公开(公告)号：US20230222361A1

公开(公告)日：2023-07-13

申请号：US17966821

申请日：2022-10-15

Applicant: VMware, Inc.

Inventor： Shirish Vijayvargiya ,  Vasantha Kumar Dhanasekar ,  Sunil Hasbe

IPC: G06N5/022 ,  G06F8/60 ,  G06F9/451

CPC classification number: G06N5/022 ,  G06F8/60 ,  G06F9/452

Abstract: Some embodiments of the invention provide a method for deploying machines for users in a software-defined datacenter (SDDC). The method in some embodiments is performed by a host computer that executes one or more machines. The method formulates a prediction regarding a particular user that is likely to log into a particular machine (e.g., virtual machine (VM), Pod, container, etc.) executing on a host computer of the SDDC in a future time period. Before the user logs into the particular machine, the method pre-fetches from a server a set of rules for a set of network elements that will process data messages associated with the machine after the particular user starts using the particular machine. The method uses the pre-fetched set of rules to configure the set of network elements to process data messages from the particular machine when the particular user logs into the machine during the time period. On the other hand, the method discards the pre-fetched set of rules when the particular user does not log into the particular machine during the time period.

公开(公告)号：US11201847B2

公开(公告)日：2021-12-14

申请号：US17107793

申请日：2020-11-30

Applicant: VMware, Inc.

Inventor： Shirish Vijayvargiya ,  Sachin Shinde ,  Nakul Ogale ,  Vasantha Kumar Dhanasekar

IPC: G06F15/16 ,  H04L29/12 ,  H04L29/06

Abstract: In some embodiments, a method receives a first address resolution mapping from a workload and verifies the first address resolution mapping. When the first address resolution mapping is verified, the method adds the first address resolution mapping to a list of address resolution mappings. The list of address resolution mappings includes verified address resolution mappings. The list of address resolution mappings is sent to the workload to allow the workload to verify a second address resolution mapping using the list of verified address resolution mappings.

公开(公告)号：US20210216348A1

公开(公告)日：2021-07-15

申请号：US16820752

申请日：2020-03-17

Applicant: VMWARE, INC.

Inventor： SHIVALI SHARMA ,  Vasantha Kumar Dhanasekar ,  Rahul Kumar ,  Rayanagouda Bheemanagouda Patil

IPC: G06F9/455

Abstract: Described herein are systems, methods, and software to manage resources for networking operations on a host computing system. In one implementation, a hypervisor on a host computing system, may monitor computing resources used by a networking process provided by the hypervisor. The hypervisor further determines that the one or more computing resources used by the networking process satisfy at least one criterion and, in response to determining that the computing resources satisfy at least one criterion, notifies one or more virtual machines supported by the hypervisor to modify one or more execution parameters associated with at least one application in each of the one or more virtual machines.

公开(公告)号：US20210084004A1

公开(公告)日：2021-03-18

申请号：US17107793

申请日：2020-11-30

Applicant: VMware, Inc.

Inventor： Shirish Vijayvargiya ,  Sachin Shinde ,  Nakul Ogale ,  Vasantha Kumar Dhanasekar

IPC: H04L29/12 ,  H04L29/06

Abstract: In some embodiments, a method receives a first address resolution mapping from a workload and verifies the first address resolution mapping. When the first address resolution mapping is verified, the method adds the first address resolution mapping to a list of address resolution mappings. The list of address resolution mappings includes verified address resolution mappings. The list of address resolution mappings is sent to the workload to allow the workload to verify a second address resolution mapping using the list of verified address resolution mappings.

公开(公告)号：US20240061731A1

公开(公告)日：2024-02-22

申请号：US17987883

申请日：2022-11-16

Applicant: VMWARE, INC.

Inventor： SEAN JAMES HUNTLEY ,  Vasantha Kumar Dhanasekar ,  David E. Ott ,  Daniel James Beveridge

IPC: G06F9/54 ,  H04L9/32

CPC classification number: G06F9/546 ,  H04L9/3239

Abstract: This disclosure relates generally to configuring a legacy application or service with a reconfigurable cryptographic provider capable of leveraging many different cryptographic algorithms, protocols or functions. The application or service can be configured with the reconfigurable cryptographic provider by redirecting cryptographic API calls intended for a linked static shared cryptographic library or provider to a cryptographic adapter configured to emulate responses provided by the linked static shared cryptographic library. A cryptographic adapter is also described and is configured to generate abstracted versions of the cryptographic API calls and pass them on to the reconfigurable cryptographic provider, which selects and implements an appropriate cipher solution based on the abstracted cryptographic API calls.

