-
公开(公告)号:US08204986B2
公开(公告)日:2012-06-19
申请号:US12181260
申请日:2008-07-28
申请人: Asaf Wexler , Netta Gavrieli
发明人: Asaf Wexler , Netta Gavrieli
IPC分类号: G06F15/173
CPC分类号: H04L43/0864 , H04L43/0858
摘要: A method for monitoring performance of a data center that includes: (a) a performance monitor analyzing packets that flow between a client and a web or application server; (b) assigning packets to contexts where a context is a request-reply entity; (c) determining one or more of application, network, and back-end latency measures wherein: (i) the application latency measure is a time it takes for an application to respond to a request, (ii) the network latency measure is a time that it takes for packets to go through a network between the client and the web or application server, and (iii) the back-end latency is a time required for a back-end system to execute a request and respond to the application server.
摘要翻译: 一种用于监视数据中心的性能的方法,包括:(a)性能监视器,分析在客户端和web或应用服务器之间流动的数据包; (b)将分组分配给上下文是请求回复实体的上下文; (c)确定应用,网络和后端延迟测量中的一个或多个,其中:(i)应用等待时间测量是应用对应用响应所需的时间,(ii)网络等待时间测量是 数据包通过客户端和Web或应用程序服务器之间的网络所需的时间,以及(iii)后端延迟是后端系统执行请求并响应应用程序服务器所需的时间 。
-
公开(公告)号:US07934253B2
公开(公告)日:2011-04-26
申请号:US11532060
申请日:2006-09-14
申请人: Kevin Overcash , Kate Delikat , Rami Mizrahi , Galit Efron , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
发明人: Kevin Overcash , Kate Delikat , Rami Mizrahi , Galit Efron , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
IPC分类号: G06F11/00
CPC分类号: H04L63/1425 , G06F21/55 , H04L63/20
摘要: A system and method for protection of Web based applications are described. The techniques described provide an enterprise wide approach to preventing attacks of Web based applications. Individual computer networks within the enterprise monitor network traffic to identify anomalous traffic. The anomalous traffic can be identified by comparing the traffic to a profile of acceptable user traffic when interacting with the application. The anomalous traffic, or security events, identified at the individual computer networks are communicated to a central security manager. The central security manager correlates the security events at the individual computer networks to determine if there is an enterprise wide security threat. The central security manager can then communicate instructions to the individual computer networks so as to provide an enterprise wide solution to the threat.
摘要翻译: 描述了一种用于保护基于Web的应用程序的系统和方法。 所描述的技术提供了一种企业级的方法来防止基于Web的应用程序的攻击。 企业内的个人计算机网络监控网络流量,以识别异常流量。 通过在与应用程序交互时将流量与可接受用户流量的配置文件进行比较,可以识别异常流量。 在个别计算机网络上识别的异常流量或安全事件被传送给中央安全管理员。 中央安全经理将各个计算机网络上的安全事件相关联,以确定是否存在企业级的安全威胁。 然后,中央安全经理可以向各个计算机网络传达指令,从而为威胁提供企业级的解决方案。
-
3.发明授权公开(公告)号:US09054995B2
公开(公告)日:2015-06-09
申请号:US12603310
申请日:2009-10-21
申请人: Moshe Zadka , Netta Gavrieli , Ido Barav , Nadav Wexler
发明人: Moshe Zadka , Netta Gavrieli , Ido Barav , Nadav Wexler
IPC分类号: G06F15/173 , G06F11/00 , H04L12/24 , H04W28/24
CPC分类号: H04L41/5009 , H04L41/5003 , H04W28/24
摘要: A method and program product are provided for implementing object state changes in a data network system that includes at least one application having a plurality of objects. Each object is capable of being in of a plurality of different object states. The method comprises utilizing a network monitor to identify potential object state anomaly candidates from among the plurality of objects and utilizing object measurements taken during a predetermined time segment to determine if the current object state of a potential object state anomaly candidate should change from the current object state to an updated object state.
摘要翻译: 提供了一种方法和程序产品,用于在包括具有多个对象的至少一个应用的数据网络系统中实现对象状态改变。 每个物体能够处于多个不同的物体状态。 该方法包括利用网络监视器来识别来自多个对象中的潜在对象状态异常候选,并利用在预定时间段期间进行的对象测量来确定潜在对象状态异常候选的当前对象状态是否应该从当前对象改变 状态为更新的对象状态。
-
公开(公告)号:US20090031022A1
公开(公告)日:2009-01-29
申请号:US12181260
申请日:2008-07-28
申请人: Asaf WEXLER , Netta GAVRIELI
发明人: Asaf WEXLER , Netta GAVRIELI
IPC分类号: G06F15/16
CPC分类号: H04L43/0864 , H04L43/0858
摘要: A method for monitoring performance of a data center that includes: (a) a performance monitor analyzing packets that flow between a client and a web or application server; (b) assigning packets to contexts where a context is a request-reply entity; (c) determining one or more of application, network, and back-end latency measures wherein: (i) the application latency measure is a time it takes for an application to respond to a request, (ii) the network latency measure is a time that it takes for packets to go through a network between the client and the web or application server, and (iii) the back-end latency is a time required for a back-end system to execute a request and respond to the application server.
