| CPC H04L 63/1433 (2013.01) [H04L 63/145 (2013.01)] | 19 Claims |
|
1. A method for evaluating threats in a cloud environment having a plurality of assets, the method comprising:
for each pair of one or more pairs of the assets, obtaining one or more identified paths from a first asset of the pair to a second asset of the pair, each path of the one or more identified paths defined by a sequence of assets that includes the first and second assets; and
for each path of the one or more identified paths, determining a likelihood that an attacker that is at the first asset will successfully reach the second asset via the path, wherein for each path of the one or more identified paths, determining the likelihood includes:
for each set of adjacent assets in the sequence of assets, determining a probability that the attacker will successfully advance from a current asset of the set to a next asset of the set, and
multiplying together the determined probabilities to determine an overall probability that the attacker will successfully advance from the first asset to the second asset.
|