公开(公告)号：US20210211322A1

公开(公告)日：2021-07-08

申请号：US17208202

申请日：2021-03-22

Applicant: VMware, Inc.

Inventor： Suman ALUVALA ,  SIVASUBRAMANIAM SIVAKUMAR ,  BEN JOSEPH

IPC: H04L12/46 ,  G06F9/54 ,  H04L29/08

Abstract: Examples described herein include systems and methods for creating a per-app virtual private network (“VPN”) using hooking, even though an isolated process is used for networking functions. The isolated process can include networking functions of the WebView class for ANDROID. The application can start an HTTP proxy server to receive local HTTP requests. Then, the application can trigger a broadcast to the isolated process, causing the isolated process to route its HTTP requests to the HTTP proxy of the application. The application can then hook HTTP requests and send them to a virtual private network (“VPN”) tunnel server. This can allow an application to securely connect to enterprise files or data even though the networking functions occur in the isolated process.

公开(公告)号：US20220116379A1

公开(公告)日：2022-04-14

申请号：US17069869

申请日：2020-10-14

Applicant: VMware, Inc.

Inventor： Pavan Rajkumar RANGAIN ,  Suman ALUVALA ,  Arjun KOCHHAR ,  Amit Kumar YADAV

IPC: H04L29/06

Abstract: Example methods and systems for context-aware network policy enforcement are described. In one example, a computer system may detect a request for a client device to access a destination server. The computer system may extract, from the request, connection information identifying a connection to be established for the client device to access the destination server; and map the connection information to contextual information associated with the client device or a user operating the client device, or both. Based on the contextual information, the computer system may apply one or more network policies to determine whether to allow or deny access by the client device to the destination server. In response to determination to allow the access, a first response may be generated and sent to allow establishment of the connection. Otherwise, a second response may be generated and sent to block establishment of the connection.

公开(公告)号：US20200028714A1

公开(公告)日：2020-01-23

申请号：US16128548

申请日：2018-09-12

Applicant: VMWARE, INC.

Inventor： Suman ALUVALA ,  Sivasubramaniam SIVAKUMAR ,  Ben JOSEPH

IPC: H04L12/46 ,  H04L29/08 ,  G06F9/54

Abstract: Examples described herein include systems and methods for creating a per-app virtual private network (“VPN”) using hooking, even though an isolated process is used for networking functions. The isolated process can include networking functions of the WebView class for ANDROID. The application can start an HTTP proxy server to receive local HTTP requests. Then, the application can trigger a broadcast to the isolated process, causing the isolated process to route its HTTP requests to the HTTP proxy of the application. The application can then hook HTTP requests and send them to a virtual private network (“VPN”) tunnel server. This can allow an application to securely connect to enterprise files or data even though the networking functions occur in the isolated process.