公开(公告)号：US20160285916A1

公开(公告)日：2016-09-29

申请号：US15087599

申请日：2016-03-31

Applicant: salesforce.com, inc.

Inventor： Benjamin Fry ,  Timothy Kral ,  Simon Chen ,  Andrey Falko

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/0209 ,  H04L63/0227 ,  H04L63/0272 ,  H04L63/105

Abstract: A request message is generated with a trusted network entity executing trusted code on a first network layer. The request message to target a non-trusted network entity executing non-trusted code on a second network layer. The request message is transmitted from the trusted network entity to the non-trusted network entity through at least a policy enforcement entity. The policy enforcement entity applies one or more network traffic rules to enforce a unidirectional flow of traffic from the first network layer to the second network layer. A response check message is generated with the trusted network entity. The response check message to determine whether response information is available on the non-trusted network entity in response to the request message. The response check message is transmitted from the trusted network entity to the non-trusted network entity through at least the policy enforcement entity. The response check message to determine whether the response information is stored in a conceptual mailbox on the non-trusted network entity.

Abstract translation: 使用在第一网络层上执行可信代码的可信网络实体生成请求消息。 所述请求消息针对在第二网络层上执行不可信代码的不可信网络实体。 请求消息通过至少一个策略执行实体从可信网络实体发送到不可信网络实体。 策略执行实体应用一个或多个网络流量规则来强制从第一网络层到第二网络层的单向流量流。 利用可信网络实体产生响应检查消息。 所述响应检查消息用于响应于所述请求消息来确定所述不信任网络实体上的响应信息是否可用。 响应检查消息通过至少策略执行实体从可信网络实体发送到不可信网络实体。 响应检查消息以确定响应信息是否存储在不可信网络实体上的概念邮箱中。

公开(公告)号：US20200004660A1

公开(公告)日：2020-01-02

申请号：US16381108

申请日：2019-04-11

Applicant: salesforce.com, inc.

Inventor： Andrey Falko

IPC: G06F11/36

Abstract: Systems and methods are provided for receiving a code change at a continuous integration and continuous deployment (CICD) server system, generating a unique change identifier, generating a new code build which includes the code change, testing the generated new code build by performing a code trace for phase of testing or production environment based on at least one predetermined testing parameter that includes a predetermined trace time for the code change of the generated change identifier, and displaying test results for the change identifier for the phase of testing or production environment to visually highlight a pass or failure of the testing for the code change based on the predetermined testing parameter for the predetermined trace time.

公开(公告)号：US10303586B1

公开(公告)日：2019-05-28

申请号：US16025025

申请日：2018-07-02

Applicant: salesforce.com, inc.

Inventor： Andrey Falko

IPC: G06F11/36

Abstract: Systems and methods are provided for receiving a code change at a continuous integration and continuous deployment (CICD) server system, generating a unique change identifier, generating a new code build which includes the code change, testing the generated new code build by performing a code trace for phase of testing or production environment based on at least one predetermined testing parameter that includes a predetermined trace time for the code change of the generated change identifier, and displaying test results for the change identifier for the phase of testing or production environment to visually highlight a pass or failure of the testing for the code change based on the predetermined testing parameter for the predetermined trace time.

公开(公告)号：US20140289792A1

公开(公告)日：2014-09-25

申请号：US14225164

申请日：2014-03-25

Applicant: salesforce.com, inc.

Inventor： Benjamin Fry ,  Timothy Kral ,  Simon Chen ,  Andrey Falko

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/0209 ,  H04L63/0227 ,  H04L63/0272 ,  H04L63/105

Abstract: A request message is generated with a trusted network entity executing trusted code on a first network layer. The request message to target a non-trusted network entity executing non-trusted code on a second network layer. The request message is transmitted from the trusted network entity to the non-trusted network entity through at least a policy enforcement entity. The policy enforcement entity applies one or more network traffic rules to enforce a unidirectional flow of traffic from the first network layer to the second network layer. A response check message is generated with the trusted network entity. The response check message to determine whether response information is available on the non-trusted network entity in response to the request message. The response check message is transmitted from the trusted network entity to the non-trusted network entity through at least the policy enforcement entity. The response check message to determine whether the response information is stored in a conceptual mailbox on the non-trusted network entity.

Abstract translation: 使用在第一网络层上执行可信代码的可信网络实体生成请求消息。 所述请求消息针对在第二网络层上执行不可信代码的不可信网络实体。 请求消息通过至少一个策略执行实体从可信网络实体发送到不可信网络实体。 策略执行实体应用一个或多个网络流量规则来强制从第一网络层到第二网络层的单向流量流。 利用可信网络实体产生响应检查消息。 所述响应检查消息用于响应于所述请求消息来确定所述不信任网络实体上的响应信息是否可用。 响应检查消息通过至少策略执行实体从可信网络实体发送到不可信网络实体。 响应检查消息以确定响应信息是否存储在不可信网络实体上的概念邮箱中。

公开(公告)号：US10802951B2

公开(公告)日：2020-10-13

申请号：US16381108

申请日：2019-04-11

Applicant: salesforce.com, inc.

Inventor： Andrey Falko

IPC: G06F11/36

Abstract: Systems and methods are provided for receiving a code change at a continuous integration and continuous deployment (CICD) server system, generating a unique change identifier, generating a new code build which includes the code change, testing the generated new code build by performing a code trace for phase of testing or production environment based on at least one predetermined testing parameter that includes a predetermined trace time for the code change of the generated change identifier, and displaying test results for the change identifier for the phase of testing or production environment to visually highlight a pass or failure of the testing for the code change based on the predetermined testing parameter for the predetermined trace time.

