining entity-specific weights to the plurality of security factors, and generating a composite exposure assessment for the entity. Further techniques include selecting at least two security factors of the plurality of security factors, identifying the weights corresponding to the selected security factors, and calculating the composite exposure assessment using the selected security factors and corresponding weights, analyzing the composite exposure assessment, and generating at least one of: a security recommendation based on the analysis to alter a scope of privileges of the entity, a notification providing an indication of the composite exposure assessment, or a visual representation of the composite exposure assessment of the entity.