Skip to main content

Beyond Confidential: Establishing Trust in Your Computing Environment

Co-Author: Kirk SwidowskiConfidential Computing is an evolving security technology and the term is often used in industry to showcase broad applicability of a trustworthy execution environment. In this blog, we would like to clarify how confidential computing is defined in Google Cloud, key components integral to this technology, and explore how it can be used to establish trustworthiness. What is Confidential Computing?At a high level, confidential computing is a term for an environment designed to protect the confidentiality of code and data from unauthorized access. To build such an environment, we need three key components:A Threat Model: This is used to identify and define the unauthorized or untrusted entities, including hardware and software components. Access Control: The ability to limit access to protected code and data from those untrusted components. Attestation: A mechanism that proves all those limitations are in place.In Google Cloud, we offer confidential computing products and services built on AMD and Intel platforms, each with different levels of confidentiality and security guarantees. The AMD SEV-SNP and Intel TDX white papers provide more details on their respective threat models and security features.AMD SEV: Our Confidential VMs using AMD SEV use hardware-based memory encryption to isolate VM memory from the host workload, which can be attested via a Google-managed vTPM. AMD SEV-SNP and Intel TDX: These technologies provide memory and CPU state confidentiality and integrity protections, significantly reducing the attack surface. They also introduce the critical capability of hardware-rooted attestation. Confidentiality vs. TrustworthinessTrustworthiness is an assessment to determine if we can trust an underlying execution environment with confidential code or data. Confidential Computing technologies provide new capabilities to help establish that trust, but are they enough on their own?In any trust relationship, we either establish trust based on the direct familiarity with the other party or have them verified by an already-trusted third party. To establish trustworthiness in a computing environment, multiple hardware and software stacks must be trusted. It's impossible to find a single entity to represent this whole system.Instead, trustworthiness must be established by creating a chain of trust. This chain starts from a hardware root of trust and requires verifying every software and hardware component that impacts the system's trustworthiness.AMD SEV-SNP and Intel TDX facilitate an extension of the chain of trust to include the hardware itself. This enables the trusted execution environment to function without reliance on the cloud provider's underlying software stack. Both provide hardware-rooted attestation reports, signed by the CPU vendor, that allow customers to verify the environment's state without having to trust the cloud provider itself. So, now that we have a signed attestation report, how do we verify it? The Lifecycle of Establishing TrustA customer uses cloud APIs to create a Confidential VM. Once the VM is created, the customer can request an attestation report and establish trust after verifying it. This verification step is critical, often overlooked, and may differ based on the use case.There are three main categories to verify in any attestation report. 1. Authenticity of the ReportHardware-rooted reports include signatures that can be verified using trusted certificate chains from the CPU vendors, ensuring the hardware itself is legitimate. Such validation will ensure that the trusted execution environment is running on genuine hardware and not emulated by any malicious actor. Customers must also verify the report's freshness by checking that a "nonce" value in the report matches the "nonce" they provided when requesting the report. 2. Platform ConfigurationThe report includes specific information about the underlying platform, which is needed to evaluate its trustworthiness. This configuration mainly includes:Security feature configurations that impact confidential computing capabilities. Security Version Numbers (SVNs) for platform firmware and microcode (in AMD SNP reports). SVN for the CPU and firmware, plus the cryptographic hash of the TDX Module loaded on the system (in Intel TDX reports). 