	US 11,863,581 B1
	Subscription-based malware detection
Mumtaz Siddiqui, Fremont, CA (US); and Manju Radhakrishnan, San Jose, CA (US)
Assigned to Musarubra US LLC, Plano, TX (US)
Filed by FireEye Security Holdings US LLC, Milpitas, CA (US)
Filed on Jul. 25, 2022, as Appl. No. 17/872,854.
Application 17/872,854 is a continuation of application No. 17/035,538, filed on Sep. 28, 2020, granted, now 11,399,040, issued on Jul. 26, 2022.
Application 17/035,538 is a continuation of application No. 15/940,410, filed on Mar. 29, 2018, granted, now 10,791,138, issued on Sep. 29, 2020.
Claims priority of provisional application 62/479,208, filed on Mar. 30, 2017.
Claims priority of provisional application 62/523,121, filed on Jun. 21, 2017.
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); G06F 21/10 (2013.01); G06F 21/62 (2013.01); H04L 41/5003 (2022.01); H04W 12/63 (2021.01); H04L 67/52 (2022.01)

CPC H04L 63/1433 (2013.01) [G06F 21/105 (2013.01); G06F 21/629 (2013.01); H04L 41/5003 (2013.01); H04L 63/1408 (2013.01); H04L 67/52 (2022.05); H04W 12/63 (2021.01)]

20 Claims

1. A computerized method comprising:

receiving service policy level information by a cloud broker, the service policy level information includes an identifier of a sensor operating as a source of one or more objects for analysis and an identifier assigned to a customer associated with the sensor; and

selecting a cluster of a plurality of clusters by the cloud broker to determine whether one or more objects are associated with an attempted cyber-attack, the cloud broker is configured to (i) analyze the sensor identifier to select the cluster based on at least a geographical location of the sensor determined by the sensor identifier and (ii) establish a communication session between the sensor and the cluster via the cloud broker until termination of the communication session.