US 12,445,463 B2
Monitoring and remediation of security drift events in a public cloud network
Neha Kerkar, Bellevue, WA (US); Prabhat Singh, San Jose, CA (US); Amit Chakrabarty, San Francisco, CA (US); and Aditya Suresh Kumar, San Francisco, CA (US)
Assigned to Salesforce, Inc., San Francisco, CA (US)
Filed by Salesforce, Inc., San Francisco, CA (US)
Filed on Jan. 31, 2023, as Appl. No. 18/103,884.
Prior Publication US 2024/0259396 A1, Aug. 1, 2024
Int. Cl. H04L 29/06 (2006.01); H04L 9/40 (2022.01)
CPC H04L 63/1416 (2013.01) [H04L 63/20 (2013.01)] 16 Claims
OG exemplary drawing
 
1. A computer implemented method for monitoring and remediating security drift in a public cloud network, the method comprising:
providing a cloud server application comprising a plurality of cloud client accounts;
deploying the cloud client accounts in a plurality of client account clusters, wherein a client account cluster comprises a corresponding master account comprising a drift detection component;
detecting by a first drift detection a security drift event comprising an unintended change to existing security controls;
receiving, by a global account drift reporting component, notification of the security drift event and the unintended change to the existing security controls;
identifying an unauthorized deployment responsible for the security drift event; and
responsive to the security drift event:
reverting the unauthorized deployment; and
notifying an administrator associated with the first master account of the security drift event, the reverting, or a combination thereof.