3. Guest ConfigurationThe report also captures information specific to the Confidential VM itself:Initial Memory Measurement: A measurement of the guest UEFI firmware image and all static configuration as part of that image loaded into the guest VM memory when the CVM was built. Google signs the firmware used by our Confidential VMs, which can be verified with Google's attestation tools. CVM Configuration Policy: This defines options that impact CVM security, such as enabling debug capabilities, allowing/disallowing migration, and the behavior of certain CPU features. Beyond the Initial BootHardware-rooted attestation reports provide information on the CVM's initial state. This state is the root of trust used to continue verifying the runtime state. Customers must use established security practices to verify runtime components. Confidential VM attestation provides an event log and measurements of all binaries loaded during boot. These measured boot hash values can be accessed via the Google-managed vTPM for AMD platforms or through hardware-rooted runtime measurement support on Intel TDX platforms. AMD platforms also support trusted vTPM through AMD's Secure VM Service Module (SVSM) SW extension running within the Confidential VM. Challenges in Securing the FoundationLike all software and hardware, components in the confidential computing trusted computing base (TCB) will have vulnerabilities. How quickly these can be addressed introduces unique challenges.Traditionally, cloud vendors patch their fleets based on their own risk assessment. With confidential computing, the risk assessment might be different for each user. The owner of the confidential environment should decide how to handle vulnerabilities based on their specific use case. For example, a third-party attestation service may delay enforcing a new TCB reference number to prevent production outages, even after a patch is available.Furthermore, new firmware updates introduce new features. Intel TDX has optional features such as TDX Live Migration, Performance Monitoring Capabilities and (soon) TDX Connect. Similarly, AMD SNP will have SEV-TIO (Trusted IO) and may have additional software components (such as Secure VM Service Module for SEV-SNP Guests) as part of its trusted computing base. Every new feature or software component added to the trusted computing base adds risks. While these features may have no known security issues, we believe unused features should not be enabled in Confidential VMs until they are well-reviewed or understood by both the cloud provider and the customers. The Customer's Role: Verifying Complex AttestationThe previous points highlight a crucial fact: attestation verification is complex. As technologies like Intel TDX evolve, increases in the feature set can also increase the attack surface.Because confidential computing reduces or removes the cloud provider from the trust boundary, it is the customer's responsibility to understand the default security and confidentiality guarantees provided. For use cases requiring a more strict and explicit security policy, customers must set their own attestation appraisal policy. This policy should consider:Auditing Unused Features: Customers must make sure features they don't use or would impact the expected confidential computing guarantees —such as debug capabilities or live migration—are explicitly disabled in the attestation report. While cloud providers will update to the latest firmware, they may not use all new features. Customers should expect the attestation to reflect only the set of features actually in use and nothing more. Defining an SVN Policy: Customers should create their own policy about what SVNs to trust. This includes understanding the difference between TCB enforcement (the platform refusing to load a module with an old SVN) and TCB recovery (the process of patching and updating your trust policy). Attestation Verification ToolsGoogle provides guidance on how Confidential VM attestation can be used to verify trustworthiness of different confidential computing environments we support.  We provide open source libraries for TDX and SNP that our customers can use to build their own attestation verification tools. Through those tools and libraries, customers can verify and validate the attestation report against the customer provided attestation policy. Each Confidential VM attestation report includes the measurement of the initial firmware loaded into the Confidential VM. We publish the binaries and launch endorsement for those firmware images that customers can use to verify the CVM firmware image through their own tools or Google provided tools. Conclusion: Our Commitment and Your Next StepsAt Google, we are continuously working to improve the security posture of our confidential computing products in collaboration with CPU vendors. Customers should review the limitations of current offerings and work with providers (CPU vendors, Google or any 3rd party service provider depending on the use case) to address their concerns. Together, we can remove the blind trust inherent in traditional computing and create a more secure future for your valuable computation needs. Attestation Reference for Building Custom PoliciesAt Google, we continuously harden and maintain our Confidential VM infrastructure to protect customers from known vulnerabilities and security risks. These protections are applied automatically when you run Confidential VMs and use Google's attestation tools.As part of our commitment to transparency, we provide our reference configuration for confidential computing below. We also offer details on selected claims to empower customers who wish to build their own attestation verification policies.  