公开(公告)号：US20220358213A1

公开(公告)日：2022-11-10

申请号：US17392449

申请日：2021-08-03

Applicant: VMWARE, INC.

Inventor： Sachin Pandurang BOCHARE ,  Amol Shivram KATKAR ,  Vasantha Kumar Dhanasekar

IPC: G06F21/55 ,  G06F21/56

Abstract: Example methods are provided to build a smart file reputation cache at a cloud, and to provide the smart file reputation cache to an antivirus (AV) endpoint such as a virtualized computing instance in a virtualized computing environment. Training techniques can be used to build the smart file reputation cache at the cloud, based on information learned from existing AV endpoints and a management server. The smart file reputation can then be provided to newly installed AV endpoints for local access, instead of the AV endpoints sending file reputation requests to the cloud.

公开(公告)号：US11645390B2

公开(公告)日：2023-05-09

申请号：US16871088

申请日：2020-05-11

Applicant: VMWARE, INC.

Inventor： Shirish Vijayvargiya ,  Vasantha Kumar Dhanasekar ,  Sachin Shinde ,  Rayanagouda Bheemanagouda Patil

IPC: G06F21/56 ,  G06F11/30 ,  G06F9/455 ,  G06F21/60

CPC classification number: G06F21/566 ,  G06F9/45558 ,  G06F11/301 ,  G06F11/3041 ,  G06F21/602 ,  G06F2009/45579 ,  G06F2009/45587

Abstract: A next generation antivirus (NGAV) security solution in a virtualized computing environment includes a security sensor at a virtual machine that runs on a host and a security engine remote from the host. The integrity of the NGAV security solution is increased, by providing a verification as to whether a verdict issued by the security engine has been successfully enforced by the security sensor to prevent execution of malicious code at the virtual machine.

公开(公告)号：US10855644B1

公开(公告)日：2020-12-01

申请号：US16660835

申请日：2019-10-23

Applicant: VMWARE, INC.

Inventor： Shirish Vijayvargiya ,  Sachin Shinde ,  Nakul Ogale ,  Vasantha Kumar Dhanasekar

IPC: G06F15/16 ,  H04L29/12 ,  H04L29/06

Abstract: In some embodiments, a method receives one or more address resolution mappings and sends the one or more first address resolution mappings to a manager for verification of the one or more first address resolution mappings. The method receives one or more responses based on the verification of the one or more first address resolution mappings and allows or disallows use of the one or more address resolution mappings based on the one or more responses. A list of verified address resolution mappings is received from the manager based on the verification of the one or more first address resolution mappings. Then, the method receives a second address resolution mapping and verifies the second address resolution mapping using the list of verified address resolution mappings.

公开(公告)号：US12143362B2

公开(公告)日：2024-11-12

申请号：US17673841

申请日：2022-02-17

Applicant: VMWARE, INC.

Inventor： Vasantha Kumar Dhanasekar ,  Shirish Vijayvargiya ,  Leena Shuklendu Soman

IPC: G06F21/00 ,  H04L9/40 ,  G06F9/455 ,  G06F9/50 ,  G06F21/56

Abstract: Example methods and systems for a computer system to perform context-aware service query filtering are described. One example may involve a computer system intercepting a service query from a virtualized computing instance to pause forwarding of the service query towards a destination; and obtaining context information associated with an application running on the virtualized computing instance. In response to determination that the service query is a potential security threat based on the context information, service query filtering may be performed to inspect the service query for malicious activity. Otherwise, in response to determination that the service query is not a potential security threat based on the context information, the service query filtering may be skipped and the service query forwarded towards the destination.

公开(公告)号：US12124570B2

公开(公告)日：2024-10-22

申请号：US17392449

申请日：2021-08-03

Applicant: VMWARE, INC.

Inventor： Sachin Pandurang Bochare ,  Amol Shivram Katkar ,  Vasantha Kumar Dhanasekar

IPC: G06F21/55 ,  G06F21/56

CPC classification number: G06F21/552 ,  G06F21/554 ,  G06F21/565 ,  G06F21/566

Abstract: Example methods are provided to build a smart file reputation cache at a cloud, and to provide the smart file reputation cache to an antivirus (AV) endpoint such as a virtualized computing instance in a virtualized computing environment. Training techniques can be used to build the smart file reputation cache at the cloud, based on information learned from existing AV endpoints and a management server. The smart file reputation can then be provided to newly installed AV endpoints for local access, instead of the AV endpoints sending file reputation requests to the cloud.