Virtual Entity Demultiplexing Map
Resolving log duplication across hypervisor infrastructures by mapping telemetry to static, isolated composite keys.
âšī¸
The Virtual Entity Concept
Traditional agents cluster logs per VM host, creating duplication when a single VM runs multiple distinct security containers. uSecOps demultiplexes incoming streams by mapping them to an immutable 3-part composite key:
Virtual Entity ID = [Hypervisor Type] + [Host VM UUID] + [Application Instance ID]
Active Virtual Host Clusters
KVM (Proxmox/RedHat)STABLE
AppInstance-A (Apache Server)
IP: 10.100.12.44245,180 logs
KVM (Proxmox/RedHat)ATTACK_ATTEMPT
AppInstance-B (PostgreSQL Case DB)
IP: 10.100.12.451,894,221 logs
VMware ESXi ClusterSTABLE
AppInstance-C (Active Directory Controller)
IP: 10.101.40.28,419,252 logs
Microsoft Hyper-V ServerCOMPROMISED
AppInstance-D (Legacy IBM System Adapter)
IP: 10.102.5.1884,210 logs
đ
Select an Entity
Click on any virtual host cluster to decode its composite log-demultiplexing registry key.