Reference Values for Intel TDX and AMD SNP Attestation verification through Google, CPU vendor or 3rd-party provided services verifies the genuinity of the attestation but might not validate the actual attestation claims. Below, we have provided a few selected attestation claims with the current reference values that confidential computing customers can use to build their own attestation policy.Alternatively, Intel provides an attestation verification service, Intel Trust Authority, that customers can use to build an attestation appraisal policy and verify attestation claims for Google Cloud Confidential VMs. Verification of SVN numbers for Intel TDX:Intel provides regular updates on the trusted computing base changes and required actions through Trusted Computing Base Recovery Attestation (TCBR) updates. Unfortunately, it is not easy to map the cpu_svn and isv_svn numbers to specific CPU families after each TCBR update. Intel provides Intel DCAP SGX attestation verification library that provides a single high-level function, and the library internally performs the entire TCB comparison, including all SVN checks. The verification function will fail if the TCB is not up to date. But by default, this method will only verify the TCB after any TCBR enforcement which is usually 12 months after any security update is publicly disclosed. At Google, we assess the risk of all known issues and update the platform SVN numbers with the urgency appropriate to the associated risks. Google attestation tools validates that the latest SVN number available in our production environment automatically. Alternatively, we can query the latest TCB version available for the current processor and enforce the minimum TCB versions before the TCBR enforcement. The primary method for retrieving this information is by querying Intel's Provisioning Certification Service (PCS) or a trusted compatible caching service. We can query the Intel PCS service if we know the processor identification number, fmspc (Family, Model, Stepping, Platform, Customization). The fmspc number can be requested from Intel with a REST API call to Intel PCS certification API by using the PCE SVN (Provisioning Certification Enclave Security Version Number), PCE ID (Provisioning Certification Enclave Identifier), CPU SVN and Encrypted PPID (An encrypted hardware identifier) values found in the TDX Attestation Quote.TDX Attestation Quote (reduced version as reference) Attestation Field Value Description tee_tcb_svn 0x080108 (Might change) Describes the TCB of TDX when the TD was launched. Byte 0: TDX Module minor SVN Byte 1: TDX Module major version Byte 2: Contains the microcode SVN on a non-TD Preserving update of the TDX Module   Remaining bytes are not used in the current TDX module version and set to 0. Currently we are using TDX Module 1.5.09. Intel publishes the SVN numbers for all TDX Module binary releases at https://github.com/intel/tdx-module/releases  seam_attributes 0x0 Not used and set to zero for the current TDX module td_attributes  0x10000000 This TD is configured as : - Debugging is disabled for this TD - Disable EPT violation conversion to #VE on guest TD access of PENDING pages - Migration is not allowed for this TD - Supervisor Protection Keys are disabled - Perfmon and PERF_METRICS are disabled. - Key Locker is disabled   No other security features are enabled through these settings. mr_td #HASH Measurement of the guest firmware image loaded at TD build. Google Cloud provides tools to verify guest firmware. rtmrs[4] #HASH Run time measurements that can be used to validate the measured boot event log. report_data HEX DATA User provided data or nonce value. Customer should verify if this nonce value is matching with the nonce value provided during TDQuote request cpu_svn  0x600FF041BFF0808 Security Version of HW components in the TDX TCB (raw value). attributes  0xE70000000000000015 SGX Security attributes which can configure if the SGX enclave is in debug mode, support 64bit, etc... The most important information here is to verify that SGX is not running in debug mode (Bit 1 must be 0) isv_svn 6 Security Version of the enclave. *  For more information and the complete list of the attestation claims, please refer to Intel TDX Module 1.5 Specification. An example REST API call will look like this:GET /sgx/certification/v4/pckcert?encrypted_ppid=...&pcesvn=...&pceid=...&cpusvn=... The fmspc will be in the SGX-FMSPC HTTP response header. With the fmspc value, a developer can make a REST API call to the Intel PCS and get the new TCB information earlier than the TCBR enforcement date. The relevant endpoint for retrieving TCB information is typically in the format:GET /sgx/certification/v4/tcb?fmspc=<fmspc_value>&update=earlyThe response from the PCS is a JSON object that contains detailed TCB information for the specified platform. This includes an array of tcbLevels, where each level represents a different certified state of the TCB. Within each tcbLevel, the tcb object contains the cpusvn. An example JSON response will look like this:{ "tcbInfo": { "fmspc": "0123456789ab", "tcbLevels": [ { "tcb": { "sgxtcbcomp01svn": 0, "sgxtcbcomp02svn": 1, ... "pcesvn": 5, "cpusvn": "0a0b0c0d0e0f10111213141516171819" }, "tcbDate": "2025-10-26T10:00:00Z", "tcbStatus": "UpToDate" }, ... ] }, ...