公开(公告)号：US20100125903A1

公开(公告)日：2010-05-20

申请号：US12274222

申请日：2008-11-19

申请人： Srikanth Devarajan ,  Alex Motyashov ,  Manoj Apte ,  Sivaprasad Udupa

发明人： Srikanth Devarajan ,  Alex Motyashov ,  Manoj Apte ,  Sivaprasad Udupa

IPC分类号： G06F15/173

CPC分类号： H04L63/102 ,  G06F21/577 ,  G06F2221/2141

摘要： Systems, methods and apparatus for tunneling in a cloud based security system. Management of tunnels, such as data tunnels, between enterprises and processing nodes for a security service is facilitate by the use of virtual gateway nodes and migration failover to minimize traffic impacts when a tunnel is migrated from one processing node to another processing node.

摘要翻译： 用于基于云的安全系统中隧道的系统，方法和装置。 通过使用虚拟网关节点和迁移故障转移来管理隧道，如数据隧道，企业和处理节点之间的隧道，可以通过隧道从一个处理节点迁移到另一个处理节点来最大限度地减少流量影响。

公开(公告)号：US08010085B2

公开(公告)日：2011-08-30

申请号：US12274222

申请日：2008-11-19

申请人： Manoj Apte ,  Sivprasad Udupa ,  Alex Motyashov ,  Srikanth Devarajan

发明人： Manoj Apte ,  Sivprasad Udupa ,  Alex Motyashov ,  Srikanth Devarajan

IPC分类号： H04M1/66

CPC分类号： H04L63/102 ,  G06F21/577 ,  G06F2221/2141

摘要： Systems, methods and apparatus for tunneling in a cloud based security system. Management of tunnels, such as data tunnels, between enterprises and processing nodes for a security service is facilitate by the use of virtual gateway nodes and migration failover to minimize traffic impacts when a tunnel is migrated from one processing node to another processing node.

摘要翻译： 用于基于云的安全系统中隧道的系统，方法和装置。 通过使用虚拟网关节点和迁移故障转移来管理隧道，如数据隧道，企业和处理节点之间的隧道，可以通过隧道从一个处理节点迁移到另一个处理节点来最大限度地减少流量影响。

公开(公告)号：US09531758B2

公开(公告)日：2016-12-27

申请号：US14712154

申请日：2015-05-14

申请人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

发明人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

IPC分类号： H04L29/06 ,  H04L29/08 ,  H04L29/12 ,  G06F21/51 ,  G06F21/56 ,  G06F17/30

CPC分类号： H04L63/20 ,  G06F17/30289 ,  G06F21/51 ,  G06F21/56 ,  H04L61/2007 ,  H04L63/0281 ,  H04L63/08 ,  H04L63/105 ,  H04L67/02

摘要： A cloud-based secure Web gateway, a cloud-based secure Web method, and a network deliver a secure Web gateway (SWG) as a cloud-based service to organizations and provide dynamic user identification and policy enforcement therein. As a cloud-based service, the SWG systems and methods provide scalability and capability of accommodating multiple organizations therein with proper isolation therebetween. There are two basic requirements for the cloud-based SWG: (i) Having some means of forwarding traffic from the organization or its users to the SWG nodes, and (ii) Being able to authenticate the organization and users for policy enforcement and access logging. The SWG systems and methods dynamically associate traffic to users regardless of the source (device, location, encryption, application type, etc.), and once traffic is tagged to a user/organization, various polices can be enforced and audit logs of user access can be maintained.

公开(公告)号：US09065800B2

公开(公告)日：2015-06-23

申请号：US13728631

申请日：2012-12-27

申请人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

发明人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

IPC分类号： H04L29/06 ,  G06F21/51 ,  G06F21/56

CPC分类号： H04L63/0227 ,  G06F21/51 ,  G06F21/56 ,  H04L63/168

摘要： A cloud-based secure Web gateway, a cloud-based secure Web method, and a network deliver a secure Web gateway (SWG) as a cloud-based service to organizations and provide dynamic user identification and policy enforcement therein. As a cloud-based service, the SWG systems and methods provide scalability and capability of accommodating multiple organizations therein with proper isolation therebetween. There are two basic requirements for the cloud-based SWG: (i) Having some means of forwarding traffic from the organization or its users to the SWG nodes, and (ii) Being able to authenticate the organization and users for policy enforcement and access logging. The SWG systems and methods dynamically associate traffic to users regardless of the source (device, location, encryption, application type, etc.), and once traffic is tagged to a user/organization, various polices can be enforced and audit logs of user access can be maintained.

