公开(公告)号：US20150106276A1

公开(公告)日：2015-04-16

申请号：US14053438

申请日：2013-10-14

Applicant: BARRACUDA NETWORKS, INC.

Inventor： Thorfinn Clark ,  Chris Hawkins

IPC: G06Q50/18 ,  G06Q10/10

CPC classification number: G06Q50/18 ,  G06Q10/10

Abstract: Documents are analyzed for best practices and compliance with rules normalized for an industry or an enterprise by identifying, grouping, and scoring clauses. Key clauses in each stored document are identified which distinguish a relationship with restrictions on the principal party. A document set containing potentially conflicting restrictions is scanned for clauses, which mutually conflict. Documents with circular dependencies, obligations on the same resources, commitments to exclusivity, or compel action or inaction are surfaced for renegotiation, risk remediation, or conflict resolution.

Abstract translation: 通过识别，分组和评分条款，分析文档的最佳做法和遵守规范为行业或企业的规则。 确定每个存储文件中的关键条款，区分与主体方面的限制的关系。 扫描包含潜在冲突限制的文档集，这些条款相互冲突。 具有循环依赖性，相同资源义务，排他性承诺或强制行动或不采取行动的文件浮出水面，重新谈判，风险补救或解决冲突。

公开(公告)号：US20140372383A1

公开(公告)日：2014-12-18

申请号：US13921089

申请日：2013-06-18

Applicant: BARRACUDA NETWORKS, INC.

Inventor： Josef Sipek

IPC: G06F17/30

CPC classification number: G06F17/30073 ,  G06F3/0658 ,  G06F17/30159

Abstract: A file shard store includes high performance encoding and compaction circuits. An apparatus and its method of operation avoids duplicate storage of file fragments. A plurality of tables control write operations into a plurality of log segments. Shard keys are transferred to uniquely identify fragments of files which may have been previously stored and associated with one or more of client subscribers. An apparatus comprises a plurality of location/subscription tables, a shard transfer circuit, a storage control circuit, an append-to-log circuit coupled to a large storage array, and a log segment compactor circuit.

Abstract translation: 文件分片存储包括高性能编码和压缩电路。 一种装置及其操作方法避免了文件片段的重复存储。 多个表将写入操作控制成多个日志段。 传送碎片密钥以唯一标识可能已经存储并与一个或多个客户端订户相关联的文件片段。 一种装置包括多个位置/订阅表，分片传送电路，存储控制电路，耦合到大存储阵列的附加到对数电路以及对数分段压缩器电路。

公开(公告)号：US20140250086A1

公开(公告)日：2014-09-04

申请号：US13916186

申请日：2013-06-12

Applicant: BARRACUDA NETWORKS, INC.

Inventor： Fleming Shi

IPC: G06F17/30 ,  H04L29/06 ,  H04L29/08

CPC classification number: G06F16/1748 ,  G06F16/1752 ,  H04L63/0428 ,  H04L63/0442 ,  H04L67/2847

Abstract: A network gateway coupled to a backup server on a wide area network which receives and de-duplicates binary objects. The backup server provides selected data segments of binary objects to the gateway to store into a prescient cache (p-cache) store. The network gateway optimizes network traffic by fulfilling a local client request from its local p-cache store instead of requiring further network traffic when it matches indicia of stored data segments stored in its p-cache store with indicia of a first segment of a binary object requested from and received from a remote server.

Abstract translation: 耦合到广域网上的备份服务器的网络网关，其接收和解除二进制对象的重复。 备份服务器将二进制对象的选定数据段提供给网关以存储到预先存储的高速缓存（p-cache）存储中。 网络网关通过从其本地p-cache存储器实现本地客户端请求来优化网络流量，而不是在存储在其p缓存存储器中的存储数据段的标记与二进制对象的第一段的标记相匹配时需要进一步的网络流量 从远程服务器请求和接收。

公开(公告)号：US20130097195A1

公开(公告)日：2013-04-18

申请号：US13682714

申请日：2012-11-20

Applicant: BARRACUDA NETWORKS INC.

Inventor： ZACHARY LEVOW ,  KEVIN CHANG

IPC: G06F17/30

CPC classification number: G06F17/30386 ,  G06F21/564 ,  H04L9/3247

Abstract: An apparatus, system, and method for measuring the similarity of binary objects is disclosed. The method determines at least one pattern signature in an Nth binary object, accessing a location in a similarity store which has object identifiers for each of the previous N−1 binary objects which contain the corresponding pattern, and writing the object identifier of the Nth binary object at that same location in the similarity store. Reporting the number of locations in similarity store which contain the object identifiers of two apparently diverse binary objects is a measure of similarity to each other.

Abstract translation: 公开了一种用于测量二进制对象的相似度的装置，系统和方法。 该方法确定第N个二进制对象中的至少一个模式签名，访问相似性存储中具有包含对应模式的先前N-1个二进制对象中的每一个的对象标识符的位置，以及写入第N个二进制对象的对象标识符 对象在相似存储中的相同位置。 报告包含两个明显不同的二进制对象的对象标识符的相似度存储中的位置数是彼此相似度的度量。

公开(公告)号：US20240364705A1

公开(公告)日：2024-10-31

申请号：US18422966

申请日：2024-01-25

Applicant: Barracuda Networks, Inc.

