-
公开(公告)号:US12231442B2
公开(公告)日:2025-02-18
申请号:US17319326
申请日:2021-05-13
Applicant: Citrix Systems, Inc.
Inventor: Priya Bagaria , Kasirao Velugu , Thirumoorthi Thangamani , Ganesh Kathiresan
Abstract: Systems and methods of handling sessions between client devices and one or more server based on session classifications are provided. A device identifies a time series of security metrics corresponding to requests received during a session established by a client device to access a resource provided by one or more servers. The device generates security features from the time series of security metrics based on one or more time windows. The device classifies the session as one of anomalous or genuine using the security features generated from the time series of security metrics based on the one or more time windows. The device handles subsequent requests received during the session based on the classification of the session as the one of anomalous or genuine.
-
公开(公告)号:US11611535B2
公开(公告)日:2023-03-21
申请号:US17317538
申请日:2021-05-11
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Ganesh Kathiresan , Thirumoorthi Thangamani
IPC: H04L9/40
Abstract: Described embodiments provide systems and methods for selecting one or more firewall rules to apply to a server based at least on identifying a service of the server. A device intermediary to a plurality of clients and a serve may identify a pattern of a firewall to apply to a response from the server to a request from a client of the plurality of clients. The pattern may be to identify a service configured on the server. The device may determine that the response from the server matches the pattern. The device may identify, responsive to the response matching the pattern, that the service is configured on the server. The device may select, based at least on the service, one or more rules for the firewall to apply to responses from the server.
-
公开(公告)号:US20220368700A1
公开(公告)日:2022-11-17
申请号:US17319326
申请日:2021-05-13
Applicant: Citrix Systems, Inc.
Inventor: Priya Bagaria , Kasirao Velugu , Thirumoorthi Thangamani , Ganesh Kathiresan
Abstract: Systems and methods of handling sessions between client devices and one or more server based on session classifications are provided. A device identifies a time series of security metrics corresponding to requests received during a session established by a client device to access a resource provided by one or more servers. The device generates security features from the time series of security metrics based on one or more time windows. The device classifies the session as one of anomalous or genuine using the security features generated from the time series of security metrics based on the one or more time windows. The device handles subsequent requests received during the session based on the classification of the session as the one of anomalous or genuine.
-
公开(公告)号:US20220368672A1
公开(公告)日:2022-11-17
申请号:US17317538
申请日:2021-05-11
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Ganesh Kathiresan , Thirumoorthi Thangamani
IPC: H04L29/06
Abstract: Described embodiments provide systems and methods for selecting one or more firewall rules to apply to a server based at least on identifying a service of the server. A device intermediary to a plurality of clients and a serve may identify a pattern of a firewall to apply to a response from the server to a request from a client of the plurality of clients. The pattern may be to identify a service configured on the server. The device may determine that the response from the server matches the pattern. The device may identify, responsive to the response matching the pattern, that the service is configured on the server. The device may select, based at least on the service, one or more rules for the firewall to apply to responses from the server.
-
公开(公告)号:US20220360560A1
公开(公告)日:2022-11-10
申请号:US17307713
申请日:2021-05-04
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Ganesh Kathiresan , Thirumoorthi Thangamani
Abstract: Described embodiments provide systems and methods for generating firewall configuration profiles for firewalls. An intermediary device may modify a request from a client to access the server to include a payload provided by the device. The payload may include an action type selected from a plurality of action types used to probe the server for a corresponding security vulnerability of a plurality of security vulnerabilities. The device may transmit, to the server, the request including the payload to cause the server to provide a response to the device. The device may determine that the server is susceptible to a security vulnerability of the plurality of security vulnerabilities corresponding to the action type based at least on the response. The device may generate a configuration profile for the firewall to restrict requests of the action type to access the server from clients.
