CPC G06F 21/577 (2013.01) [G06F 2221/034 (2013.01)] | 18 Claims |
1. A method for generating security findings acquisition (SFA) records, the method comprising:
obtaining, by a security finding acquisition system (SFAS) orchestrator, an entity context request associated with an entity;
in response to obtaining the entity context request:
making a first determination, by the SFAS orchestrator, that the entity is not associated with an entity directed acyclic graph (DAG);
in response to the first determination:
obtaining, by the SFAS orchestrator, the entity DAG associated with the entity from a lineage builder;
making a second determination, by the SFAS orchestrator, that the entity is not associated with SFA anchors;
in response to the second determination:
obtaining, by the SFAS orchestrator, the SFA anchors associated with the entity from a resolver, wherein obtaining the SFA anchors comprises:
sending, by the SFAS orchestrator, an SFA anchor request and the entity DAG to the resolver;
in response to obtaining the SFA anchor request and the entity DAG:
obtaining, by the resolver, security modeling assessment system connection data from a registrar;
generating, by the resolver, the SFA anchors using the security modeling assessment system connection data and the entity DAG; and
providing, by the resolver, the SFA anchors to the SFAS orchestrator;
obtaining, by the SFAS orchestrator, the SFA records associated with the entity from an extractor using the SFA anchors; and
performing, by the SFAS orchestrator, security actions using the SFA records.
|