专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

41. 发明授权

US08948193B2 Methods for intelligent NIC bonding and load-balancing 有权
标题翻译：智能NIC绑定和负载平衡的方法
公开(公告)号：US08948193B2
公开(公告)日：2015-02-03
申请号：US12193821
申请日：2008-08-19
申请人： Amnon Perlmutter , Benzi Waisman
发明人： Amnon Perlmutter , Benzi Waisman
IPC分类号： H04L12/56 , H04L12/947 , H04L12/803 , H04L12/935
CPC分类号： H04L49/25 , H04L47/125 , H04L49/3009
摘要： Methods, devices, and media for intelligent NIC bonding and load-balancing including the steps of: providing a packet at an incoming-packet port of a gateway; attaching an incoming-port identification, associated with the incoming-packet port, to the packet; routing the packet to a processing core; passing the packet through a gateway processing; sending the packet, by the core, to the operating system of a host system; and routing the packet to an outgoing-packet port of the gateway based on the incoming-port identification. Preferably, the gateway processing includes security processing of the packets. Preferably, the step of routing the packet to the outgoing-packet port is based solely on the incoming-port identification. Preferably, an outgoing-port identification, associated with the outgoing-packet port, has an identical bond-index to the incoming-port identification. Preferably, the gateway includes a plurality of incoming-packet ports, a plurality of respective incoming-port identifications, a plurality of processing cores, and a plurality of outgoing-packet ports.
摘要翻译：用于智能NIC绑定和负载平衡的方法，设备和介质，包括以下步骤：在网关的进入分组端口处提供分组; 将与进入分组端口相关联的入口标识附加到分组; 将数据包路由到处理核心; 通过网关处理传递数据包; 通过核心将分组发送到主机系统的操作系统; 以及基于所述入端口标识将所述分组路由到所述网关的输出分组端口。优选地，网关处理包括分组的安全处理。优选地，将分组路由到出站分组端口的步骤仅基于进入端口标识。优选地，与输出分组端口相关联的出端口标识对于入口标识具有相同的绑定索引。优选地，网关包括多个进入分组端口，多个相应的入口标识，多个处理核心和多个输出分组端口。

42. 发明申请

US20140351878A1 LOCATION-AWARE RATE-LIMITING METHOD FOR MITIGATION OF DENIAL-OF-SERVICE ATTACKS 有权
标题翻译：用于减轻服务质量攻击的定位速率限制方法
公开(公告)号：US20140351878A1
公开(公告)日：2014-11-27
申请号：US13900576
申请日：2013-05-23
申请人： Check Point Software Technologies Ltd.
发明人： Tamir Zegman , Ofer Barkai
IPC分类号： H04L29/06
CPC分类号： H04L63/0227 , H04L43/106 , H04L63/1458
摘要： A network component has a set of one or more rules, each of which has a match component and an action component. If an incoming packet maps to the match component of a rule, then the packet is handled according to the rule's action component. If the rule also includes a limit component, then if the packet maps to the rule's match component, a family history of the rule is updated, and the packet is handled according to the rule's action component only if the rule's family history satisfies the rule's limit component.
摘要翻译：网络组件具有一组一个或多个规则，每个规则具有匹配组件和动作组件。如果传入的分组映射到规则的匹配组件，则根据规则的动作组件来处理该分组。如果规则还包含限制组件，则如果分组映射到规则的匹配组件，则更新规则的家族历史，并且仅当规则的家族历史满足规则的限制时才根据规则的动作组件来处理分组零件。

43. 发明授权

US08646073B2 Detection of account hijacking in a social network 有权
标题翻译：检测社交网络中的帐户劫持
公开(公告)号：US08646073B2
公开(公告)日：2014-02-04
申请号：US13110017
申请日：2011-05-18
申请人： Gil Raviv
发明人： Gil Raviv
IPC分类号： G06F21/00 , G06F21/31 , H04L29/06 , H04L29/08
CPC分类号： G06F21/316 , G06F21/00 , G06F21/554 , H04L63/1425 , H04L67/02 , H04L67/306
摘要： To protect a user of a social network, the user's activity is monitored during a baseline monitoring period to determine a baseline activity record. If subsequently monitored activity of the user deviates sufficiently from the baseline activity record to indicate abuse (hijacking) of the user's account, the abuse is mitigated, for example by notifying the user of the abuse. Monitored activity includes posting links, updating statuses, sending messages, and changing a profile. Monitoring also includes logging times of the user activity. Monitoring anomalous profile changes does not need a baseline.
摘要翻译：为了保护社交网络的用户，在基线监视期间监视用户的活动以确定基线活动记录。如果用户随后监视的活动与基准活动记录充分偏离，以表示用户帐户的滥用（劫持），则可以减轻虐待行为，例如通知用户虐待。受监控的活动包括发布链接，更新状态，发送消息和更改配置文件。监控还包括用户活动的记录时间。监测异常情况变化不需要基线。