} AMD SNP Attestation Report (reduced version as reference)A limited set of attestation claims included in the SNP Attestation report can be found below.  Attestation Field Value Description policy 0x30000 - PAGE SWAPPING is not disabled. - Ciphertext hiding for the DRAM is not enabled. - Allow Running Average Power Limit (RAPL). - Allow AES 128 XEX or AES 256 XTS for memory encryption. - CXL cannot be populated with devices or memory. - Guest can be activated on multiple sockets. - Debugging is disallowed. - Migration agent is disallowed. - SMT is allowed. - ABI Minor/Major is not set for this VM. current_tcb 0xDB19000000000004 Security Version Numbers (SVNs) of the currently executing platform firmware and microcode platform_info 0x25 - SEV-TIO is disabled. - Alias detection has completed since the last system reset and there are no aliasing addresses. - Ciphertext hiding is not enabled for the DRAM. - RAPL feature is disabled. - Platform is using error correcting codes (ECC) for memory. - TSME is disabled in the system. - SMT is enabled in the system. report_data NONCE User provided data or nonce value. Customer should verify if this nonce value matching with the nonce value provided during SNP attestation report request measurement #HASH Hash of the guest firmware image loaded at SNP VM build. Google Cloud provides tools to verify guest firmware. reported_tcb  0xDB19000000000004 Hypervisor has option to report a lower version to ease continuity on TCB update committed_tcb 0xDB19000000000004 SVNs of the anti-rollback minimum of the platform firmware and microcode launch_tcb 0xDB19000000000004 SVNs of the version of the platform firmware and microcode at time of launch of this guest cpuid1eax_fms 0xA00F11 Extended Family ID: 0xA, Family ID: 0xF Model: 0x1 SteppingID: 0x1 (AMD Milan CPU) *  For more information and the complete list of the attestation claims, please refer to AMD SEV Secure Nested Paging Firmware ABI Specification. Note that there are some security features such as ciphertext hiding and disabling page swapping that are not enabled due to those features being not supported in this CPU family. Customers can use the cpuid1eax_fms claim to verify the limitations.  Verification of SVN numbers for AMD SNP:AMD provides an AMD Key Distribution Service (KDS) that can be used to query the TCB information. Using the Chip ID and reported_tcb from the attestation report, we can request a VCEK certificate chain for this CPU.An example REST API call will look like this:GET https://kdsintf.amd.com/vcek/v1/Milan/<chip-id-hex>The KDS will respond with the VCEK certificate chain. The latest TCB version is not in plain text; it's encoded in a custom X.509 extension within the certificate. We can compare the TCB values parsed from the VCEK certificate's extension with the reported_tcb values from the attestation report. The verification passes if every component of the reported_tcb is greater than or equal to the corresponding component from the VCEK. More information and the details can be found at AMD Versioned Chip Endorsement Key (VCEK) Certificate and KDS Interface Specification.  We thank the Google PSS (Privacy, Safety & Security) and Cloud CISO Security Engineering team members who contributed to the blog: Google PSS: Daniel Moghimi (danielmm@google.com) Senior Research Scientist and Cloud CISO: Josh Eads (josheads@google.com) Security Engineer.

Implementing unified Data and Feature RBAC in Google SecOps

This guide provides a practical demonstration on how to implement unified Data and Feature RBAC in Google SecOps SIEM and SOAR components using a SIEM Data RBAC Scope with a single Custom Label. Before performing any setup configuration it is important to thoroughly consider your planning stage in advance of making any configuration changes, and specifically deciding the naming convention for your SIEM Data RBAC Scopes. For the purpose of this guide, SIEM Data RBAC Scopes will be created to represent specific technology stacks, e.g., windows and linux, which can then be assigned to different teams.Note, as you will see, Google SecOps SOAR Environments are case sensitive, whereas SIEM Scopes can only be lowercase.Important: To reiterate, this approach will only work consistently if a Data RBAC Scope contains just one Custom Label. This is due to a limitation of the SOAR Connector, which can only read a single custom label value (...customLabels_1) for alert routing. Summary of steps:The process for implementing Data and Feature RBAC in Google SecOps involved the following steps:IDP or Directory: Create Groups (Optional) SIEM: Create Data RBAC Custom Labels SIEM: Create Data RBAC Scopes, using your Custom Labels GCP IAM: Create custom Roles (Optional) GCP IAM: Assign Groups with Conditions to IAM SOAR: Create SOAR Environments and/or Aliases SOAR: Evaluate Permission Groups (Optional) SOAR: Create Roles SOAR: Group Mapping  SOAR: Connectors SIEM: Bind Rules to Scopes Setup GuideYou will need the following access rights in order to perform this setup:Chronicle API Admin Chronicle SOAR Admin GCP IAM AdministratorYou will need to have enabled your Google SecOps tenant IAM access.Note, if you can’t see the Data Access tab in your Google SecOps SIEM Settings then contact Google Cloud Support, or your account team, in order to enable the feature. IDP or Directory: Create Groups (Optional)The first, optional, step is to create Groups that will be used for your Teams.  