	US 12,010,150 B2
	Multi-perspective security context per actor
Jeffrey James Fitz-Gerald, Jr., Campbell, CA (US); and Ashwath Sreenivasa Murthy, San Francisco, CA (US)
Assigned to Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed by Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed on Mar. 24, 2023, as Appl. No. 18/189,505.
Application 18/189,505 is a continuation of application No. 17/650,260, filed on Feb. 8, 2022, granted, now 11,627,164.
Application 17/650,260 is a continuation of application No. 16/522,632, filed on Jul. 25, 2019, granted, now 11,271,970, issued on Mar. 8, 2022.
Prior Publication US 2023/0231885 A1, Jul. 20, 2023
Int. Cl. H04L 9/40 (2022.01)

CPC H04L 63/20 (2013.01) [H04L 63/02 (2013.01)]

20 Claims

1. A method comprising:

generating one or more descriptors from metadata of a first event detected for an actor in a network based on extracting the one or more descriptors from the metadata;

attaching the one or more descriptors to the actor based on creating or updating a security context of the actor with the one or more descriptors,

wherein creating the security context comprises creating a set of descriptors maintained for the actor that comprises the one or more descriptors,

wherein updating the security context comprises updating a set of descriptors maintained for the actor with the one or more descriptors; and

enforcing a first policy based on determining that at least a subset of the security context of the actor satisfies the first policy.