44. 发明授权

US08406233B2 Predictive synchronization for clustered devices 有权
标题翻译：集群设备的预测同步
公开(公告)号：US08406233B2
公开(公告)日：2013-03-26
申请号：US12876259
申请日：2010-09-07
申请人： Amir Erman , Amnon Perlmutter , Ben Zion Weissman
发明人： Amir Erman , Amnon Perlmutter , Ben Zion Weissman
IPC分类号： H04L12/28 , H04L12/56 , G06F15/173
CPC分类号： G06F11/1464 , H04L7/00 , H04L45/46 , H04L63/0218 , H04L67/1095 , H04L67/142 , H04L69/22 , H04L69/40
摘要： A method and system is provided for a scalable clustered system. The method and system may handle asynchronous traffic as well as session backup. In the method and system, a home cluster member having ownership of a local session predicts designation of a an other cluster member to receive a packet associated with the local session and sends appropriate state information or forwarding instruction to the other network member.
摘要翻译：为可扩展的集群系统提供了一种方法和系统。该方法和系统可以处理异步流量以及会话备份。在方法和系统中，具有本地会话所有权的归属集群成员预测指定另一个集群成员以接收与本地会话相关联的分组，并向其他网络成员发送适当的状态信息或转发指令。

45. 发明申请

US20120167212A1 METHODS FOR INSPECTING SECURITY CERTIFICATES BY NETWORK SECURITY DEVICES TO DETECT AND PREVENT THE USE OF INVALID CERTIFICATES 有权
标题翻译：网络安全设备检测安全证书的方法，以检测和防止使用无效证书
公开(公告)号：US20120167212A1
公开(公告)日：2012-06-28
申请号：US13411567
申请日：2012-03-04
申请人： Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
发明人： Guy Guzner , Ami Haviv , Danny Lieblich , Yahav Gal
IPC分类号： G06F21/00 , H04L29/06 , G06F11/00
CPC分类号： H04L63/0823 , H04L9/3268 , H04L63/1408
摘要： Disclosed are methods and media for inspecting security certificates. Methods include the steps of: scanning, by a network security device, messages of a security protocol between a server and a client system; detecting the messages having a security certificate; detecting suspicious security certificates from the messages; and aborting particular sessions of the security protocol associated with the suspicious certificates. Preferably, the step of scanning is performed only on messages of server certificate records. Preferably, the method further includes the step of sending an invalid-certificate notice to the server and the client system. Preferably, the step of detecting the suspicious certificates includes detecting a use of an incorrectly-generated private key for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting an unavailability of revocation information for the certificates. Preferably, the step of detecting the suspicious certificates includes detecting a use of an invalid cryptographic algorithm for the certificates.
摘要翻译：披露了检查安全证书的方法和媒体。方法包括以下步骤：由网络安全设备扫描服务器和客户端系统之间的安全协议的消息; 检测具有安全证书的消息; 从消息中检测可疑安全证书; 并中止与可疑证书相关联的安全协议的特定会话。优选地，仅对服务器证书记录的消息执行扫描步骤。优选地，该方法还包括向服务器和客户端系统发送无效证书通知的步骤。优选地，检测可疑证书的步骤包括检测证书的使用不正确生成的私钥。优选地，检测可疑证书的步骤包括检测证书的撤销信息的不可用性。优选地，检测可疑证书的步骤包括检测对证书的无效加密算法的使用。

46. 发明申请

US20050147037A1 Scan detection 审中-公开
标题翻译：扫描检测
公开(公告)号：US20050147037A1
公开(公告)日：2005-07-07
申请号：US11025983
申请日：2005-01-03
申请人： Uriel Maimon , Alon Kantor , Oded Dov
发明人： Uriel Maimon , Alon Kantor , Oded Dov
IPC分类号： G06F11/30 , G06F15/16 , H04L1/00 , H04L29/06
CPC分类号： H04L63/1425
摘要： A method for detecting a scan in network connections, each connection to a respective destination determined by a destination key and a destination parameter. For each of the connections, an active-connection entry is logged in a first table. The active-connection entry includes the destination key and the destination parameter. For each destination key entered in the first table, each active-connection entry is counted by: (i) entering in a second table a new-connection entry including the destination key, and (ii) assigning to the new-connection entry a use value; the use value equals a number of the active-connection entries with the destination key. A scan event is generated when the use value exceeds a previously determined new-connection-threshold. If the scan is an “address scan”, the destination key is a destination port and the destination parameter is a destination address (IP); and if the scan is a “port scan” then the destination key is a destination address and the destination parameter is a destination port.
摘要翻译：一种用于检测网络连接中的扫描的方法，每个连接到由目的地密钥和目的地参数确定的相应目的地。对于每个连接，活动连接条目记录在第一个表中。活动连接条目包括目的地密钥和目的地参数。对于在第一表中输入的每个目的地密钥，每个活动连接条目通过以下方式进行计数：（i）在第二表中输入包括目的地密钥的新连接条目，以及（ii）向新连接条目分配使用值; 使用值等于具有目的地密钥的活动连接条目的数量。当使用值超过先前确定的新连接阈值时，生成扫描事件。如果扫描是“地址扫描”，则目的地密钥是目的地端口，目的地参数是目的地址（IP）; 并且如果扫描是“端口扫描”，则目的地密钥是目的地址，目的地参数是目的地端口。