公开(公告)号：US10182075B2

公开(公告)日：2019-01-15

申请号：US15087599

申请日：2016-03-31

Applicant: salesforce.com, inc.

Inventor： Benjamin Fry ,  Timothy Kral ,  Simon Chen ,  Andrey Falko

IPC: H04L29/06

Abstract: A request message is generated with a trusted network entity executing trusted code on a first network layer. The request message to target a non-trusted network entity executing non-trusted code on a second network layer. The request message is transmitted from the trusted network entity to the non-trusted network entity through at least a policy enforcement entity. The policy enforcement entity applies one or more network traffic rules to enforce a unidirectional flow of traffic from the first network layer to the second network layer. A response check message is generated with the trusted network entity. The response check message to determine whether response information is available on the non-trusted network entity in response to the request message. The response check message is transmitted from the trusted network entity to the non-trusted network entity through at least the policy enforcement entity. The response check message to determine whether the response information is stored in a conceptual mailbox on the non-trusted network entity.

公开(公告)号：US20200073781A1

公开(公告)日：2020-03-05

申请号：US16115801

申请日：2018-08-29

Applicant: salesforce.com, inc.

Inventor： Andrey Falko

IPC: G06F11/36 ,  G06F8/41

Abstract: Systems and methods are provided for performing, at a computing system, a code trace of at least a portion of computer code having a plurality of components that are executed by the computing system. A dependency map may be generated for the plurality of components of the computer code based on the code trace, the dependency map identifying at least an upstream component that is executed upstream of a first component of the plurality of components and a downstream component that is executed downstream of the first component. An observed failure rate may be determined of at least the first component, based on at least one of the upstream component and the downstream component. A fault tree analysis map that includes the generated dependency map and the observed failure rate of at least the first component of the plurality of components may be displayed on a display device.

公开(公告)号：US10051005B2

公开(公告)日：2018-08-14

申请号：US15087607

申请日：2016-03-31

Applicant: salesforce.com, inc.

Inventor： Benjamin Fry ,  Timothy Kral ,  Simon Chen ,  Andrey Falko

IPC: H04L29/06

Abstract: A request message is generated with a trusted network entity executing trusted code on a first network layer. The request message to target a non-trusted network entity executing non-trusted code on a second network layer. The request message is transmitted from the trusted network entity to the non-trusted network entity through at least a policy enforcement entity. The policy enforcement entity applies one or more network traffic rules to enforce a unidirectional flow of traffic from the first network layer to the second network layer. A response check message is generated with the trusted network entity. The response check message to determine whether response information is available on the non-trusted network entity in response to the request message. The response check message is transmitted from the trusted network entity to the non-trusted network entity through at least the policy enforcement entity. The response check message to determine whether the response information is stored in a conceptual mailbox on the non-trusted network entity.

公开(公告)号：US20160285917A1

公开(公告)日：2016-09-29

申请号：US15087607

申请日：2016-03-31

Applicant: salesforce.com, inc.

Inventor： Benjamin Fry ,  Timothy Kral ,  Simon Chen ,  Andrey Falko

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/0209 ,  H04L63/0227 ,  H04L63/0272 ,  H04L63/105

Abstract: A request message is generated with a trusted network entity executing trusted code on a first network layer. The request message to target a non-trusted network entity executing non-trusted code on a second network layer. The request message is transmitted from the trusted network entity to the non-trusted network entity through at least a policy enforcement entity. The policy enforcement entity applies one or more network traffic rules to enforce a unidirectional flow of traffic from the first network layer to the second network layer. A response check message is generated with the trusted network entity. The response check message to determine whether response information is available on the non-trusted network entity in response to the request message. The response check message is transmitted from the trusted network entity to the non-trusted network entity through at least the policy enforcement entity. The response check message to determine whether the response information is stored in a conceptual mailbox on the non-trusted network entity.

公开(公告)号：US09306906B2

公开(公告)日：2016-04-05

申请号：US14225164

申请日：2014-03-25

Applicant: salesforce.com, inc.

Inventor： Benjamin Fry ,  Timothy Kral ,  Simon Chen ,  Andrey Falko

IPC: H04L29/06

CPC classification number: H04L63/20 ,  H04L63/0209 ,  H04L63/0227 ,  H04L63/0272 ,  H04L63/105

Abstract: A request message is generated with a trusted network entity executing trusted code on a first network layer. The request message to target a non-trusted network entity executing non-trusted code on a second network layer. The request message is transmitted from the trusted network entity to the non-trusted network entity through at least a policy enforcement entity. The policy enforcement entity applies one or more network traffic rules to enforce a unidirectional flow of traffic from the first network layer to the second network layer. A response check message is generated with the trusted network entity. The response check message to determine whether response information is available on the non-trusted network entity in response to the request message. The response check message is transmitted from the trusted network entity to the non-trusted network entity through at least the policy enforcement entity. The response check message to determine whether the response information is stored in a conceptual mailbox on the non-trusted network entity.

Abstract translation: 使用在第一网络层上执行可信代码的可信网络实体生成请求消息。 所述请求消息针对在第二网络层上执行不可信代码的不可信网络实体。 请求消息通过至少一个策略执行实体从可信网络实体发送到不可信网络实体。 策略执行实体应用一个或多个网络流量规则来强制从第一网络层到第二网络层的单向流量流。 利用可信网络实体产生响应检查消息。 所述响应检查消息用于响应于所述请求消息来确定所述不信任网络实体上的响应信息是否可用。 响应检查消息通过至少策略执行实体从可信网络实体发送到不可信网络实体。 响应检查消息以确定响应信息是否存储在不可信网络实体上的概念邮箱中。