CPC H04L 63/14 (2013.01) | 19 Claims |
1. A method for detecting potential lateral movement using cloud keys in a cloud computing environment, comprising:
determining a first node in a security graph is a compromised node, wherein the security graph represents cloud entities of the cloud computing environment, wherein the first node represents a first cloud entity of the cloud computing environment;
detecting a cloud key node connected to the first node, wherein the cloud key node represents a cloud key of the cloud computing environment; and
generating a potential lateral movement path, including the first node, and a second node, wherein the second node is connected to the cloud key node, the second node representing a second cloud entity of the cloud computing environment.
|