-
公开(公告)号:US08782393B1
公开(公告)日:2014-07-15
申请号:US11420677
申请日:2006-05-26
IPC分类号: G06F21/00
CPC分类号: H04L63/166 , H04L63/0272 , H04L63/0281 , H04L63/045 , H04L63/061
摘要: A method, system, and apparatus are directed towards enabling access to payload by a third-party sent over an SSL session. The third-party may be a proxy situated between a client and a server. SSL handshake messages are sent between the client and the server to establish the SSL connection. As the SSL handshake messages are routed through the proxy, the proxy may extract data. In addition, one of the client or the server may send another message within, or out-of-band to, the series of SSL handshake message directly to the proxy. The other SSL message may include secret data that the proxy may use to generate a session key for the SSL connection. With the session key, the proxy may receive SSL messages over the SSL connection, modify and/or transpose the payload within the received SSL messages, and/or terminate the SSL connection at the proxy.
摘要翻译: 一种方法,系统和装置旨在使得能够通过SSL会话发送的第三方对负载进行访问。 第三方可以是位于客户端和服务器之间的代理。 在客户端和服务器之间发送SSL握手消息,建立SSL连接。 当SSL握手消息通过代理路由时,代理可以提取数据。 此外,客户端或服务器中的一个可以直接向该代理发送一系列SSL握手消息内或带外的另一消息。 另一SSL消息可以包括代理可用于生成用于SSL连接的会话密钥的秘密数据。 通过会话密钥,代理可以通过SSL连接接收SSL消息,修改和/或转发收到的SSL消息内的有效负载,和/或终止代理服务器上的SSL连接。
-
公开(公告)号:US07783781B1
公开(公告)日:2010-08-24
申请号:US11243629
申请日:2005-10-05
IPC分类号: G06F15/16 , G06F15/173
摘要: A method, system, and apparatus are directed towards compression of content over a network. The content may include content length information, such as within a header. In one embodiment, a portion of the content may be compressed to approximately fill a buffer of a predefined size. If there remains additional uncompressed content, a new content length may be determined based in part on the length of the compressed content and the remaining uncompressed content. The buffered content and the new content length may then be forwarded in response to the request. The remaining uncompressed content may be split into predefined blocks using identity compression. Identity compression may then be applied to the remaining uncompressed content which is then forwarded to a destination in response to the request.
摘要翻译: 一种方法,系统和装置旨在通过网络压缩内容。 内容可以包括内容长度信息,例如在标题内。 在一个实施例中,内容的一部分可以被压缩以大致填充预定大小的缓冲器。 如果仍然存在额外的未压缩内容,则可以部分地基于压缩内容的长度和剩余的未压缩内容来确定新的内容长度。 然后可以响应于该请求转发缓冲的内容和新的内容长度。 剩余的未压缩内容可以使用身份压缩分割成预定义的块。 然后,可以将身份压缩应用于剩余的未压缩内容,然后响应于请求将身份压缩转发到目的地。
-
公开(公告)号:US08611222B1
公开(公告)日:2013-12-17
申请号:US13592187
申请日:2012-08-22
IPC分类号: H04L12/28
CPC分类号: H04L69/321
摘要: A system, apparatus, and method are directed towards selectively combining data into a packet to modify a number of packets transmitted over a network based on a detection of a transaction boundary. If it is determined to concatenate the data, such concatenation may continue until an acknowledgement (ACK) is received, or a predetermined amount of data is concatenated in the packet, or a transaction boundary is detected. If at least one of these conditions is satisfied, concatenation may be inhibited, and the packet may be sent. Concatenation is then re-enabled. In one embodiment, Nagle's algorithm is used for concatenating data into a packet. In one embodiment, an ACK may be sent based on a write completion indicator included within a packet. Receipt of the ACK may disable concatenation.
-
公开(公告)号:US08477798B1
公开(公告)日:2013-07-02
申请号:US12969519
申请日:2010-12-15
IPC分类号: H04L12/54
CPC分类号: H04L47/365 , H04L49/90 , H04L69/32
摘要: A method, system, and apparatus are directed towards selectively concatenating data into a packet to modify a number of packets transmitted over a network based on a combination of network and/or send-queue metrics. In one embodiment, Nagle's algorithm is used for concatenating data into a packet. The concatenation may be selectively enabled based on heuristics applied to the combination of metrics. In one embodiment, the result may indicate that there should be a concatenation, or that data should be sent immediately, or that a current state for whether to concatenate or not should be maintained. The heuristics may include an expert system, decision tree, truth table, function, or the like. The heuristics may be provided by a user, or another computing device. In another embodiment, the concatenation may be enabled based on a conditional probability determined from the combination of metrics.