摘要翻译: 一种用于监视数据中心的性能的方法,包括:(a)性能监视器,分析在客户端和web或应用服务器之间流动的数据包; (b)将分组分配给上下文是请求回复实体的上下文; (c)确定应用,网络和后端延迟测量中的一个或多个,其中:(i)应用等待时间测量是应用对应用响应所需的时间,(ii)网络等待时间测量是 数据包通过客户端和Web或应用程序服务器之间的网络所需的时间,以及(iii)后端延迟是后端系统执行请求并响应应用程序服务器所需的时间 。
-
公开(公告)号:US20080047009A1
公开(公告)日:2008-02-21
申请号:US11458965
申请日:2006-07-20
申请人: Kevin Overcash , Kate Delikat , Rami Mizrahi , Galit Efron (Njtzan) , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
发明人: Kevin Overcash , Kate Delikat , Rami Mizrahi , Galit Efron (Njtzan) , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
IPC分类号: G06F12/14
CPC分类号: H04L63/0209 , H04L63/1408 , H04L63/166
摘要: A system and method for protection of Web based applications are described. A Web application security system is included within a computer network to monitor traffic received from a wide area network, such as the Internet, and determine if there is a threat to the Web application. The Web application security system monitors web traffic in a non-inline configuration and identifies any anomalous traffic against a profile that identifies acceptable behavior of a user of the application. Any anomalous traffic is analyzed and appropriate protective action is taken to secure the Web application against an attack.
摘要翻译: 描述了一种用于保护基于Web的应用程序的系统和方法。 Web应用程序安全系统包括在计算机网络内以监视从诸如因特网的广域网接收的流量,并确定是否存在对Web应用程序的威胁。 Web应用程序安全系统以非内联配置监视Web流量,并根据识别应用程序用户可接受行为的配置文件识别任何异常流量。 分析任何异常流量,并采取适当的保护措施来保护Web应用程序免受攻击。
-
公开(公告)号:US20080034425A1
公开(公告)日:2008-02-07
申请号:US11532060
申请日:2006-09-14
申请人: Kevin Overcash , Kate Delikate , Rami Mizrahi , Galit Efron , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
发明人: Kevin Overcash , Kate Delikate , Rami Mizrahi , Galit Efron , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
IPC分类号: G06F11/00
CPC分类号: H04L63/1425 , G06F21/55 , H04L63/20
摘要: A system and method for protection of Web based applications are described. The techniques described provide an enterprise wide approach to preventing attacks of Web based applications. Individual computer networks within the enterprise monitor network traffic to identify anomalous traffic. The anomalous traffic can be identified by comparing the traffic to a profile of acceptable user traffic when interacting with the application. The anomalous traffic, or security events, identified at the individual computer networks are communicated to a central security manager. The central security manager correlates the security events at the individual computer networks to determine if there is an enterprise wide security threat. The central security manager can then communicate instructions to the individual computer networks so as to provide an enterprise wide solution to the threat
摘要翻译: 描述了一种用于保护基于Web的应用程序的系统和方法。 所描述的技术提供了一种企业级的方法来防止基于Web的应用程序的攻击。 企业内的个人计算机网络监控网络流量,以识别异常流量。 通过在与应用程序交互时将流量与可接受用户流量的配置文件进行比较,可以识别异常流量。 在个别计算机网络上识别的异常流量或安全事件被传送给中央安全管理员。 中央安全经理将各个计算机网络上的安全事件相关联,以确定是否存在企业级的安全威胁。 然后,中央安全经理可以向各个计算机网络传达指令,从而为威胁提供企业级的解决方案
-
7.发明申请公开(公告)号:US20110093585A1
公开(公告)日:2011-04-21
申请号:US12603310
申请日:2009-10-21
申请人: Moshe ZADKA , Netta GAVRIELI , Ido BARAV , Nadav WEXLER
发明人: Moshe ZADKA , Netta GAVRIELI , Ido BARAV , Nadav WEXLER
IPC分类号: G06F15/173
CPC分类号: H04L41/5009 , H04L41/5003 , H04W28/24
摘要: A method and program product are provided for implementing object state changes in a data network system that includes at least one application having a plurality of objects. Each object is capable of being in of a plurality of different object states. The method comprises utilizing a network monitor to identify potential object state anomaly candidates from among the plurality of objects and utilizing object measurements taken during a predetermined time segment to determine of the current object state of a potential object state anomaly candidate should change from the current object state to an updated object state.
摘要翻译: 提供了一种方法和程序产品,用于在包括具有多个对象的至少一个应用的数据网络系统中实现对象状态改变。 每个物体能够处于多个不同的物体状态。 该方法包括利用网络监视器来从多个对象中识别潜在对象状态异常候选,并且利用在预定时间段期间进行的对象测量来确定潜在对象状态异常候选应当从当前对象改变的当前对象状态 状态为更新的对象状态。
-
公开(公告)号:US20080034424A1
公开(公告)日:2008-02-07
申请号:US11532058
申请日:2006-09-14
申请人: Kevin Overcash , Kate Delikate , Rami Mizrahi , Galit Efron , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
发明人: Kevin Overcash , Kate Delikate , Rami Mizrahi , Galit Efron , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
IPC分类号: G06F12/14
CPC分类号: H04L63/1416 , G06F21/55 , H04L63/102
摘要: A system and method for protection of Web based applications are described. An agent is included in a web server such that traffic is routed through the agent. A security module is also in communication with the agent. The agent receives information about the application profile, and patterns of acceptable traffic behavior, from the security module. The agent acts as a gatekeeper, holding up suspicious traffic that does not match the pattern of acceptable traffic behavior until the suspicious traffic has been analyzed by the security module. Using the agent, malicious traffic can dropped before it can reach the application, or the user can be logged out, or both.
摘要翻译: 描述了一种用于保护基于Web的应用程序的系统和方法。 代理被包括在web服务器中,使得流量通过代理路由。 安全模块也与代理通信。 代理从安全模块接收有关应用程序配置文件的信息和可接受流量行为的模式。 该代理充当网守,阻止可疑流量与可接受的流量行为模式不匹配,直到安全模块分析了可疑流量。 使用代理程序,恶意流量可能会在到达应用程序之前丢弃,或者用户可以注销,或两者兼而有之。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.017 秒)