US 12,411,942 B2
Securing function as a service cloud computing environments
Dinesh Subhreveti, San Jose, CA (US); and Ramesh Kumar, Delhi (IN)
Assigned to CrowdStrike, Inc., Sunnyvale, CA (US)
Filed by CrowdStrike, Inc., Sunnyvale, CA (US)
Filed on Oct. 27, 2022, as Appl. No. 17/974,868.
Prior Publication US 2024/0143740 A1, May 2, 2024
Int. Cl. G06F 21/55 (2013.01); G06F 21/56 (2013.01); G06F 21/62 (2013.01)
CPC G06F 21/552 (2013.01) [G06F 21/55 (2013.01); G06F 21/566 (2013.01); G06F 21/6209 (2013.01); G06F 2221/034 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method of monitoring events in a Function-as-a-Service (FaaS) cloud service system comprising a processing device, the method comprising:
receiving a request to invoke a user-function associated with a computing language;
executing the user-function within an operating system that executes on the processing device of the FaaS cloud service system;
monitoring, by the processing device, a real-time behavior of the user-function using a security sensor that executes within the operating system, wherein the security sensor is without access rights to a kernel of the operating system;
acquiring behavioral data indicative of the real-time behavior of the user-function;
executing, within the operating system, a runtime software comprising an internal extension and an external extension; and
launching, by the runtime software and to cause each to execute within the operating system, a sensor initializer that is registered as the internal extension and the security sensor that is registered as the external extension.