专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09876804B2 Method and system for detecting unauthorized access to and use of network resources 有权
公开(公告)号：US09876804B2
公开(公告)日：2018-01-23
申请号：US14058254
申请日：2013-10-20
申请人： Cyber-Ark Software Ltd.
发明人： Andrey Dulkin , Yair Sade , Roy Adar
IPC分类号： H04L29/06
CPC分类号： H04L63/1416 , H04L63/102 , H04L63/1466
摘要： Methods and systems are disclosed for detecting unauthorized actions associated with network resources, the actions including access to the resource and activity associated with the resource. The unauthorized actions are detected by analyzing action data of a client action associated with the network resource against credential retrieval data including records of authorized actions and/or procedures for performing an action associated with the network resource.

2. 发明申请

US20150271162A1 SYSTEMS AND METHODS FOR CONTROLLING SENSITIVE APPLICATIONS 审中-公开
标题翻译：用于控制敏感应用的系统和方法
公开(公告)号：US20150271162A1
公开(公告)日：2015-09-24
申请号：US14217649
申请日：2014-03-18
申请人： Cyber-Ark Software Ltd.
发明人： Andrey Dulkin , Erez Breiman , Yair Sade
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/105 , H04L63/1408 , H04L67/08 , H04L67/40
摘要： A method and system is provided for controlling a remote target application, including sensitive and privileged applications, via a remote application connection. The target application is executed with a set of credentials, different than those credentials submitted by the user to access the target application. The user, via a local client terminal, accesses the target application over the remote application connection, such that the user experience of interaction with the target application is similar to that of the target application running locally, while the target application is actually being run remotely. The execution is protected by the second set of credentials unknown to the user, thus preventing credential hijacking and various other threats to the sensitive application.
摘要翻译：提供了一种方法和系统，用于通过远程应用程序连接来控制包括敏感和特权的应用程序的远程目标应用程序。目标应用程序使用一组凭据执行，不同于用户提交的用于访问目标应用程序的凭据。用户通过本地客户终端通过远程应用程序连接访问目标应用程序，使得与目标应用程序交互的用户体验类似于本地运行的目标应用程序的体验，而目标应用程序实际上正在远程运行。执行由用户未知的第二组凭证保护，从而防止对敏感应用程序的凭据劫持和各种其他威胁。

3. 发明申请

US20150121461A1 METHOD AND SYSTEM FOR DETECTING UNAUTHORIZED ACCESS TO AND USE OF NETWORK RESOURCES WITH TARGETED ANALYTICS 审中-公开
标题翻译：用于检测未经授权的访问和使用具有指定分析的网络资源的方法和系统
公开(公告)号：US20150121461A1
公开(公告)日：2015-04-30
申请号：US14061835
申请日：2013-10-24
申请人： Cyber-Ark Software Ltd.
发明人： Andrey DULKIN , Yair Sade , Roy Adar , Aviram Shmueli
IPC分类号： H04L29/06
CPC分类号： H04L63/1408
摘要： Methods and systems are disclosed for detecting improper, and otherwise unauthorized actions, associated with network resources, the actions including access to the resource and activity associated with the resource. The unauthorized actions are detected by analyzing action data of user actions employing accounts managed by a privileged access management system and associated with a network resource against profiles and rules to discover anomalies and/or deviations from rules associated with the network resource or accounts.
摘要翻译：公开了用于检测与网络资源相关联的不正当的或未经授权的动作的方法和系统，所述动作包括对资源的访问和与资源相关联的活动。通过分析使用由特权访问管理系统管理并且与网络资源相关联的账户的用户动作的动作数据来检测未授权动作，以针对配置文件和规则来发现与网络资源或帐户相关联的规则的异常和/或偏离。

4. 发明授权

US09712548B2 Privileged analytics system 有权
公开(公告)号：US09712548B2
公开(公告)日：2017-07-18
申请号：US14524145
申请日：2014-10-27
申请人： Cyber-Ark Software Ltd.
发明人： Aviram Shmueli , Andrey Dulkin , Yair Sade , Assaf Weiss
IPC分类号： H04L29/06
CPC分类号： H04L63/1425
摘要： A computer-implemented method for determining whether a computer network is compromised by unauthorized activity on the computer network. The computer-implemented method comprises identifying a behavioral anomaly of an entity on the computer network, classifying the anomaly as a system event based on an assigned score for the anomaly being at least at a predetermined score threshold, updating an incident based on at least one common parameter between the system event and other system events which comprise the incident, each system event of the incident including an assigned score from when the event was an anomaly, updating a system status based on at least the incident, and assigning a system status score to the system status, and, determining whether the system status score is at least at a predetermined threshold system status score indicating that the computer network may be compromised.

