专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US12058154B2 Real-time prevention of malicious content via dynamic analysis 有权
公开(公告)号：US12058154B2
公开(公告)日：2024-08-06
申请号：US17949796
申请日：2022-09-21
申请人： SONICWALL INC.
发明人： Senthil Cheetancheri , Alex Dubrovsky , Sachin Holagi
IPC分类号： H04L9/40 , G06F21/56
CPC分类号： H04L63/1416 , G06F21/567 , H04L63/0245 , H04L63/1433 , H04L63/1441 , H04L63/145
摘要： This disclosure is related to methods and apparatus used to for preventing malicious content from reaching a destination via a dynamic analysis engine may operate in real-time when packetized data is received. Data packets sent from a source computer may be received and be forwarded to an analysis computer that may monitor actions performed by executable program code included within the set of data packets when making determinations regarding whether the data packet set should be classified as malware. In certain instances all but a last data packet of the data packet set may also be sent to the destination computer while the analysis computer executes and monitors the program code included in the data packet set. In instances when the analysis computer identifies that the data packet set does include malware, the malware may be blocked from reaching the destination computer by not sending the last data packet to the destination computer.

2. 发明公开

US20240012907A1 CLOUD BASED JUST IN TIME MEMORY ANALYSIS FOR MALWARE DETECTION 审中-公开
公开(公告)号：US20240012907A1
公开(公告)日：2024-01-11
申请号：US18369926
申请日：2023-09-19
申请人： SONICWALL INC.
发明人： Aleksandr Dubrovsky , Soumyadipta Das , Senthilkumar Gopinathan Cheetancheri
IPC分类号： G06F21/56 , G06F21/53
CPC分类号： G06F21/566 , G06F21/53 , G06F21/561
摘要： Methods and apparatus consistent with the present disclosure may be performed by a Cloud computing device may use instrumentation code that remains transparent to an application program that the instrumentation code has been injected into, may perform deep packet inspection (DPI) on computer data, or identify a content rating associated with computer data. In certain instances, data sets that include executable code may be received via packetized communications or be received via other means, such as, receiving a file from a data store. The present technique allows one or more processors executing instrumentation code to monitor actions performed by the program code included in a received data set. Malware can be detected using exception handling to track memory allocations of the program code included in the received data set. Furthermore, access to content associated with malware, potential malware, or with inappropriate content ratings may be blocked.

3. 发明授权

US11550912B2 Detection of exploitative program code 有权
公开(公告)号：US11550912B2
公开(公告)日：2023-01-10
申请号：US16903060
申请日：2020-06-16
申请人： SONICWALL INC.
发明人： Soumyadipta Das , Sai Sravan Kumar Ganachari , Yao He , Aleksandr Dubrovsky
IPC分类号： G06F21/56
摘要： The present disclosure is directed to monitoring internal process memory of a computer at a time with program code executes. Methods and apparatus consistent with the present disclosure monitor the operation of program code with the intent of detecting whether received program inputs may exploit vulnerabilities that may exist in the program code at runtime. By detecting suspicious activity or malicious code that may affect internal process memory at run-time, methods and apparatus described herein identify suspected malware based on suspicious actions performed as program code executes. Runtime exploit detection may detect certain anomalous activities or chain of events in a potentially vulnerable application during execution. These events may be detected using instrumentation code when a regular code execution path of an application is deviated from.

4. 发明申请

US20210397473A1 METHOD OF CREATING HIGH AVAILABILITY FOR SINGLE POINT NETWORK GATEWAY USING CONTAINERS 有权
公开(公告)号：US20210397473A1
公开(公告)日：2021-12-23
申请号：US17350243
申请日：2021-06-17
申请人： SONICWALL INC.
发明人： Dong Xiang , Yunfeng Liu , Zhong Chen
IPC分类号： G06F9/48 , G06F9/46 , G06F9/50 , G06F9/445
摘要： Methods and apparatus consistent with the present disclosure may be used in environments where multiple different virtual sets of program instructions are executed by shared computing resources when different processes are performed in a virtual computing environment. Methods consistent with the present disclosure may be used to provide a form of redundancy that does not require two physically distinct computers. Such methods may use a set of physical hardware components and two or more sets of synchronized virtual gateway software. Architectural features of physical hardware components included in an apparatus consistent with the present disclosure may be abstracted from sets of virtual program code when one virtual software process backs up another virtual software process at the apparatus.