摘要翻译： 基于云的安全Web网关，基于云的安全Web方法和网络向组织提供作为基于云的服务的安全Web网关（SWG），并在其中提供动态用户标识和策略实施。 作为基于云的服务，SWG系统和方法提供了可扩展性和容纳多个组织的能力，其间具有适当的隔离。 基于云的SWG有两个基本要求：（i）具有将流量从组织或其用户转发到SWG节点的方法，以及（ii）能够对组织和用户进行身份验证以进行策略执行和访问日志记录 。 无论源（设备，位置，加密，应用程序类型等），SWG系统和方法都会将流量动态地关联到用户，一旦流量被标记给用户/组织，就可以执行各种策略并审核用户访问日志 可以维护。

公开(公告)号：US20140026179A1

公开(公告)日：2014-01-23

申请号：US13728631

申请日：2012-12-27

申请人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

发明人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

IPC分类号： H04L29/06

CPC分类号： H04L63/0227 ,  G06F21/51 ,  G06F21/56 ,  H04L63/168

摘要： A cloud-based secure Web gateway, a cloud-based secure Web method, and a network deliver a secure Web gateway (SWG) as a cloud-based service to organizations and provide dynamic user identification and policy enforcement therein. As a cloud-based service, the SWG systems and methods provide scalability and capability of accommodating multiple organizations therein with proper isolation therebetween. There are two basic requirements for the cloud-based SWG: (i) Having some means of forwarding traffic from the organization or its users to the SWG nodes, and (ii) Being able to authenticate the organization and users for policy enforcement and access logging. The SWG systems and methods dynamically associate traffic to users regardless of the source (device, location, encryption, application type, etc.), and once traffic is tagged to a user/organization, various polices can be enforced and audit logs of user access can be maintained.

摘要翻译： 基于云的安全Web网关，基于云的安全Web方法和网络向组织提供作为基于云的服务的安全Web网关（SWG），并在其中提供动态用户标识和策略实施。 作为基于云的服务，SWG系统和方法提供了可扩展性和容纳多个组织的能力，其间具有适当的隔离。 基于云的SWG有两个基本要求：（i）具有将流量从组织或其用户转发到SWG节点的方法，以及（ii）能够对组织和用户进行身份验证以进行策略执行和访问日志记录 。 无论源（设备，位置，加密，应用程序类型等），SWG系统和方法都会将流量动态地关联到用户，一旦流量被标记给用户/组织，就可以执行各种策略并审核用户访问日志 可以维护。

公开(公告)号：US20150326613A1

公开(公告)日：2015-11-12

申请号：US14712154

申请日：2015-05-14

申请人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

发明人： Srikanth Devarajan ,  Sridhar Narasimhan ,  Amit Sinha ,  Manoj Apte

IPC分类号： H04L29/06 ,  H04L29/12 ,  H04L29/08

CPC分类号： H04L63/20 ,  G06F17/30289 ,  G06F21/51 ,  G06F21/56 ,  H04L61/2007 ,  H04L63/0281 ,  H04L63/08 ,  H04L63/105 ,  H04L67/02

摘要： A cloud-based secure Web gateway, a cloud-based secure Web method, and a network deliver a secure Web gateway (SWG) as a cloud-based service to organizations and provide dynamic user identification and policy enforcement therein. As a cloud-based service, the SWG systems and methods provide scalability and capability of accommodating multiple organizations therein with proper isolation therebetween. There are two basic requirements for the cloud-based SWG: (i) Having some means of forwarding traffic from the organization or its users to the SWG nodes, and (ii) Being able to authenticate the organization and users for policy enforcement and access logging. The SWG systems and methods dynamically associate traffic to users regardless of the source (device, location, encryption, application type, etc.), and once traffic is tagged to a user/organization, various polices can be enforced and audit logs of user access can be maintained.

摘要翻译： 基于云的安全Web网关，基于云的安全Web方法和网络向组织提供作为基于云的服务的安全Web网关（SWG），并在其中提供动态用户标识和策略实施。 作为基于云的服务，SWG系统和方法提供了可扩展性和容纳多个组织的能力，其间具有适当的隔离。 基于云的SWG有两个基本要求：（i）具有将流量从组织或其用户转发到SWG节点的方法，以及（ii）能够对组织和用户进行身份验证以进行策略执行和访问日志记录 。 无论源（设备，位置，加密，应用程序类型等），SWG系统和方法都会将流量动态地关联到用户，一旦流量被标记给用户/组织，就可以执行各种策略并审核用户访问日志 可以维护。

公开(公告)号：US08259571B1

公开(公告)日：2012-09-04

申请号：US12732858

申请日：2010-03-26

申请人： Jose Raphel ,  Kailash Kailash ,  Srikanth Devarajan

发明人： Jose Raphel ,  Kailash Kailash ,  Srikanth Devarajan

IPC分类号： G01R31/08

CPC分类号： H04L61/2535 ,  H04L61/2592

摘要： Systems, methods and apparatus for tunneling in a cloud based security system. A multi-tenant cloud-based security system that can distinguish between client computing devices with overlapping private IP addresses is disclosed. Client devices communicate through a processing node to which a tunnel is established. The processing node is able to detect the client devices and apply security policies to the device.

