	US 12,277,210 B2
	Runtime security analytics for serverless workloads
Akram Sheriff, Newark, CA (US); and Timothy David Keanini, Austin, TX (US)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Sep. 29, 2023, as Appl. No. 18/375,149.
Application 18/375,149 is a continuation of application No. 17/077,592, filed on Oct. 22, 2020, granted, now 11,809,548.
Prior Publication US 2024/0028704 A1, Jan. 25, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/52 (2013.01); G06F 21/56 (2013.01); G06N 20/00 (2019.01)

CPC G06F 21/52 (2013.01) [G06F 21/566 (2013.01); G06N 20/00 (2019.01); G06F 2221/033 (2013.01)]

20 Claims

1. A method comprising:

receiving a serverless function configured to execute in a deployment environment;

executing the serverless function within a serverless environment isolated from the deployment environment;

determining a value of an execution parameter during the execution of the serverless function, using a monitoring component executing within the serverless environment;

determining a threshold for the execution parameter, wherein the threshold is associated with a runtime security threat; and

determining, based at least in part in the value of the execution parameter and the threshold, that the serverless function is associated with the runtime security threat.