System and method for aggregating and securing managed detection and response connection interfaces between multiple networked sources
Randy Clayton, Frederick, MD (US); Jason Crabtree, Vienna, VA (US); Angadbir Salaria, Herndon, VA (US); Andrew Sellers, Monument, CO (US); and Marian Trnkus, Chevy Chase, MD (US)
Assigned to QOMPLX LLC, Reston, VA (US)
Filed by QOMPLX LLC, Reston, VA (US)
Filed on Jul. 30, 2021, as Appl. No. 17/389,704.
Application 17/389,704 is a continuation in part of application No. 17/074,882, filed on Oct. 20, 2020, granted, now 11,831,682.
Application 17/074,882 is a continuation in part of application No. 17/035,029, filed on Sep. 28, 2020, granted, now 11,546,380.
Application 17/035,029 is a continuation in part of application No. 17/008,276, filed on Aug. 31, 2020, granted, now 11,323,484.
Application 17/008,276 is a continuation in part of application No. 17/000,504, filed on Aug. 24, 2020, granted, now 11,477,245.
Application 17/000,504 is a continuation in part of application No. 16/855,724, filed on Apr. 22, 2020, granted, now 11,218,510.
Application 16/855,724 is a continuation in part of application No. 16/836,717, filed on Mar. 31, 2020, granted, now 10,917,428, issued on Feb. 9, 2021.
Application 16/855,724 is a continuation in part of application No. 16/777,270, filed on Jan. 30, 2020, granted, now 11,025,674, issued on Jun. 1, 2021.
Application 16/836,717 is a continuation in part of application No. 16/720,383, filed on Dec. 19, 2019, granted, now 10,944,795, issued on Mar. 9, 2021.
Application 17/000,504 is a continuation in part of application No. 16/412,340, filed on May 14, 2019, granted, now 11,539,663.
Application 16/412,340 is a continuation in part of application No. 16/267,893, filed on Feb. 5, 2019, abandoned.
Application 16/267,893 is a continuation in part of application No. 16/248,133, filed on Jan. 15, 2019, abandoned.
Application 16/836,717 is a continuation in part of application No. 15/887,496, filed on Feb. 2, 2018, granted, now 10,783,241, issued on Sep. 22, 2020.
Application 16/248,133 is a continuation in part of application No. 15/849,901, filed on Dec. 21, 2017, granted, now 11,023,284.
Application 15/849,901 is a continuation in part of application No. 15/835,436, filed on Dec. 7, 2017, granted, now 10,572,828, issued on Feb. 25, 2020.
Application 15/849,901 is a continuation in part of application No. 15/835,312, filed on Dec. 7, 2017, granted, now 11,055,451, issued on Jul. 6, 2021.
Application 16/720,383 is a continuation of application No. 15/823,363, filed on Nov. 27, 2017, granted, now 10,560,483, issued on Feb. 11, 2020.
Application 15/887,496 is a continuation in part of application No. 15/823,285, filed on Nov. 27, 2017, granted, now 10,740,096, issued on Aug. 11, 2020.
Application 15/887,496 is a continuation in part of application No. 15/818,733, filed on Nov. 20, 2017, granted, now 10,673,887, issued on Jun. 2, 2020.
Application 16/248,133 is a continuation in part of application No. 15/813,097, filed on Nov. 14, 2017, abandoned.
Application 16/248,133 is a continuation in part of application No. 15/806,697, filed on Nov. 8, 2017, abandoned.
Application 15/835,436 is a continuation in part of application No. 15/790,457, filed on Oct. 23, 2017, granted, now 10,884,999, issued on Jan. 5, 2021.
Application 15/790,457 is a continuation in part of application No. 15/790,327, filed on Oct. 23, 2017, granted, now 10,860,951, issued on Dec. 8, 2020.
Application 15/823,285 is a continuation in part of application No. 15/788,718, filed on Oct. 19, 2017, granted, now 10,861,014, issued on Dec. 8, 2020.
Application 15/788,718 is a continuation in part of application No. 15/788,002, filed on Oct. 19, 2017, abandoned.
Application 15/788,002 is a continuation in part of application No. 15/787,601, filed on Oct. 18, 2017, granted, now 10,860,660, issued on Dec. 8, 2020.
Application 15/818,733 is a continuation in part of application No. 15/725,274, filed on Oct. 4, 2017, granted, now 10,609,079, issued on Mar. 31, 2020.
Application 15/823,363 is a continuation in part of application No. 15/725,274, filed on Oct. 4, 2017, granted, now 10,609,079, issued on Mar. 31, 2020.
Application 16/248,133 is a continuation in part of application No. 15/673,368, filed on Aug. 9, 2017, abandoned.
Application 15/725,274 is a continuation in part of application No. 15/655,113, filed on Jul. 20, 2017, granted, now 10,735,456, issued on Aug. 4, 2020.
