-
公开(公告)号:US20230133809A1
公开(公告)日:2023-05-04
申请号:US18092543
申请日:2023-01-03
发明人: Seetharama Sarma Ayyadevara , Charles E. Gero , Stephan Benny , Pravin Tatti , Manoj Kumar , Seemant Choudhary , Robert Lauro Quiros , Priyatham Phani Srinath Adigopula , Poornima Venkatesha, Sr. , Sumeet Gupta
IPC分类号: H04L67/56 , H04L61/4511
摘要: A method of traffic forwarding and disambiguation through the use of local proxies and addresses. The technique leverages DNS to on-ramp traffic to a local proxy. The local proxy runs on the end user's device. According to a first embodiment, DNS is used to remap what would normally be a wide range of IP addresses to localhost based on 127.0.0.0/8 listening sockets, where the system can then listen for connections and data. In a second embodiment, a localhost proxy based on a TUN/TAP interface (or other packet interception method) with a user-defined CIDR range to which the local DNS server drives traffic is used. Requests on that local proxy are annotated (by adding data to the upstream connection).
-
公开(公告)号:US20230130418A1
公开(公告)日:2023-04-27
申请号:US17499986
申请日:2021-10-13
申请人: Cujo LLC
发明人: Syd Alam , Chris Griffiths , Santeri Kangas
IPC分类号: H04L61/4511
摘要: There is provided a method comprising receiving a domain name system (DNS) query from a client computing device, decrypting the DNS query by a DNS resolver device, and requesting reputation information related to the FQDN from an agent device of the router apparatus. If a matching FQDN is not found in a local database, the DNS query is allowed to proceed from the DNS resolver device to a cloud DNS resolver, the IP and MAC address of the client computing device are logged and mapped to the local database, the reputation information related to the FQDN is requested from a cloud FQDN server, and if the reputation information indicates that the FQDN should be blocked, the local database is updated with the reputation information and further queries to the FQDN are blocked..
-
公开(公告)号:US11632254B2
公开(公告)日:2023-04-18
申请号:US16899894
申请日:2020-06-12
申请人: McAfee, LLC.
IPC分类号: G06F15/16 , H04L9/32 , H04L9/14 , H04L61/58 , H04L61/4511 , G06F15/173
摘要: There is disclosed in one example a home router, including: a hardware platform including a processor and a memory; a local area network (LAN) interface; a data store including rules for domain name-based services; and instructions encoded within the memory to instruct the processor to: provision a certificate and key pair to provide domain name system (DNS) over hypertext transfer protocol secure (DoH) or DNS over transport layer security (DoT) services; receive on the LAN interface an encrypted DNS request; decrypt the DNS request; query the data store according to the DNS request; receive a rule for the DNS request; and execute the rule.
-
公开(公告)号:US11611623B2
公开(公告)日:2023-03-21
申请号:US17207574
申请日:2021-03-19
发明人: Robert Sayko , Anestis Karasaridis
IPC分类号: H04L67/146 , H04L67/306 , H04L61/4511
摘要: A method includes receiving, by a processing system of a user endpoint device, a network cookie directly from an internet service provider who provides a subscriber who is associated with the user endpoint device with connectivity to the internet, storing, by the processing system, the network cookie in a local memory of the user endpoint device, generating, by the processing system, a request to send to the Internet service provider, wherein the request comprises a request for an internet protocol address associated with a uniform resource locator of an internet content provider, attaching, by the processing system, the network cookie to the request, and sending, by the processing system, the request including the network cookie to the Internet service provider.
-
公开(公告)号:US11611567B2
公开(公告)日:2023-03-21
申请号:US17247253
申请日:2020-12-04
发明人: Dongbin Wang , Hui Zhi , Zhouyi Zhu , Xu Zhang , Jinqiao Shi , Yueming Lu , Zemin Zhou , Hui Wu , Kun Guo , Yaoyao Guo
IPC分类号: H04L9/40 , H04L9/32 , H04L61/4511 , H04L9/00
摘要: Embodiments disclosed herein provide a method and system for management and resolution of a blockchain-based top-level domain. The method comprises: a master node receiving request information for operations on top-level domain resource record from a requesting node, and encapsulating master node information and authenticated request information into a pre-preparation message; each normal node verifying the pre-preparation message, and after successful verification, generating a preparation message comprising request information, a request information verification identifier, and current node information; each node verifying the preparation message, when the number of authenticated preparation message sending nodes reaches a consensus threshold, adding an operation result corresponding to the request information to a new block in a local blockchain. The method ensures security of operations on top-level domain resource record stored in the block, resists top-level domain hijacking attacks, and provides consistent processing and storing of operations on top-level domain resource record by multiple nodes.