Inventor： Jeremy Paul Bowers ,  Benjamin Roberto Magee

IPC: H04L9/40

CPC classification number: H04L63/108

Abstract: A new approach is proposed to support an authorization server to continuously monitor and revoke device access authorization to a plurality of resources. A client device associated with a user or consumer first sends a request to the authorization server for authorization to access or perform certain operations on one or more resources. Upon receiving the request, the authorization server makes an initial authorization determination on whether to grant or deny the request for authorization to the one or more resources by the client device based on the type of the request and/or the one or more resources requested to access. After an initial authorization determination is made, the authorization server continues to monitor the resources being accessed and update the initial authorization determination to the client device in real time. An live update in the authorization determination is then provided to the client device in real time.

公开(公告)号：US11949656B2

公开(公告)日：2024-04-02

申请号：US17407523

申请日：2021-08-20

Applicant: Barracuda Networks, Inc.

Inventor： Pablo German Sole ,  Jose Luis Ferras Pereira ,  Sinan Eren ,  Luisa Marina Moya Praca de Araujo Lima

IPC: H04L9/40

CPC classification number: H04L63/0236 ,  H04L63/0272 ,  H04L63/10 ,  H04L63/20

Abstract: Network traffic inspection is disclosed. An application executing on a client device as an operating system that uses a virtual private network (VPN) stack of the operating system intercepts a first IP packet. The application determines that a policy should be applied to the intercepted first IP packet. The policy is applied to the intercepted first IP packet.

公开(公告)号：US20230342252A1

公开(公告)日：2023-10-26

申请号：US17873022

申请日：2022-07-25

Applicant: Barracuda Networks, Inc.

Inventor： Nicholas Tillman

IPC: G06F11/14 ,  G06F16/11

CPC classification number: G06F11/1417 ,  G06F16/116 ,  G06F11/1469 ,  G06F2201/84

Abstract: A new approach is proposed that contemplates systems and methods to support quick recovery of an appliance by adopting a multi-layered filesystem having a plurality of layers that enables recovery and restoration of the appliance to factory default settings in seconds. In some embodiments, the multi-layered filesystem adopts a copy-on-write paradigm for all I/O operations to the appliance to create and superimpose an overlay layer by copying data from a read-only bottom layer of the appliance for modification and recovery of the appliance. The plurality of layers of the multi-layered filesystem are also tied to a general-purpose reset button or a software interface for implementation of an instant factory reset feature. When a reset signal is sent via the reset button or the software interface, one or more of the plurality of layers of the multi-layered filesystem are modified accordingly to provide a clean factory-reset of the appliance.

公开(公告)号：US20230246870A1

公开(公告)日：2023-08-03

申请号：US17684826

申请日：2022-03-02

Applicant: Barracuda Networks, Inc.

Inventor： Phil Ploquin ,  Nicholas Tillman ,  Hari Potaraju

IPC: H04L12/28 ,  H04L41/0806 ,  H04L67/133

CPC classification number: H04L12/281 ,  H04L12/2814 ,  H04L12/2816 ,  H04L41/0806 ,  H04L67/40 ,  H04L2012/285

Abstract: A new approach is proposed to support appliance configuration identification and profiling management. An appliance scanning component running on an appliance is configured to scan, examine, and determine current configuration of the appliance including hardware components and/or software components installed on the appliance. The configuration of the appliance is then provided to an appliance profiling engine running on a server, wherein the appliance profiling engine hashes the configuration of the appliance into a unique identifier of the appliance and look up a model of the appliance from an appliance profiling database using the unique identifier as a key. If the configuration of the appliance is not found, the appliance profiling engine identifies discrepancies between the configuration of the appliance and other appliances in the appliance profiling database to determine if the appliance is a new model, a revision of an existing model, or is simply misconfigured.

公开(公告)号：US20230244763A1

公开(公告)日：2023-08-03

申请号：US17707482

申请日：2022-03-29

Applicant: Barracuda Networks, Inc.

Inventor： Hari Potaraju ,  Dipen Modi ,  Giovanni Rodriguez

IPC: G06F21/10 ,  G06F9/4401

CPC classification number: G06F21/105 ,  G06F9/4401 ,  G06F2221/0773

Abstract: A new approach is proposed to support software validation and licensing management. An instance of a software component deployed to a physical computing device is configured to request a copy of license of the software component from a license server out-of-band before the software component can be installed and/or booted up on the physical computing device. Upon receiving a request for the copy of license from the instance of the software component, the license server is configured to grant or deny the request based on the current number of copies of license of the software component available. If the request is granted, the instance of the software component is booted up on the physical computing device. During its operation, the instance of the software component continues to communicate with the license server periodically to indicate whether the copy of license assigned by the server is still in use.

公开(公告)号：US11665195B2

公开(公告)日：2023-05-30

申请号：US16949864

申请日：2020-11-17

Applicant: Barracuda Networks, Inc.

Inventor： Mohamed Hosam Afifi Ibrahim ,  Marco Schweighauser ,  Asaf Cidon

IPC: H04L29/06 ,  H04L9/40 ,  G06F9/54 ,  G06N5/02 ,  H04L51/046 ,  H04L51/212

CPC classification number: H04L63/1466 ,  G06F9/546 ,  G06N5/02 ,  H04L51/046 ,  H04L51/212 ,  H04L63/1416

Abstract: A new approach is proposed to support account takeover (ATO) detection based on login attempts by users. The approach relies on assessing fraudulence confidence level of login IP addresses to classify the login attempts by the users. A plurality of attributes/features in one or more user login data logs are extracted and used to build a labeled dataset for training a machine learning (ML) model that relies on statistics of the login attempts to classify and detect fraudulent logins. These attributes make it possible to ascertain if a login attempt or instance by a user is suspicious based on the ML model. In some embodiments, the ML model is trained using anonymized user login data to preserve privacy of the users and a proper level of data anonymization is determined based on the ML model's accuracy in detecting the ATO attacks when trained with different versions of the anonymized data.