47. 发明公开

US20240015109A1 METADATA BASED EFFICIENT PACKET PROCESSING 审中-公开
公开(公告)号：US20240015109A1
公开(公告)日：2024-01-11
申请号：US17810856
申请日：2022-07-06
申请人： CHECK POINT SOFTWARE TECHNOLOGIES LTD.
发明人： Oren Markovitz
IPC分类号： H04L47/62 , H04L47/52 , H04L49/90 , H04L49/901
CPC分类号： H04L47/621 , H04L47/522 , H04L49/9042 , H04L49/901
摘要： A method and device are presented for decreasing processing cycles spent forwarding packets of a communication from receive queues to at least one transmit queue of a network interface controller. When received, packets are placed into a receive queue based on property(ies) of a leading packet. Buffer metadata including transmit information is associated with each communication. Processor circuitry transfers the packets from each of the receive queues to a transmit queue and the buffer metadata is used to determine how to transmit the packet and how to process the packet before transmission.

48. 发明公开

US20230401319A1 SYSTEM AND METHOD FOR PERFORMING HIERARCHICAL AND INCREMENTAL WORKLOAD SCANNING 审中-公开
公开(公告)号：US20230401319A1
公开(公告)日：2023-12-14
申请号：US17835066
申请日：2022-06-08
申请人： Check Point Software Technologies Ltd.
发明人： Ohad Tanami , Itay Harush
IPC分类号： G06F21/57 , G06F21/55 , G06F21/54 , G06F21/56
CPC分类号： G06F21/577 , G06F21/554 , G06F21/54 , G06F21/568
摘要： A computer executed method is presented for identifying security issues in a workload. The method identifies instance(s) of the workload and scans each instance for security vulnerabilities using hierarchical and incremental scanning. The hierarchical and incremental scan of each instance is performed by identifying as a base machine image a machine image that has previously been scanned for security vulnerabilities and that the instance originated from. The differences between the instance and the base machine image are then identified and scanned for security vulnerabilities.

49. 发明授权

US11843614B2 Methods and system for packet control and inspection in containers and meshed environments 有权
公开(公告)号：US11843614B2
公开(公告)日：2023-12-12
申请号：US17565491
申请日：2021-12-30
申请人： CHECK POINT SOFTWARE TECHNOLOGIES LTD.
发明人： Ilan Uriel
IPC分类号： H04L9/40 , H04L43/028 , G06F9/455
CPC分类号： H04L63/1408 , H04L43/028 , G06F9/455
摘要： An instantiated application includes both a runtime instantiation of an application image, and an administrative service operable to install in the instantiated application at least one security module during runtime of the instantiated application in a container. Prior to runtime, a design time agent can access the application image in a repository, examine the application image, and based on the examining, adding at least one security module to the application image prior to instantiation. During runtime, a runtime agent can query parameters of the container, such as static and dynamic variables available on the machine on which the container is running. The runtime agent processes these parameters in conjunction with predefined rules to determine an action such as starting, stopping, adding, and/or changing the security module, such as the method of packet inspection.

50. 发明授权

US11606375B2 Methods and systems for identifying malware enabled by automatically generated domain names 有权
公开(公告)号：US11606375B2
公开(公告)日：2023-03-14
申请号：US16896315
申请日：2020-06-09
申请人： CHECK POINT SOFTWARE TECHNOLOGIES LTD.
发明人： Aliaksandr Chailytko
IPC分类号： H04L29/06 , H04L29/12 , H04L9/40 , H04L61/3015 , H04L61/4511
摘要： Computerized methods and systems identify malware enabled by automatically generated domain names. An agent executes a malware, in a controlled environment, at a first temporal input value and a second temporal input value. A first set of domain names is generated in response to the execution at the first temporal input value. A second set of domain names is generated in response to the execution at the second temporal input value. The agent compares the first set of domain names with the second set of domain names to produce a comparison output metric.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式