Abstract: A method for rapid deployment by a service provider of a data lake in association with a cloud computing service. In response to a request to provision the data lake, a new cloud account is created. Within the new cloud account, a service provider access role and associated permissions are created. The new cloud account is then associated, by cross-trust, with an account in the cloud computing service that is one of: a service provider deployment account, and a customer account. A private data cloud is then associated with the service provider deployment account or the customer account, as the case may be. The private data cloud is uniquely associated with the new cloud account and the data lake. A firewall service enabling secure access between the data lake and an external enterprise network is provisioned. The data lake is then provisioned in the private data cloud to complete the rapid deployment.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The platform provides a way for the enterprise to translate its workloads into clusters of compute resources that meet its service level requirements.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The platform provides a way for the enterprise to translate its workloads into clusters of compute resources that meet its service level requirements.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The lifecycle of data analytics from movement to warehousing, however, is provided by the platform.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The lifecycle of data analytics from movement to warehousing, however, is provided by the platform.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The platform provides a way for the enterprise to translate its workloads into clusters of compute resources that meet its service level requirements.

Abstract: A method for rapid deployment by a service provider of a data lake in association with a cloud computing service. In response to a request to provision the data lake, a new cloud account is created. Within the new cloud account, a service provider access role and associated permissions are created. The new cloud account is then associated, by cross-trust, with an account in the cloud computing service that is one of: a service provider deployment account, and a customer account. A private data cloud is then associated with the service provider deployment account or the customer account, as the case may be. The private data cloud is uniquely associated with the new cloud account and the data lake. A firewall service enabling secure access between the data data lake and an external enterprise network is provisioned. The data lake is then provisioned in the private data cloud to complete the rapid deployment.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The platform provides a way for the enterprise to translate its workloads into clusters of compute resources that meet its service level requirements.

Abstract: A services platform acts as an intermediary between an existing enterprise analytic environment, and one or more underlying cloud service providers. The platform provides enterprise “big data-as-a-service,” by which an enterprise can seamlessly and easily provision new capacity for processing its analytic workload, and migrate data sources (e.g., data warehouse marts, enterprise data warehouses, analytic sandboxes, and the like) to the cloud for processing. The platform provides end-to-end enterprise class manageability of enterprise data assets, from data collection, aggregation, movement, staging and processing, all while providing service levels, security, access and governance. The platform integrates directly but seamlessly into the enterprise analytic stack, and existing analytics applications work as normal. The platform provides a way for the enterprise to translate its workloads into clusters of compute resources that meet its service level requirements.

Abstract: The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.

Abstract: Method and apparatus to monitor and detect anomalies of information content flows, the method comprising the steps of capturing information access packets, filtering packets to extract information, decoding packets to determine information content, deriving content signatures, trending prototypical behavior, and detecting anomalies of information access, and said apparatus comprising a computing device comprising a network based device that captures the information and produces anomaly information.

Abstract: A system that comprises of a set of components that interact together to achieve large-scale distributed data auditing, searching, and analytics. Traditional systems require auditing data to be captured and centralized for analytics, which leads to scaling and bottleneck issues (both on network and processing side). Unlike these systems, the system described herein leverages the combination of distributed storage and intelligence, along with centralized policy intelligence and coordination, to allow for large-scale data auditing that scales. This architecture allows for data auditing in “billions” of events, unlike traditional architectures that struggled in the realm of “millions” of events.

Abstract: Data auditing involves capturing, filtering, processing and analytics of real-time data transactions. As such, data auditing imposes a heavy burden of processing in the fast path, which cannot afford to slow down. Unfortunately, most processing incurred in traditional data auditing fast paths has been serial, leading to bottlenecks or scaling issues. This disclosure addresses this problem by developing a fast path where both lower and upper stacks of data auditing are analyzed and exploited for potential parallelism. A fully-parallelized analytics fast path could deliver 25-200% speed-up of throughput relative to a serial fast path, depending on the specific conditions.

Abstract: This disclosure provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.

Abstract: The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, network re-routing, or the like) is then implemented.

Abstract: This disclosure provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.

Abstract: The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, deprovision, or the like) is then implemented.

Abstract: Method and apparatus to monitor and detect anomalies of information content flows, the method comprising the steps of capturing information access packets, filtering packets to extract information, decoding packets to determine information content, deriving content signatures, trending prototypical behavior, and detecting anomalies of information access, and said apparatus comprising a computing device comprising a network based device that captures the information and produces anomaly information.

Abstract: The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, network re-routing, or the like) is then implemented.

Abstract: The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of“anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.