摘要翻译: 方法,系统和装置旨在将数据有选择地连接到分组中,以基于网络和/或发送队列度量的组合来修改通过网络传输的分组的数量。 在一个实施例中,Nagle的算法用于将数据连接到分组中。 可以基于应用于度量的组合的启发式来选择性地启用级联。 在一个实施例中,结果可以指示应该存在级联,或者应该立即发送数据,或者应当保持是否连接的当前状态。 启发式可以包括专家系统,决策树,真值表,功能等。 启发式可以由用户或另一种计算设备提供。 在另一个实施例中,可以基于从度量的组合确定的条件概率来启用级联。
-
公开(公告)号:US08125908B2
公开(公告)日:2012-02-28
申请号:US12326672
申请日:2008-12-02
IPC分类号: H04J1/16
CPC分类号: H04L47/10 , H04L47/2483
摘要: Adaptive network traffic classification using historical context. Network traffic may be monitored and classified by considering several attributes using packet filters, regular expressions, context-free grammars, rule sets, and/or protocol dissectors, among other means and by applying a variety of techniques such as signature matching and statistical analysis. Unlike static systems, the classification decisions may be reexamined from time to time or after subsequent processing determines that the traffic does not conform to the protocol specification corresponding to the classification decision. Historical context may be used to adjust the classification strategy for similar or related traffic.
摘要翻译: 使用历史背景的自适应网络流量分类。 网络流量可以通过考虑使用分组过滤器,正则表达式,无上下文语法,规则集和/或协议解析器等的几个属性以及通过应用诸如签名匹配和统计分析的各种技术来进行监视和分类。 与静态系统不同,分类决定可以不时地重新检查,或者在后续处理确定流量不符合与分类决定相对应的协议规范。 历史背景可用于调整类似或相关流量的分类策略。
-
公开(公告)号:US07979555B2
公开(公告)日:2011-07-12
申请号:US11679356
申请日:2007-02-27
IPC分类号: G06F15/16
CPC分类号: H04L67/14 , H04L29/06 , H04L67/142 , H04L67/145
摘要: A system and method for capture and resumption of network application sessions in a network system. A transaction may be detected between a client and server that includes application session state information. The session state information may relate to a session between the client and the server. The Application session state information may be recorded in response to the detection of the transaction, and the application session state information may not be deleted according to session information expiration policies (e.g., of the client). User input may be received which requests to review the captured network application session. Correspondingly, a network request comprising captured credentials of the captured session may be generated and forwarded to the server. The network request may be usable to enable resumption of the captured network application session.
摘要翻译: 一种用于在网络系统中捕获和恢复网络应用会话的系统和方法。 可以在包括应用会话状态信息的客户端和服务器之间检测到事务。 会话状态信息可以涉及客户端和服务器之间的会话。 可以响应于事务的检测来记录应用会话状态信息,并且可以不根据会话信息到期策略(例如,客户端)来删除应用会话状态信息。 可以接收用户输入哪个请求来查看所捕获的网络应用会话。 相应地,可以生成包括捕获的会话的捕获凭证的网络请求并将其转发到服务器。 网络请求可以用于使能捕获的网络应用会话的恢复。
-
公开(公告)号:US08189476B1
公开(公告)日:2012-05-29
申请号:US11925381
申请日:2007-10-26
IPC分类号: H04J3/16
CPC分类号: H04L47/125 , H04L47/127
摘要: A method, apparatus, and system are directed toward managing network traffic over a plurality of Open Systems Interconnection (OSI) Level 2 switch ports. A network traffic is received over the plurality of OSI Level 2 switch ports. At least a part of the network traffic is categorized into a flow. The categorization may be based on a IP address, an OSI Level 4 port, a protocol type, a Virtual Local Area Network (VLAN) number, or the like, associated with the network traffic. One of the plurality of OSI Level 2 switch ports is selected based on a load-balancing metric. The load-balancing metric may be a priority of the flow, a congestion characteristic, a prediction of a load usage for the flow, a combination thereof, or the like. A frame associated with the flow is sent over the selected one of the plurality of OSI Level 2 switch ports.
