	US 11,671,460 B2
	Determining reachability of objects deployed in a cloud environment from to external network
Shai Keren, Tel Aviv (IL); and Daniel Hershko Shemesh, Givat-Shmuel (IL)
Assigned to WIZ, INC., New York, NY (US)
Filed by Wiz, Inc., Palo Alto, CA (US)
Filed on May 23, 2022, as Appl. No. 17/664,505.
Application 17/664,505 is a continuation of application No. 17/179,135, filed on Feb. 18, 2021, granted, now 11,374,982.
Application 17/179,135 is a continuation in part of application No. 17/109,883, filed on Dec. 2, 2020, granted, now 11,431,786.
Prior Publication US 2022/0286479 A1, Sep. 8, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 15/173 (2006.01); H04L 9/40 (2022.01); G06F 16/901 (2019.01); G06F 16/903 (2019.01)

CPC H04L 63/20 (2013.01) [G06F 16/903 (2019.01); G06F 16/9024 (2019.01); H04L 63/101 (2013.01); H04L 63/1425 (2013.01)]

21 Claims

1. A method determining reachability of objects deployed in a cloud environment to an external network, comprising:

identifying a plurality of network paths in the cloud environment, wherein each network path includes at least two objects deployed in the cloud environment;

statistically analyzing each object in each respective network path to determine reachability properties of the each object;

analyzing the reachability properties determined for each object to determine if and how the respective object is reachable through the respective network path from at least a network external to the cloud environment; and

saving each object together with the respective network path and the reachability properties in a database.