Search/Browse Tech
Cloud forensics and incident response platform
United States Patent
11,113,388 | |
September 7, 2021 | |
View the Complete Patent at the US Patent & Trademark Office | |
CHIRP: Cloud Hypervisor Forensics and Incident Response Platform | |
A system, method, and device for cloud forensics and incident response is provided. In an embodiment, a computer-implemented method for performing cloud forensics and incident response includes intercepting, by a cloud incident response module (CIRM), communication between a virtual machine (VM) and a hypervisor. The method also includes extracting, by the CIRM, data from the communication between the VM and the hypervisor according to a forensic policy. Intercepting and extracting the data are transparent to the VM and to the hypervisor. Intercepting and extracting the data are independent of the VM and the hypervisor. | |
16/ 051,005 | |
July 31, 2018 | |
1/1 | |
G06F 21/53 (20130101)G06F 9/54 (20060101)G06F 9/455 (20180101) | |
STATEMENT OF GOVERNMENT INTEREST This invention was made with United States Government support under Contract No. DE-NA0003525 between National Technology and Engineering Solutions of Sandia, LLC and the United States Department of Energy. The United States Government has certain rights in this invention. |