摘要翻译： 用于基于云的安全系统中隧道的系统，方法和装置。 公开了一种可以区分具有重叠专用IP地址的客户端计算设备的多租户基于云的安全系统。 客户端设备通过建立隧道的处理节点进行通信。 处理节点能够检测客户端设备并对设备应用安全策略。

公开(公告)号：US08185510B2

公开(公告)日：2012-05-22

申请号：US13016158

申请日：2011-01-28

申请人： Jay Chaudhry ,  Arcady V. Schekochikhin ,  Srikanth Devarajan ,  Narinder Paul ,  Kailash Kailash

发明人： Jay Chaudhry ,  Arcady V. Schekochikhin ,  Srikanth Devarajan ,  Narinder Paul ,  Kailash Kailash

IPC分类号： G06F7/00

CPC分类号： G06F21/552 ,  G06F21/577 ,  G06F21/6218 ,  H04L63/0218 ,  H04L63/10 ,  H04L63/1408 ,  H04L63/1441

摘要： Systems, methods and apparatus for a distributed security that provides security processing external to a network edge. The system can include many distributed processing nodes and one or more authority nodes that provide security policy data, threat data, and other security data to the processing nodes. The processing nodes detect and stop the distribution of malware, spyware and other undesirable content before such content reaches the destination network and computing systems.

摘要翻译： 用于分布式安全性的系统，方法和设备，为网络边缘提供安全处理。 该系统可以包括向处理节点提供安全策略数据，威胁数据和其他安全数据的许多分布式处理节点和一个或多个权限节点。 处理节点在此类内容到达目标网络和计算系统之前检测并停止恶意软件，间谍软件和其他不需要的内容的分发。

公开(公告)号：US20100235374A1

公开(公告)日：2010-09-16

申请号：US12790400

申请日：2010-05-28

申请人： Henk Bots ,  Srikanth Devarajan ,  Saravana Annamalaisami

发明人： Henk Bots ,  Srikanth Devarajan ,  Saravana Annamalaisami

IPC分类号： G06F17/30

CPC分类号： H04L67/06 ,  G06F17/2211 ,  H04L67/1097 ,  Y10S707/99948 ,  Y10S707/99955 ,  Y10S707/99956

摘要： Systems and methods for reducing file sizes for files delivered over a network are disclosed. A method comprises receiving a first file comprising sequences of data; creating a hash table having entries corresponding to overlapping sequences of data; receiving a second file comprising sequences of data; comparing each of the sequences of data in the second file to the sequences of data in the hash table to determine sequences of data present in both the first and second files; and creating a third file comprising sequences of data from the second file and representations of locations and lengths of said sequences of data present in both the first and second files.

摘要翻译： 公开了用于减少通过网络传送的文件的文件大小的系统和方法。 一种方法包括：接收包括数据序列的第一文件; 创建具有对应于重叠数据序列的条目的哈希表; 接收包括数据序列的第二文件; 将第二文件中的数据序列中的每一个与散列表中的数据序列进行比较，以确定存在于第一和第二文件中的数据序列; 以及创建包括来自所述第二文件的数据序列的第三文件以及存在于所述第一和第二文件中的所述数据序列的位置和长度的表示。

公开(公告)号：US07756826B2

公开(公告)日：2010-07-13

申请号：US11428058

申请日：2006-06-30

申请人： Henk Bots ,  Srikanth Devarajan ,  Saravana Annamalaisami

发明人： Henk Bots ,  Srikanth Devarajan ,  Saravana Annamalaisami

IPC分类号： G06F17/30

CPC分类号： H04L67/06 ,  G06F17/2211 ,  H04L67/1097 ,  Y10S707/99948 ,  Y10S707/99955 ,  Y10S707/99956

摘要： Systems and methods for reducing file sizes for files delivered over a network are disclosed. A method comprises receiving a first file comprising sequences of data; creating a hash table having entries corresponding to overlapping sequences of data; receiving a second file comprising sequences of data; comparing each of the sequences of data in the second file to the sequences of data in the hash table to determine sequences of data present in both the first and second files; and creating a third file comprising sequences of data from the second file and representations of locations and lengths of said sequences of data present in both the first and second files.

摘要翻译： 公开了用于减少通过网络传送的文件的文件大小的系统和方法。 一种方法包括：接收包括数据序列的第一文件; 创建具有对应于重叠数据序列的条目的哈希表; 接收包括数据序列的第二文件; 将第二文件中的数据序列中的每一个与散列表中的数据序列进行比较，以确定存在于第一和第二文件中的数据序列; 以及创建包括来自所述第二文件的数据序列的第三文件以及存在于所述第一和第二文件中的所述数据序列的位置和长度的表示。