If you have existing suitable IDP Groups you can use those.At the time of writing, November 2025, SIEM does use the members of an assigned Google Cloud Identity group for Feature and Data RBAC, but SOAR does not.However, this is planned to change at a future date where a native unified approach to Feature and Data RBAC will be implemented for SOAR components, and so creating, populating, and assigning groups is a recommended future proof approach.Note, be aware that nested group membership can result in unexpected SIEM Data RBAC access. SIEM: Create Data RBAC Custom LabelsIn this stage we create the Team based Custom Labels that will be used to apply Data RBAC restrictions on SIEM data.SIEM Settings > Data Access > Custom Labels Click the “Create Custom Label” button Enter a YARA-L query for each Team label required, and click “Create Label”For example, Team X could be configured as:Name: windows UDM Search:metadata.log_type = "WINEVTLOG" or metadata.log_type = “WINDOWS_SYSMON” Name: linux YARA-L query:metadata.log_type = "NIX_SYSTEM" or metadata.log_type = "AUDITD" As we will see later on, the Custom Labels approach is the only way to apply a consistent label to all Google SecOps SIEM data irrespective of ingestion method, i.e., this approach will work against Google Cloud or Workspace native ingestion, the Ingestion API (which includes the OTEL Collector), and Feed Management.  SIEM: Create Data RBAC Scopes, using your Custom LabelsIn this stage we create a SIEM Data RBAC Scope that uses the previously created SIEM Data RBAC Custom Label.SIEM Settings > Data Access > Scopes Click “Create Scope” Scope Name: <enter a scope name> Description: <enter a description, e.g., Created by X on Y> Under “Define Scope Access with Labels” select “Custom” and select the Custom Label you create in the prior step Click “Create Scope”For the purpose of this example setup, the following configuration is used:Scope: linux Allow Labels: linux Scope: windows Allow Labels: windows Raw Log SearchIf Team X will require the Raw Log Search feature in SIEM then you will need to explicitly include the LogType in your Scope. Why is this? Only the LogType definition will allow access to this feature as a security measure to prevent data leakage. As Custom Labels are only applied to UDM, allowing Raw Log Search could allow access to unparsed Raw Logs which were not part of the intended scope.Note, Data RBAC labelling is not instant, and can take up to an hour to take effect.Example of SIEM Data RBAC Scope with a Custom Label GCP IAM: Create custom Roles (Optional)In this stage we, optionally, create custom IAM Roles in GCP in order to allow Feature RBAC access to specific SIEM components:SecOps Gemini SecOps Agent AINote, if you do not require restricted users within a Team to have access to Gemini in Google SecOps SIEM you can skip this step.Open a Google Cloud console Cloud Shell Set the active GCP Project to that of your Google SecOps tenant: gcloud config set project cmmartin-dev For each Feature you want to grant to a restricted role in SecOps create the associated yaml file, as below, and run the following gcloud command: gcloud iam roles create {role_name} --project={GCP_PROJECT_ID} --file={filename.yaml} E.g., gcloud iam roles create chronicle_gemini --project=cmmartin-dev --file=chronicle_gemini.yaml  Google SecOps Geminidescription: 'Created on {DATE} by {USER}'includedPermissions:- chronicle.ais.createFeedback- chronicle.ais.translateUdmQuery- chronicle.ais.translateYlRule- chronicle.conversations.create- chronicle.conversations.delete- chronicle.conversations.get- chronicle.conversations.list- chronicle.conversations.update- chronicle.messages.create- chronicle.messages.delete- chronicle.messages.get- chronicle.messages.list- chronicle.messages.update- chronicle.preferenceSets.updatename: projects/{GCP_PROJECT_ID}/roles/google_secops_geministage: BETAtitle: Google SecOps GeminiNote, additional SIEM Feature RBAC roles may be required depending on your organization's specific needs. GCP IAM: Assign Groups with Conditions to IAMThe next stage involves assigning your IDP groups to default and, optionally, custom GCP IAM roles, and applying a GCP IAM Condition to the default Chronicle API Restricted Data Access role. In the Google Cloud console navigate to GCP > IAM & Admin > IAM Click “Grant Access” Under “Add principals” enter the Group email address Under “Assign roles” click “Add Roles”, and add the following: Chronicle API Restricted Data Access Viewer Chronicle API Restricted Data Access  Click “Save”The next step is crucial in order to apply the SIEM Data RBAC Scope previously created to the configured Group:For the Group in question, under the “Chronicle API Restricted Data Access” click the Pencil (Edit Principal) icon For the “Chronicle API Restricted Data Access” IAM Role click “Add Condition” Title: <condition title, e.g. linux> Description: <enter a description, e.g., Added by X on Y> Under the “Condition builder” tab fill in the fields as follows: Condition type 1 = Name Operator = Ends with Value = /<scope name> Click “Save” Note, it is crucial that the Value is case sensitive and entered correctly.Note, if any of the Roles show as having either (Beta) in their name, use those. SOAR: Create SOAR EnvironmentsThis stage involves creating SOAR environments that match the SIEM Data RBAC scopes.  