| CPC H04L 41/0681 (2013.01) [H04L 41/0663 (2013.01); H04L 41/069 (2013.01); H04L 41/5032 (2013.01); H04L 41/5048 (2013.01)] | 20 Claims |
|
1. An apparatus comprising:
at least one processing device comprising a processor coupled to a memory;
the at least one processing device being configured:
to generate an annotation for a pattern-matching rule in a rule-based analysis service in an information technology infrastructure environment, the pattern-matching rule specifying one or more asset-generic patterns, the generated annotation comprising instructions for writing one or more additional pattern-matching rules in the rule-based analysis service in response to detecting at least one of the one or more asset-generic patterns on specific ones of a plurality of information technology assets in the information technology infrastructure environment;
to monitor information associated with operation of the plurality of information technology assets in the information technology infrastructure environment;
to detect, based at least in part on the monitored information, at least one of the one or more asset-generic patterns of the pattern-matching rule on a given one of the plurality of information technology assets;
to generate a given additional pattern-matching rule for the rule-based analysis service, the given additional pattern-matching rule specifying (i) one or more asset-specific patterns and (ii) one or more actions to take in response to detecting at least one of the one or more asset-specific patterns; and
to apply the one or more actions for the given information technology asset.
|