-
Patent Agency Ranking
公开(公告)号:US11411982B2
公开(公告)日:2022-08-09
申请号:US17034636
申请日:2020-09-28
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Thirumoorthi Thangamani , Ganesh Kathiresan
Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to extract, from a website vulnerability scanner log, a uniform resource locator (URL) and a vulnerability score and vulnerability classification associated with the URL. The at least one processor is further configured to generate an application vulnerability graph comprising connected nodes that are associated with a field of the URL. The nodes are labeled to indicate the associated field of the URL and color coded based on the vulnerability score. The nodes are also associated with the vulnerability classification. The at least one processor is further configured to enable or disable security protection against a user-selected vulnerability classification of a user-selected node by generating web application firewall security rules and/or web application firewall relaxation rules.
-
公开(公告)号:US20220103587A1
公开(公告)日:2022-03-31
申请号:US17034636
申请日:2020-09-28
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Thirumoorthi Thangamani , Ganesh Kathiresan
Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to extract, from a website vulnerability scanner log, a uniform resource locator (URL) and a vulnerability score and vulnerability classification associated with the URL. The at least one processor is further configured to generate an application vulnerability graph comprising connected nodes that are associated with a field of the URL. The nodes are labeled to indicate the associated field of the URL and color coded based on the vulnerability score. The nodes are also associated with the vulnerability classification. The at least one processor is further configured to enable or disable security protection against a user-selected vulnerability classification of a user-selected node by generating web application firewall security rules and/or web application firewall relaxation rules.
-
公开(公告)号:US12003526B2
公开(公告)日:2024-06-04
申请号:US17745476
申请日:2022-05-16
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Thirumoorthi Thangamani , Ganesh Kathiresan
CPC classification number: H04L63/1433 , H04L41/22 , H04L63/0236 , H04L63/1416 , H04L63/20
Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to extract, from a website vulnerability scanner log, a uniform resource locator (URL) and a vulnerability score and vulnerability classification associated with the URL. The at least one processor is further configured to generate an application vulnerability graph comprising connected nodes that are associated with a field of the URL. The nodes are labeled to indicate the associated field of the URL and color coded based on the vulnerability score. The nodes are also associated with the vulnerability classification. The at least one processor is further configured to enable or disable security protection against a user-selected vulnerability classification of a user-selected node by generating web application firewall security rules and/or web application firewall relaxation rules.
-
公开(公告)号:US11683291B2
公开(公告)日:2023-06-20
申请号:US17307713
申请日:2021-05-04
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Ganesh Kathiresan , Thirumoorthi Thangamani
CPC classification number: H04L63/0263 , G06N20/00 , H04L63/10 , H04L63/1433
Abstract: Described embodiments provide systems and methods for generating firewall configuration profiles for firewalls. An intermediary device may modify a request from a client to access the server to include a payload provided by the device. The payload may include an action type selected from a plurality of action types used to probe the server for a corresponding security vulnerability of a plurality of security vulnerabilities. The device may transmit, to the server, the request including the payload to cause the server to provide a response to the device. The device may determine that the server is susceptible to a security vulnerability of the plurality of security vulnerabilities corresponding to the action type based at least on the response. The device may generate a configuration profile for the firewall to restrict requests of the action type to access the server from clients.
-
公开(公告)号:US20220279011A1
公开(公告)日:2022-09-01
申请号:US17745476
申请日:2022-05-16
Applicant: Citrix Systems, Inc.
Inventor: Kasirao Velugu , Priya Bagaria , Thirumoorthi Thangamani , Ganesh Kathiresan
Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to extract, from a website vulnerability scanner log, a uniform resource locator (URL) and a vulnerability score and vulnerability classification associated with the URL. The at least one processor is further configured to generate an application vulnerability graph comprising connected nodes that are associated with a field of the URL. The nodes are labeled to indicate the associated field of the URL and color coded based on the vulnerability score. The nodes are also associated with the vulnerability classification. The at least one processor is further configured to enable or disable security protection against a user-selected vulnerability classification of a user-selected node by generating web application firewall security rules and/or web application firewall relaxation rules.
-
-
-
-
-
-
-
-
-
Search Results
10
records
(took 0.013 seconds)