Alternatively, if you have existing SOAR Environments and want to re-use these you can use the SOAR Environment Alias feature. Creating SOAR New EnvironmentsThis path is for creating a brand new Team environment:Settings > SOAR > Organization > Environments Click the “+” icon “Name” enter your Environment name This must exactly match the SIEM data RBAC Scope name. Since SIEM scopes must be lowercase, this Environment name must also be lowercase. The matching is case-sensitive. “Description”: <description of the Environment, e.g., Team X, created by Y on Z” “Contact Name”: <contact name for Team X> “Contact Emails”: <Team X email address> “Contact Phone”: <Team X contact phone number, note you can enter 0 if you have no valid number> “Aliases”: <optionally add additional Custom Scope that should be matched to this SOAR Environment> Click “Add”Note, you can change the Image for an Environment click click the Pencil icon Adding an Alias to an existing SOAR EnvironmentThis path is for re-using an existing SOAR Environment, and this can support multiple Custom Labels being applied.Settings > SOAR > Organization > Environments Edit the Environment (double mouse click) Add the Data RBAC Custom Label to the Aliases field Note, you need to press the Enter key on your keyboard so that the entry is recognized as a Chip before clicking Save Click “Save” Note, while not covered in this guide, you can also utilize SOAR Environment Groups for more fine grained access, which also support Aliases -  https://cloud.google.com/chronicle/docs/soar/admin-tasks/environments/environment-groups SOAR: Evaluate Permission Groups (Optional)In this stage you can optionally create a new Permission group if a default Permission Groups do not suffice. However, for the purpose of this example guide the default Managed User role will be used.  A list of default SOAR Permission Groups can be found here. SOAR: Create RolesIn this stage a custom SOAR Role is created that will be used to map Cases to that specific Team environment.  This capability will also help for Playbook content where you can assign it to specific Roles only (this is not covered in this guide)Settings > SOAR Settings > Organization > Roles Click the “+” icon Role Name: <team X> Additional Roles: <select your Default Role, which is by default Tier1> Click Add SOAR: Group Mapping In this stage the IDP Group mapping is applied and linked to the Team X Environment, SOC Role, and a SOAR Permission Group.Settings > SOAR Settings > Advanced > Group Mapping Click the “+” icon Group: <enter the IDP email address of your group> Permissions Group: Managed User SOC Roles: Team X Role Environment: Team X Environment Group Members: <enter the email address of users within the group who require access> Click AddNote, in this setup configuration no “Default Access Settings” are configured or required. SOAR: ConnectorsIn this stage the default “Google Chronicle Connector” is updated to use the SIEM Data RBAC Scope Name to route the SIEM Detection Alerts to the appropriate SOAR Environment.Settings > SOAR Settings > Ingestion > Connectors Under “Google Chronicle” select the default “Google Chronicle - Chronicle Alerts Connector 1”  Under “Advanced” in “Environment Field Name” enter “event_metadata_baseLabels_customLabels_1” Click “Save”Note, this guide is premised on there only being a single custom label applied to each UDM event.   SIEM: Bind Rules to ScopesIn this stage SIEM Detection Rules are bound to the appropriate Scope.  If this configuration is not applied then restricted Team X users will not be able to see the YARA-L rules, nor will they be able to use the Composite Detection widget in a Case in SOAR.SIEM > Detection > Rules & Detections > Rules Editor In the left hand panel, select the YARA-L rule(s) in question In the top right hand corner click the drop down menu and select the associated Scope Click “Save” QuestionsWhat if I require Team X to have Raw Log Search capabilities?At present if using a SIEM Data RBAC Custom Label this only grants access to UDM Search, and not Raw Log Search.  If you require Team X to have access to Raw Log Search you will need to include the explicit Log Type in the SIEM Data RBAC Scope. Can I configure SIEM or SOAR only access?Yes.  While not covered in this guide, further detail is available here, which can be adapted and built upon the content in this solution:https://cloud.google.com/chronicle/docs/secops/adding_siem_or_soar_roles SOAR Permissions GroupThe following table shows the default SOAR Permissions Group available.  If these do not meet your requirements you can use these as a basis for creating a custom Permissions Group. 