Application 15/813,097 is a continuation in part of application No. 15/616,427, filed on Jun. 7, 2017, abandoned.
Application 15/655,113 is a continuation in part of application No. 15/616,427, filed on Jun. 7, 2017, abandoned.
Application 15/790,327 is a continuation in part of application No. 15/616,427, filed on Jun. 7, 2017, abandoned.
Application 15/787,601 is a continuation in part of application No. 15/616,427, filed on Jun. 7, 2017, abandoned.
Application 15/673,368 is a continuation in part of application No. 15/376,657, filed on Dec. 13, 2016, granted, now 10,402,906, issued on Sep. 3, 2019.
Application 15/806,697 is a continuation in part of application No. 15/376,657, filed on Dec. 13, 2016, granted, now 10,402,906, issued on Sep. 3, 2019.
Application 15/806,697 is a continuation in part of application No. 15/343,209, filed on Nov. 4, 2016, granted, now 11,087,403.
Application 15/376,657 is a continuation in part of application No. 15/237,625, filed on Aug. 15, 2016, granted, now 10,248,910, issued on Apr. 2, 2019.
Application 15/655,113 is a continuation in part of application No. 15/237,625, filed on Aug. 15, 2016, granted, now 10,248,910, issued on Apr. 2, 2019.
Application 15/343,209 is a continuation in part of application No. 15/237,625, filed on Aug. 15, 2016, granted, now 10,248,910, issued on Apr. 2, 2019.
Application 15/343,209 is a continuation in part of application No. 15/229,476, filed on Aug. 5, 2016, granted, now 10,454,791, issued on Oct. 22, 2019.
Application 15/237,625 is a continuation in part of application No. 15/206,195, filed on Jul. 8, 2016, abandoned.
Application 15/229,476 is a continuation in part of application No. 15/206,195, filed on Jul. 8, 2016, abandoned.
Application 15/206,195 is a continuation in part of application No. 15/186,453, filed on Jun. 18, 2016, abandoned.
Application 15/835,312 is a continuation in part of application No. 15/186,453, filed on Jun. 18, 2016, abandoned.
Application 15/186,453 is a continuation in part of application No. 15/166,158, filed on May 26, 2016, abandoned.
Application 15/790,327 is a continuation in part of application No. 15/141,752, filed on Apr. 28, 2016, granted, now 10,860,962, issued on Dec. 8, 2020.
Application 15/166,158 is a continuation in part of application No. 15/141,752, filed on Apr. 28, 2016, granted, now 10,860,962, issued on Dec. 8, 2020.
Application 15/141,752 is a continuation in part of application No. 15/091,563, filed on Apr. 5, 2016, granted, now 10,204,147, issued on Feb. 12, 2019.
Application 15/141,752 is a continuation in part of application No. 14/986,536, filed on Dec. 31, 2015, granted, now 10,210,255, issued on Feb. 19, 2019.
Application 15/616,427 is a continuation in part of application No. 14/925,974, filed on Oct. 28, 2015, abandoned.
Application 15/141,752 is a continuation in part of application No. 14/925,974, filed on Oct. 28, 2015, abandoned.
Claims priority of provisional application 62/568,298, filed on Oct. 4, 2017.
Claims priority of provisional application 62/568,312, filed on Oct. 4, 2017.
Claims priority of provisional application 62/568,305, filed on Oct. 4, 2017.
Claims priority of provisional application 62/568,291, filed on Oct. 4, 2017.
Claims priority of provisional application 62/568,307, filed on Oct. 4, 2017.
Prior Publication US 2022/0060510 A1, Feb. 24, 2022
1. A system for facilitating data isolation across multiple entities and security products comprising:
a computing device comprising a plurality of programming instructions cause the computing device to:
receive a service configuration for a service from a plurality of different managed detection and response client services, wherein the service configuration comprises authentication information, access information, and processing information for the service, wherein the processing information specifies data processing and storage requirements for events associated with the service, wherein the processing information includes regulatory compliance requirements specifying isolation requirements for computing and networking events;
retrieve data from the service using at least the authentication information and the access information in the service configuration, wherein the retrieved data comprises computing and networking events;
tag the retrieved data by embedding a tag into each computing and networking event of the retrieved data according to the respective processing information, wherein the embedded tag is used to enforce the data processing and storage requirements specified by the processing information during subsequent processing, wherein the embedded tag comprises an indication of the regulatory compliance requirements for the computing and networking event;
organize the tagged data into a single data stream;
encrypt the single data stream; and
send the encrypted data stream comprising the tagged data over a network to a secure processing facility;
a secure processing facility configured to receive the encrypted data stream and use the embedded tags to process the computing and networking events according to their respective requirements by isolating access to the computing and networking events based on the regulatory compliance requirements indicated in the embedded tags.