5. 发明授权

US09699261B2 Monitoring sessions with a session-specific transient agent 有权
公开(公告)号：US09699261B2
公开(公告)日：2017-07-04
申请号：US14154200
申请日：2014-01-14
申请人： Cyber-Ark Software Ltd.
发明人： Yair Sade , Erez Breiman , Ran Stotsky , Andrey Dulkin
IPC分类号： G06F15/173 , H04L29/08 , H04L29/06 , H04L12/26
CPC分类号： H04L67/28 , H04L43/08 , H04L43/12 , H04L43/14 , H04L63/1408 , H04L63/20 , H04L67/14 , H04L67/141 , H04L67/22
摘要： A method of monitoring a session on a target system includes receiving from a user client a user request to open a session with the target system. A session-specific transient agent for monitoring the session is installed onto the target system. The session is established between the user and the target system over a communication network. The transient agent monitors the session, collects data of events occurring on the target system during the session. The transient agent is terminated when the session ends.

6. 发明授权

US09560067B2 Correlation based security risk identification 有权
标题翻译：基于相关性的安全风险识别
公开(公告)号：US09560067B2
公开(公告)日：2017-01-31
申请号：US15177367
申请日：2016-06-09
申请人： Cyber-Ark Software Ltd.
发明人： Andrey Dulkin , Denis Kamanovsky , Yoel Eilat , Yair Sade
IPC分类号： H04L29/06
CPC分类号： H04L63/1433 , G06F21/577 , H04L63/0807 , H04L63/083 , H04L63/20
摘要： Methods and systems are disclosed for identifying security risks, arising from credentials existing on machines in the networks that enable access to other machines on the networks. Account credentials indications are retrieved from machines in the network, which indicate that credentials for accounts are stored on those machines. Access rights for accounts are collected, describing the access and operation permissions of these accounts on machines in the networks. A correlation is then performed to identify machines that can be accessed by employing credentials of accounts retrieved from other machines in the network.
摘要翻译：公开了用于识别安全风险的方法和系统，该安全风险是由网络中存在于能够访问网络上的其他机器的机器上存在的凭证产生的。帐户凭据指示从网络中的机器检索，这表明帐户的凭据存储在这些机器上。收集帐户的访问权限，描述这些帐户在网络中的机器上的访问和操作权限。然后执行相关性以识别可以通过使用从网络中的其他机器检索的帐户的凭证来访问的机器。

7. 发明申请

US20150222639A1 Maintaining Continuous Operational Access Augmented with User Authentication and Action Attribution in Shared Environments 审中-公开
标题翻译：在共享环境中维护连续的操作访问，增强用户身份验证和操作归因
公开(公告)号：US20150222639A1
公开(公告)日：2015-08-06
申请号：US14110155
申请日：2013-10-01
申请人： Cyber-Ark Software Ltd.
发明人： Andrey Dulkin , Yair Sade
IPC分类号： H04L29/06 , G06F21/31
CPC分类号： H04L63/105 , G06F21/31 , G06F2221/2113 , H04L63/08 , H04L63/101 , H04L63/102
摘要： A system and method for maintaining continuous operational access augmented with user authentication and action attribution in shared environments. Multiple users use the same machine/platform to perform their actions. The system includes an access control application and enforcement module that limit users' actions based on authentication and authority level, enabling each user to perform the user's role in the shared environment. In addition, the user's activities can be monitored, logged, and interfered with (such as terminating the session), enabling a key requirement of action attribution.
摘要翻译：用于在共享环境中用户认证和操作归属来增强用于维持连续操作访问的系统和方法。多个用户使用相同的机器/平台执行其操作。该系统包括访问控制应用和执行模块，其基于认证和权限级别限制用户的动作，使得每个用户能够在共享环境中执行用户的角色。此外，用户的活动可以被监控，记录和干扰（例如终止会话），从而实现行动归属的关键要求。