New to Google SecOps: Build Rules while Appending Data Tables to the Entity Graph

OK, I promise we will build rules using the graph_append in this blog post! Our previous post covered the data preparation step which ensured that the data table had the appropriate fields in it. These include mapping to the metadata.interval.start_time.seconds and metadata.interval.end_time.seconds fields which will drive which entities are considered when the rule triggers, as well as other fields like metadata.entity_type and metadata.source_type that are generally used to make rules more performant when writing rules using the entity graph. With that out of the way, we can review the syntax and apply it to our rules. graph_appendThe concept of graph_append is pretty simple, we are appending rows from the data table to rows that exist within the entity graph and use both in a rule. This can be incredibly useful when we quickly need to add a set of users to a rule but we might not have had the time to add the data to the entity graph. For our purposes today, here is what our user list will look like. This is based on the data we loaded in our previous blog. On the top, we have a data table with mappings to the entity graph and on the bottom we have two users from our entity graph represented. The graph_append command will merge these together to create a superset of data that the rule will run against.  It’s important to remember that this append is ephemeral, it only exists in the context of the rule it is running in. The append does not permanently write these values from the data table into the entity graph or vice versa! It’s also worth noting that the syntax for graph_append is a little different from the graph_override and graph_exclude commands. They used joins to link the data table and the entity graph, where graph_append defines within square brackets the event variable that represents the entity graph followed by a comma and then the name of the data table that is being appended to it.setup:  graph_append [$graph, %append_table] This really basic example is using the event variable graph to represent the entity graph and the data table is named append_table. Pretty simple. Starter RuleTo highlight how we can use graph_append in our rule, we are going to use the following rule as our starting point and build out from there. This initial search is essentially looking for process launch events for users and aggregating them by a common principal.hostname within a 15 minute window. It’s not super fancy but serves as a good place to start as we start adding in the entity graph and our data table.rule process_launch_graph_append { meta:   author = "Google Cloud Security"   description = "Detect process launch events and how the entity graph can be used with data tables to enrich a rule with Data Table Append."   type = "detection"   data_source = "sysmon"   platform = "Windows"   severity = "Info"   priority = "Info" events:   $process.metadata.event_type = "PROCESS_LAUNCH"   $process.principal.user.userid != ""   $process.principal.user.userid != /\$$/   $process.principal.user.userid != "admin"   $process.principal.user.userid = $userid   $process.principal.hostname = $hostname match:   $hostname over 15m condition:   $process} Adding the Entity Graph to our RuleLet’s add the entity graph into the rule. The rows in the events section that start with $graph are the rows that link the events to the entity graph based on a common userid. Notice that we have criteria for both the entity_type and the source_type. Having criteria for these fields is generally considered a best practice as it will improve rule performance and this will become crucial when we add the data table.rule process_launch_graph_append { meta:   author = "Google Cloud Security"   description = "Detect process launch events and how the entity graph can be used with data tables to enrich a rule with Data Table Append."   type = "detection"   data_source = "sysmon"   platform = "Windows"   severity = "Info"   priority = "Info" events:   $process.metadata.event_type = "PROCESS_LAUNCH"   $process.principal.user.userid != ""   $process.principal.user.userid != /\$$/   $process.principal.user.userid != "admin"   $process.principal.user.userid = $userid   $process.principal.hostname = $hostname   $graph.graph.metadata.entity_type = "USER"   $graph.graph.metadata.source_type = "ENTITY_CONTEXT"   $graph.graph.entity.user.userid = $userid match:   $hostname over 15m outcome:   $user = array_distinct($graph.graph.entity.user.userid)   $type = array_distinct($graph.graph.metadata.entity_type)   $org = array_distinct($graph.graph.entity.user.company_name)   $state = array_distinct($graph.graph.entity.user.office_address.state)   $interval_start = array_distinct(timestamp.get_timestamp($graph.graph.metadata.interval.start_time.seconds))   $interval_end = array_distinct(timestamp.get_timestamp($graph.graph.metadata.interval.end_time.seconds)) condition:   $process and $graph} We need to add the event variable of $graph to the condition section of the rule and we have added an entire outcome section that is outputting values from the entity graph. We are doing this mainly to view the output of these fields in the detections below.  The absence of a value in state isn’t important here, but I do want to call out the two columns on the far right which are interval_start and interval_end. The detection was tested on October 27, 2025 and the data range for the entity is represented within those interval values. If we ran this rule on another date and the entity graph data was different on that date, the information for that data range would be represented here instead. Appending a Data Table to the Entity Graph in our RuleThis time, we have made two changes to the previous rule. The first is that we have added a setup section to our rule. The setup section always goes after the meta section and before the events section. Remember we are creating an ephemeral version of the entity graph so we need to assemble that version before we can start applying logic to it within the rest of the rule!rule process_launch_graph_append { meta:   author = "Google Cloud Security"   description = "Detect process launch events and how the entity graph can be used with data tables to enrich a rule with Data Table Append."   