-
公开(公告)号:US20230083295A1
公开(公告)日:2023-03-16
申请号:US17878839
申请日:2022-08-01
申请人: CLOUDFLARE, INC.
发明人: Dani Grant
IPC分类号: H04L9/40 , H04L67/141 , H04L67/60 , H04L61/4511 , H04L61/5007 , H04L67/12 , G06F8/65
摘要: An Internet of Things (IoT) protection service at the network level is described. A secure session is established between an edge server and an IoT client that is requesting to send data to an IoT device. The edge server receives the request from the IoT client over the secure session instead of the IoT device directly because a Domain Name System (DNS) request for a unique fully qualified domain name assigned to the IoT device returns an IP address of the edge server instead of an IP address of the IoT device. The edge server analyzes the request to determine whether to transmit the request to the IoT device, including applying web application firewall rule(s) against the request. If the request does not trigger any rule, then the edge server transmits the request to the IoT device. If the request triggers any rule, then the edge server blocks the request.
-
7.发明授权公开(公告)号:US11606440B2
公开(公告)日:2023-03-14
申请号:US17226886
申请日:2021-04-09
发明人: Fabio Giannetti , Ryan Eschinger
IPC分类号: H04L67/51 , G06Q20/14 , H04L41/5054 , H04L43/12 , H04L61/4511
摘要: The disclosure herein describes using a monitoring tool and a management tool from a cloud native system to monitor and manage an application executing on a legacy system. Network addresses of services running in the application on the legacy systems are discovered. Based on the discovered addresses, a probe is configured for execution on the legacy system by a monitoring tool deployed on the legacy system to obtain metrics data associated with the services running on the legacy system, the metrics data representing execution loads of the application. A management tool deployed on the cloud native system receives the obtained metrics data. The management tool compares the metrics data to one or more performance thresholds associated with the application. Based on the comparison, the management tool adjusts a quantity of instances of the application running on the cloud native system, enabling the cloud native system to share the execution loads.
-
公开(公告)号:US11606338B2
公开(公告)日:2023-03-14
申请号:US17163019
申请日:2021-01-29
申请人: Netskope, Inc.
IPC分类号: H04L9/40 , H04L61/4511 , H04L67/53 , H04L67/563
摘要: Systems and methods for providing policy-controlled communication over the Internet are provided. A system may include a client endpoint function configured to execute on a client device while coupled to a first VPN tunnel, a service endpoint function that operates a remote service of a plurality of remote services, a gateway server including a first VPN termination point that authenticates and terminates the first VPN tunnel, a stitcher server including a second VPN termination point that authenticates and terminates a second VPN tunnel, and a mid-link server coupled to the first VPN tunnel and the second VPN tunnel. The mid-link server may include a plurality of Access Resource Servers (ARSs), and the gateway server and the stitcher server may communicate via a network connecting the plurality of ARSs.
-
公开(公告)号:US11604886B2
公开(公告)日:2023-03-14
申请号:US16610505
申请日:2018-05-02
IPC分类号: G06F21/60 , G06F21/55 , G06F21/85 , H04L9/40 , G06F16/27 , G06F16/182 , H04W12/128 , H04L61/4511 , G06F21/32 , G06F21/56 , G06F21/81 , G06F21/82 , G06F21/86 , H04L9/08 , H04L9/32 , H04L41/0806 , H04L41/00 , H04W4/80 , G06F21/88 , H04L9/00
摘要: The portable peripheral (1001) of communication with a data storage peripheral and a data network utilizing the internet protocol, comprises: a connector to mechanically connect and establish a removable wired connection between the peripheral and a portable terminal, a first means of wired bidirectional communication with the portable terminal, a second means of bidirectional communication with a data storage peripheral or a data network and a security unit protecting the communication between the portable terminal and the data storage peripheral or the data network, this communication being established between the first and the second means of communication.
-
公开(公告)号:US11601513B2
公开(公告)日:2023-03-07
申请号:US16659014
申请日:2019-10-21
IPC分类号: H04L67/52 , H04L61/4511 , H04L101/69
摘要: Aspects of the present disclosure involve a CDN utilizing a Direct Server Return (DSR) request command to create a tunnel from one content server to another content server of the CDN. Through the DSR tunnel, a request for content may be served from a content server that is more advantageous for the CDN for any number of reasons, such as from a content server that is logically closer to the content server. In determining when a DSR tunnel is created to provide the content, the CDN may access a database storing various information concerning the CDN, such as the location of egress gateways of the CDN in relation to one or more content servers, connecting network location information, the capabilities of one or more content servers, and/or load information of available content servers.
-
-
-
-
-
-
-
-
-
搜索结果
668 条记录 (耗时 0.034 秒)
