公开(公告)号：US11588819B1

公开(公告)日：2023-02-21

申请号：US17010820

申请日：2020-09-02

Applicant: AVIATRIX SYSTEMS, INC.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath

IPC: H04L29/06 ,  H04L9/40 ,  H04L67/1036 ,  G06F9/455 ,  H04L12/66

Abstract: In one embodiment, a secure object transfer system is described. The system features a virtual private cloud network (VPC) and a controller. The VPC includes a plurality of gateways and a network load balancer, which configured to conduct a load balancing scheme on access messages from computing devices deployed within an on-premises network to direct the access memory to one of the plurality of gateways for storage or retrieval of an object from a cloud-based storage element. Each gateway includes Fully Qualified Domain Name (FQDN) filtering logic to restrict access of the computing devices to certain cloud-based storage elements in accordance with a security policy. The controller is configured to maintain and update the security policy utilized by each gateway of the plurality of gateways.

公开(公告)号：US20250106212A1

公开(公告)日：2025-03-27

申请号：US18974351

申请日：2024-12-09

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/66 ,  H04L67/1036

Abstract: In an embodiment, a secure object transfer system is described. The system features a virtual private cloud network (VPC) and a controller. The VPC includes a plurality of gateways and a network load balancer, which configured to conduct a load balancing scheme on access messages from computing devices deployed within an on-premises network to direct the access memory to one of the plurality of gateways for storage or retrieval of an object from a cloud-based storage element. Each gateway includes filtering logic to restrict access of the computing devices to certain cloud-based storage elements in accordance with a security policy. The controller is configured to maintain and update the security policy utilized by each gateway of the plurality of gateways.

公开(公告)号：US20250141847A1

公开(公告)日：2025-05-01

申请号：US19011511

申请日：2025-01-06

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1001 ,  H04L67/1097 ,  H04L67/50 ,  H04L67/51

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US20240048529A1

公开(公告)日：2024-02-08

申请号：US18378147

申请日：2023-10-10

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1097 ,  H04L67/51 ,  H04L67/50 ,  H04L67/1001

CPC classification number: H04L63/0272 ,  G06F9/455 ,  H04L63/102 ,  H04L63/08 ,  H04L63/20 ,  H04L12/4641 ,  H04L67/1097 ,  H04L63/04 ,  H04L67/51 ,  H04L67/535 ,  H04L67/1001

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US11784976B1

公开(公告)日：2023-10-10

申请号：US17010822

申请日：2020-09-02

Applicant: AVIATRIX SYSTEMS, INC.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1097 ,  H04L67/51 ,  H04L67/50 ,  H04L67/1001

CPC classification number: H04L63/0272 ,  G06F9/455 ,  H04L12/4641 ,  H04L63/04 ,  H04L63/08 ,  H04L63/102 ,  H04L63/20 ,  H04L67/1001 ,  H04L67/1097 ,  H04L67/51 ,  H04L67/535

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US12192177B2

公开(公告)日：2025-01-07

申请号：US18378147

申请日：2023-10-10

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath ,  Arvind Sreekumar

IPC: H04L9/40 ,  G06F9/455 ,  H04L12/46 ,  H04L67/1001 ,  H04L67/1097 ,  H04L67/50 ,  H04L67/51

Abstract: In one embodiment, a secure exchange system is described. The secure exchange system includes a virtual private cloud network and a controller. The virtual private cloud network includes a plurality of gateways, each gateway of the plurality of gateways is configured to generate one or more local directories. Each local directory of the one or more local directories representing one or more stored objects within a public cloud storage element. The controller is configured to authenticate a user prior to granting the user access to the virtual private cloud network. The gateways are accessible by the user over AWS Direct Connect, where the public cloud storage element is a S3 bucket.

公开(公告)号：US12166760B2

公开(公告)日：2024-12-10

申请号：US18111594

申请日：2023-02-19

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath

IPC: H04L29/06 ,  G06F9/455 ,  H04L9/40 ,  H04L12/66 ,  H04L67/1036

Abstract: In an embodiment, a secure object transfer system is described. The system features a virtual private cloud network (VPC) and a controller. The VPC includes a plurality of gateways and a network load balancer, which configured to conduct a load balancing scheme on access messages from computing devices deployed within an on-premises network to direct the access memory to one of the plurality of gateways for storage or retrieval of an object from a cloud-based storage element. Each gateway includes Fully Qualified Domain Name (FQDN) filtering logic to restrict access of the computing devices to certain cloud-based storage elements in accordance with a security policy. The controller is configured to maintain and update the security policy utilized by each gateway of the plurality of gateways.

公开(公告)号：US20240179133A1

公开(公告)日：2024-05-30

申请号：US18399698

申请日：2023-12-29

Applicant: Aviatrix Systems, Inc.

Inventor： Arvind Sreekumar ,  Ramakrishnan Kunnath ,  Xiaobo Sherry Wei

IPC: H04L9/40

CPC classification number: H04L63/0272 ,  H04L63/0236 ,  H04L63/0815 ,  H04L63/20

Abstract: A computerized method for establishing a secure channel between a virtual private network (VPN) client processing on a network device for a user and a network gateway is disclosed. The computerized method includes operations of the controller of transmitting an authentication request to an identity provider based on receipt of a resource request from the VPN client, receiving an authentication response from the identity provider, generating an authentication token based on the authentication response and transmitting the authentication token to the VPN client, wherein the controller further stores the authentication token. The method includes operations of the network gateway of receiving a secure connection request from the VPN client that includes the authentication token, validating the authentication token by querying the controller, in response to validation of the authentication token, establishing the secure connection with VPN client, and providing the VPN client with access to resources via the secure connection.

公开(公告)号：US20230198987A1

公开(公告)日：2023-06-22

申请号：US18111594

申请日：2023-02-19

Applicant: Aviatrix Systems, Inc.

Inventor： Xiaobo Sherry Wei ,  Ramakrishnan Kunnath

IPC: H04L9/40 ,  H04L67/1036 ,  G06F9/455 ,  H04L12/66

CPC classification number: H04L63/10 ,  H04L67/1036 ,  H04L63/0227 ,  H04L63/20 ,  G06F9/455 ,  H04L12/66

Abstract: In an embodiment, a secure object transfer system is described. The system features a virtual private cloud network (VPC) and a controller. The VPC includes a plurality of gateways and a network load balancer, which configured to conduct a load balancing scheme on access messages from computing devices deployed within an on-premises network to direct the access memory to one of the plurality of gateways for storage or retrieval of an object from a cloud-based storage element. Each gateway includes Fully Qualified Domain Name (FQDN) filtering logic to restrict access of the computing devices to certain cloud-based storage elements in accordance with a security policy. The controller is configured to maintain and update the security policy utilized by each gateway of the plurality of gateways.