摘要翻译: 一种方法,装置和系统旨在通过多个开放系统互连(OSI)2级交换机端口来管理网络业务。 在多个OSI 2级交换机端口上接收网络流量。 网络流量的至少一部分被分为流。 分类可以基于与网络业务相关联的IP地址,OSI 4级端口,协议类型,虚拟局域网(VLAN)号码等。 基于负载均衡度量来选择多个OSI 2级交换机端口中的一个。 负载平衡度量可以是流的优先级,拥塞特性,流的负载使用的预测,其组合等。 与流相关联的帧通过多个OSI 2级交换机端口中的所选择的一个发送。
-
公开(公告)号:US08185953B2
公开(公告)日:2012-05-22
申请号:US11683643
申请日:2007-03-08
IPC分类号: H04L29/06
CPC分类号: H04L63/1416 , H04L63/1408
摘要: System and Method for detecting anomalous network application behavior. Network traffic between at least one client and one or more servers may be monitored. The client and the one or more servers may communicate using one or more application protocols. The network traffic may be analyzed at the application-protocol level to determine anomalous network application behavior. Analyzing the network traffic may include determining, for one or more communications involving the client, if the client has previously stored or received an identifier corresponding to the one or more communications. If no such identifier has been observed in a previous communication, then the one or more communications involving the client may be determined to be anomalous. A network monitoring device may perform one or more of the network monitoring, the information extraction, or the information analysis.
摘要翻译: 用于检测异常网络应用行为的系统和方法。 可以监视至少一个客户端与一个或多个服务器之间的网络流量。 客户端和一个或多个服务器可以使用一个或多个应用协议进行通信。 可以在应用协议级别分析网络流量,以确定异常的网络应用行为。 分析网络流量可以包括:如果客户端先前存储或接收到与一个或多个通信相对应的标识符,则对于涉及客户端的一个或多个通信来确定。 如果在先前的通信中没有观察到这样的标识符,则涉及客户端的一个或多个通信可以被确定为是异常的。 网络监视设备可以执行网络监控,信息提取或信息分析中的一个或多个。
-
公开(公告)号:US08024483B1
公开(公告)日:2011-09-20
申请号:US10957024
申请日:2004-10-01
IPC分类号: G06F15/173 , G06F15/16
摘要: A system, apparatus, and method selectively provides content compression to a client based, in part, on whether the network connection from the client is determined to be a high latency, low-bandwidth connection. The present invention gathers one or more network metrics associated with the connection from the client. In one embodiment, the metrics include estimated TCP metrics, including smoothed round trip time, maximum segment size (MSS), and bandwidth delay product (BWDP). These estimated network metrics are employed to make an application layer decision of whether the client connection is a high latency, low-bandwidth connection. If it is, then content may be selectively compressed virtually on the fly for transfer over the network connection. In one embodiment, the selective compression uses a content encoding compression feature of the HTTP protocol standard.
摘要翻译: 系统,装置和方法部分地基于来自客户机的网络连接是否被确定为高延迟低带宽连接,有选择地向客户端提供内容压缩。 本发明从客户端收集与该连接相关联的一个或多个网络度量。 在一个实施例中,度量包括估计的TCP度量,包括平滑的往返时间,最大段大小(MSS)和带宽延迟乘积(BWDP)。 采用这些估计的网络度量来做出应用层决定客户端连接是否是高延迟,低带宽连接。 如果是,则内容可以被虚拟地虚拟地选择性地压缩以通过网络连接传送。 在一个实施例中,选择性压缩使用HTTP协议标准的内容编码压缩特征。
-
公开(公告)号:US20090141634A1
公开(公告)日:2009-06-04
申请号:US12326672
申请日:2008-12-02
IPC分类号: H04L12/56
CPC分类号: H04L47/10 , H04L47/2483
摘要: Adaptive network traffic classification using historical context. Network traffic may be monitored and classified by considering several attributes using packet filters, regular expressions, context-free grammars, rule sets, and/or protocol dissectors, among other means and by applying a variety of techniques such as signature matching and statistical analysis. Unlike static systems, the classification decisions may be reexamined from time to time or after subsequent processing determines that the traffic does not conform to the protocol specification corresponding to the classification decision. Historical context may be used to adjust the classification strategy for similar or related traffic.
摘要翻译: 使用历史背景的自适应网络流量分类。 网络流量可以通过考虑使用分组过滤器,正则表达式,无上下文语法,规则集和/或协议解析器等的几个属性以及通过应用诸如签名匹配和统计分析的各种技术来进行监视和分类。 与静态系统不同,分类决定可以不时地重新检查,或者在后续处理确定流量不符合与分类决定相对应的协议规范。 历史背景可用于调整类似或相关流量的分类策略。
-
-
-
-
-
-
-
-
-
搜索结果
32 条记录 (耗时 0.026 秒)