type = "detection"   data_source = "sysmon"   platform = "Windows"   severity = "Info"   priority = "Info" setup:   graph_append [$graph, %append_user_list] events:   $process.metadata.event_type = "PROCESS_LAUNCH"   $process.principal.user.userid != ""   $process.principal.user.userid != /\$$/   $process.principal.user.userid != "admin"   $process.principal.user.userid = $userid   $process.principal.hostname = $hostname   $graph.graph.metadata.entity_type = "USER"   $graph.graph.metadata.source_type = "ENTITY_CONTEXT"   $graph.graph.entity.user.userid = $userid match:   $hostname over 15m outcome:   $user = array_distinct($graph.graph.entity.user.userid)   $type = array_distinct($graph.graph.metadata.entity_type)   $org = array_distinct($graph.graph.entity.user.company_name)   $state = array_distinct($graph.graph.entity.user.office_address.state)   $interval_start = array_distinct(timestamp.get_timestamp($graph.graph.metadata.interval.start_time.seconds))   $interval_end = array_distinct(timestamp.get_timestamp($graph.graph.metadata.interval.end_time.seconds))   $probationary = array_distinct($graph.graph.additional.fields["probationary"]) condition:   $process and $graph} The other change is that we added to the outcome section a variable called probationary. The entity graph did not contain this field, it only exists in the data table, but even though it isn’t mapped to the entity graph, it can still be used by using the column name from the data table as the key within the additional.fields portion of the schema. When we test the rule, we have a lot to talk about! In blue, notice we have a detection for alice.young. Alice is part of the data table but is not part of my entity graph. So we can see the organization, state and interval time range and probationary value from the data table reflected in the detection. Notice the interval range is July 1, 2025 to December 31, 2026? That reflects the date range where this entry would be applicable for rules executed within that time range.  When we expand the detection that has a user of frank.kolzig, we also see something interesting. Notice we have expanded the detection and can see the entity and the company name in the entity graph is Stacked Pads Goalie Training. However, in the detection the org lists both this and Cymbal Hockey. The next two fields, state and probationary, are both returning an array of data, but the first value is a null, so state returns the value of  , Minnesota and probationary returns  , no. When we look at the interval_start and interval_end, we get two dates each. What’s going on? This brings us to an important point about the graph_append command. When it is used, no deduplication of the rows appended to the entity graph will be performed. So, if a row is present in both the entity graph and the data table, both rows are present in the combined ephemeral entity graph view. Because we are using an array_distinct function in the outcome section, we are getting both values in the outcome section for org, state, probationary, and interval. OK great, now I have an array with a null value and a non-null value in a few fields. Is there anything I can do about this? The short answer is yes, though this is not a part of the graph_append, but another function. I probably should dedicate a post to this function, but for the moment this will do. In the outcome section, when we use the function array_distinct, our output is in an array_string (in this case) datatype which is what we see with , Minnesota and has , no in our detections. We can convert this outcome variable to a string and get rid of the null values in the array by prepending the function with arrays.join_string and then using a delimiter like a comma or whatever your delimiter of choice is. In the example above, if I modify the state and probationary outcome variables like this: $state = arrays.join_string(array_distinct($graph.graph.entity.user.office_address.state),",")$probationary = arrays.join_string(array_distinct($graph.graph.additional.fields["probationary"]),",") The output is now a string and the null values in the array are gone. One final point that I would like to call out. When we added the entity graph to the rule, we used the following criteria to the rule.$graph.graph.metadata.entity_type = "USER"$graph.graph.metadata.source_type = "ENTITY_CONTEXT" This caused a reduction in the amount of entity data that needed to be scanned for the join to take place between the entity graph and the event, making the rule run faster. When we brought the data table to be appended to the entity graph, because we had these two fields already prepped and in the data table, our rule ran flawlessly. If we had not defined them in the data table, the data table would have still been appended but the criteria would not have been met because those fields didn’t exist and our data table values would not have met the rule conditions and would have been excluded. This is why a little pre-planning around data preparation can pay large dividends when appending data tables and the entity graph to one another! I hate to make a long blog even longer, but we are in the home stretch here so stick with me! The graph_append command is probably the most used and desired of the three data table and entity graph commands because it can flexibly create a superset of entity graph data by leveraging the dynamic nature of a data table. Here are a few tips to remember:The data table must include columns to validate the entity that maps to metadata.interval.start_time.seconds and metadata.interval.end_time.seconds This means that interval times in the data table should be a primary troubleshooting point Filters specified in the rule are applied after appending the data table and the entity graph If the rule uses filtering terms like $graph.graph.metadata.entity_type = "USER" and    $graph.graph.metadata.source_type = "ENTITY_CONTEXT", these values must be reflected in the data table If an entity exists in both the data table and the entity graph, it is possible to have a duplicate I realize I just gave you a lot of information here but I hope you build a data table, append it to the entity graph and give this a try. Remember, while my example used user entity data, there is no reason you can’t use other entities and this might be a quick and easy win when it comes to applying additional threat intel indicators to your rule sets, especially for fast moving threats where you need to apply indicators immediately to your detection logic. If you want to see that use case in action, respond back in the comment section of the blog or shoot me a note and I will write that one up and share it!

Blog Articles

Terms & ConditionsCookie settingsAccessibility statement
Privacy Policy Terms of Service Gen AI Policy Community Guidelines Cookie Settings

© 2025 Google. All rights reserved.