| CPC H04L 63/1416 (2013.01) [H04L 63/101 (2013.01)] | 18 Claims |
|
1. A non-transitory computer-readable medium comprising instructions that, when executed, cause one or more processors in a cloud security platform including distributed inspection nodes and a central authority to perform steps of:
collecting entitlement information associated with an identity of a cloud environment by querying cloud-provider Application Programming Interfaces (APIs) and from telemetry generated by the inspection nodes during inline traffic monitoring;
deriving a global power score of the identity, the global power score being based on the identity's entitlements in the cloud environment;
providing the global power score to security administrators of the cloud environment by way of a Graphical User Interface (GUI);
determining an action score for each of the identity's entitlements in the cloud environment;
determining one or more service scores associated with the identity's entitlements in the cloud environment based on the action scores;
determining one ore more admin category power scores based on the one or more service scores; and
determining one or more account power scores based on the one or more admin category power score, wherein the global power score, together with the admin category power scores and account power scores, are utilized within the cloud security platform to dynamically enforce security policies.
|