	US 12,130,914 B1
	Agent message bus
Robert Bushner, Homeland, CA (US); Alejandro Espinoza, San Marcos, CA (US); Kristen Lamb, Austin, TX (US); Seagen Levites, Oregon City, OR (US); Clark Lindsey, Loudon, TN (US); Jonathan Miller, Poway, CA (US); Peter Morgan, Scottsdale, AZ (US); Michael Mullin, Kanata (CA); Ryan Smith, Austin, TX (US); Vu Ta, Fellbach (DE); Seva Tonkonoh, San Francisco, CA (US); and Timothy West, Austin, TX (US)
Assigned to Halcyon Tech, Inc., Austin, TX (US)
Filed by Halcyon Tech, Inc., Austin, TX (US)
Filed on Jun. 14, 2024, as Appl. No. 18/744,564.
Int. Cl. G06F 21/55 (2013.01); G06F 21/00 (2013.01); G06F 21/56 (2013.01); G06F 21/57 (2013.01)

CPC G06F 21/554 (2013.01) [G06F 21/566 (2013.01); G06F 21/577 (2013.01)]

23 Claims

1. A method comprising:

monitoring applications and processes executing on an endpoint for behavior indicative of malicious activity;

generating a plurality of messages based on the monitoring, the messages being placed in a queue for access by a router;

routing, by the router, a first subset of the messages from the queue as defined by a routing policy to be transmitted to a cloud-connected monitoring platform;

transmitting, by the router, a second subset of messages from the queue as defined by the routing policy to an aggregation, correlation, and detection core (AC+DC);

processing, by the AC+DC, the second subset of messages to result in a plurality of modified messages, the plurality of modified messages being smaller than the second subset of messages; and

causing, by the AC+DC, the modified messages to be placed into the queue for subsequently selective routing by the router according to the routing policy.