8. 发明申请

US20150200821A1 MONITORING SESSIONS WITH A SESSION-SPECIFIC TRANSIENT AGENT 有权
标题翻译：监督会议与特定过渡代理
公开(公告)号：US20150200821A1
公开(公告)日：2015-07-16
申请号：US14154200
申请日：2014-01-14
申请人： Cyber-Ark Software Ltd.
发明人： Yair SADE , Erez BREIMAN , Ran STOTSKY , Andrey DULKIN
IPC分类号： H04L12/26 , H04L29/08
CPC分类号： H04L67/28 , H04L43/08 , H04L43/12 , H04L43/14 , H04L63/1408 , H04L63/20 , H04L67/14 , H04L67/141 , H04L67/22
摘要： A method of monitoring a session on a target system includes receiving from a user client a user request to open a session with the target system. A session-specific transient agent for monitoring the session is installed onto the target system. The session is established between the user and the target system over a communication network. The transient agent monitors the session, collects data of events occurring on the target system during the session. The transient agent is terminated when the session ends.
摘要翻译：监视目标系统上的会话的方法包括从用户客户端接收与目标系统打开会话的用户请求。用于监视会话的特定于会话的临时代理被安装到目标系统上。通过通信网络在用户和目标系统之间建立会话。临时代理监视会话，在会话期间收集目标系统上发生的事件的数据。当会话结束时，临时代理终止。

9. 发明授权

US08468594B2 Methods and systems for solving problems with hard-coded credentials 有权
标题翻译：用于解决硬编码凭证问题的方法和系统
公开(公告)号：US08468594B2
公开(公告)日：2013-06-18
申请号：US12029477
申请日：2008-02-12
申请人： Yair Sade , Roy Adar
发明人： Yair Sade , Roy Adar
IPC分类号： G06F7/04
CPC分类号： G06F21/33 , G06F21/41
摘要： The present invention discloses methods, media, and systems for handling hard-coded credentials, the system including: an interception module configured for: intercepting credential usage upon receiving an application request for application credentials in order to provide access to a host application; a configuration/settings module configured for reading system configurations and settings for handling the application credentials; a credential-mapping module configured for: applying appropriate credential-mapping logic based on the system configurations and settings; and upon determining that the application credentials need to be replaced, obtaining appropriate credentials from a secured storage. Preferably, the interception module is further configured for: prior to the intercepting, hooking a connection API of the host application upon access of a credential location in which the application credentials are stored; and wherein the credential-mapping module is further configured for: subsequent to the hooking, using the appropriate credentials to connect the host application with the connection API.
摘要翻译：本发明公开了用于处理硬编码凭证的方法，媒体和系统，该系统包括：拦截模块，被配置为：在接收到应用程序凭证的应用程序请求时拦截凭证使用，以便提供对主机应用程序的访问; 配置/设置模块，用于读取用于处理应用程序凭证的系统配置和设置; 凭证映射模块，其被配置为：基于所述系统配置和设置来应用适当的凭证映射逻辑; 并且在确定需要更换应用程序凭据之后，从安全存储中获得适当的凭证。优选地，拦截模块还被配置为：在拦截之前，在存储应用凭证的凭证位置的访问时钩住主机应用的连接API; 并且其中所述证书映射模块被进一步配置用于：在所述挂接之后，使用适当的证书将所述主机应用与所述连接API连接。

10. 发明申请

US20090119359A1 Server, computerized network including same, and method for increasing level of efficiency of a network 审中-公开
标题翻译：服务器，包括相同的计算机化网络，以及提高网络效率的方法
公开(公告)号：US20090119359A1
公开(公告)日：2009-05-07
申请号：US10599402
申请日：2005-03-29
申请人： Alon Cohen
发明人： Alon Cohen
IPC分类号： G06F15/16
CPC分类号： H04L63/0227
摘要： A data access engine 22, computerized system 20 and method 40 for increasing a level of efficiency of a network server are disclosed. Data access engine 22 located in first data processing machine 21 is capable of communication with at least one pseudo server 28 located in a second data processing machine 27 (i.e. LAN server 26). The physical separation between data access engine 22 and the server logic and interface of pseudo server 28 is a distinguishing characteristic of the invention. Any request for a subset of data stored in data access engine 22 must be routed through at least one pseudo server 28.
摘要翻译：公开了一种用于提高网络服务器的效率水平的数据访问引擎22，计算机化系统20和方法40。位于第一数据处理机21中的数据访问引擎22能够与位于第二数据处理机27（即LAN服务器26）中的至少一个伪服务器28进行通信。数据访问引擎22与伪服务器28的服务器逻辑和接口之间的物理分离是本发明的区别特征。对存储在数据访问引擎22中的数据子集的任何请求必须通过至少一个伪服务器28进行路由。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式