公开(公告)号：US20250168199A1

公开(公告)日：2025-05-22

申请号：US18949227

申请日：2024-11-15

Applicant: Sophos Limited

Inventor： Prashil Rakeshkumar Gupta ,  Radu-Mihal Dumitrean ,  Harsha A R ,  Richard John Baldry ,  Chang Cheng Chao ,  Catherine Costigan ,  Timothy James Couzins ,  Aleksander Derbenev ,  Barry Fitzgerald ,  Peter Anthony Gale ,  Robert Michael O'Donovan ,  Ipsit Senapati ,  Xiaodan Xia

IPC: H04L9/40 ,  H04L61/4511

Abstract: A secure web gateway for a cloud computing environment comprises a data plane component, comprising: a front-end domain name service (DNS) configured to receive an inbound DNS request and map an IP address of the DNS request to a policy identification value corresponding to a customer policy and a plurality of plugin modules utilized by the front-end DNS to process the DNS request according to the mapping of the IP address from which the DNS request originates to the policy identification value. The secure web gateway further comprises a control plane component that provides the customer policy to the front-end DNS and configures the IP address to permit access to a DNS service according to the customer policy.

公开(公告)号：US20240129277A1

公开(公告)日：2024-04-18

申请号：US18089997

申请日：2022-12-28

Applicant: Sophos Limited

Inventor： Robert Paul Andrews ,  Venkata Suresh Reddy Obulareddy ,  Harsha A R ,  Neha Parshottam Patel

IPC: H04L9/40 ,  H04L41/12 ,  H04L67/1036

CPC classification number: H04L63/0281 ,  H04L41/12 ,  H04L67/1036

Abstract: A cloud computing platform provides zero trust network access as a service to customers that maintain applications on-premises. In this context, the cloud computing platform may associate customers and/or applications with specific service proxies, and add an abstraction layer for network access that maps an alias domain for each customer and/or application to a network load balancer associated with the specific service proxies associated with the corresponding application(s). This approach advantageously simplifies the configuration of service proxies at the cloud computing platform by permitting dedicated relationships among network load balancers, specific service proxies, and specific applications, while concurrently reducing or avoiding the administrative burden on customers of updating network pointers when the clusters of service proxies are periodically reconfigured to adjust to varying user traffic.