5. 发明授权

US10902122B2 Just in time memory analysis for malware detection 有权
公开(公告)号：US10902122B2
公开(公告)日：2021-01-26
申请号：US15890192
申请日：2018-02-06
申请人： SonicWALL Inc.
发明人： Soumyadipta Das , Aleksandr Dubrovsky , Igor Korsunsky , Atul Dhablania , John E. Gmuender
IPC分类号： G06F21/55 , G06F21/56
摘要： Methods and apparatus consistent with the present disclosure may use instrumentation code that remains transparent to an application program that the instrumentation code has been injected into. In certain instances, data sets that include executable code may be received via packetized communications or be received via other means, such as, receiving a file from a data store. The present technique allows one or more processors executing instrumentation code to monitor actions performed by the program code included in a received data set. Malware can be detected using exception handling to track memory allocations of the program code included in the received data set.

6. 发明申请

US20200344608A1 Instant Secure Wireless Network Setup 审中-公开
公开(公告)号：US20200344608A1
公开(公告)日：2020-10-29
申请号：US16397935
申请日：2019-04-29
申请人： SonicWALL Inc.
发明人： Zhuangzhi Duo , Atul Dhablania
IPC分类号： H04W12/08 , H04W80/10 , H04L29/06 , H04W60/00 , H04W12/06
摘要： The present disclosure relates to securely setting up mesh networks in a manner that does not require a physical network cable being attached to a wireless mesh device and that does not require transmitting unencrypted information wirelessly when a mesh network is setup. Methods and apparatus consistent with the present disclosure may allow a user to choose which mesh nodes can join a network and that user may specificity a custom profile that may include rules that may identify how mesh network identifiers are used, that identify passcodes/passphrases assigned to a particular network, may identify types of traffic that may be passed through particular 802.11 radio channels, or other parameters that may control how traffic is switched between devices in a particular wireless mesh network. This combined with dual factor verification and the use of different types of communication channels make wireless mesh networks easy to deploy and expand.

7. 发明申请

US20190182235A1 Dynamic Bypass 审中-公开
公开(公告)号：US20190182235A1
公开(公告)日：2019-06-13
申请号：US15834914
申请日：2017-12-07
申请人： SonicWALL Inc.
发明人： Raj Raman , Aleksandr Dubrovsky
IPC分类号： H04L29/06 , H04L29/08
摘要： Methods and apparatus consistent with the present disclosure may prevent a computer process from failing when a firewall located between a client device and a server identifies that a process at the firewall should be bypassed using fingerprint information associated with a connection attempt. When fingerprint information stored at a firewall matches previously received fingerprint information, the firewall may allow processes typically performed at the firewall to be bypassed, thereby, allowing communications to pass between the client device and the server without inspection. When that fingerprint information does not match previously received fingerprint information, the firewall may perform a process that causes the client device to fail the first connection attempt. Because of this, methods consistent with the present disclosure may allow communications from an application program to be passed through a firewall without relying on an ever growing list of trusted application programs.

8. 发明申请

US20170374062A1 PROXY-LESS SECURE SOCKETS LAYER (SSL) DATA INSPECTION 审中-公开
公开(公告)号：US20170374062A1
公开(公告)日：2017-12-28
申请号：US15685768
申请日：2017-08-24
申请人： SonicWall Inc.
发明人： Justin M. Brady , Aleksandr Dubrovsky , Boris Yanovsky
IPC分类号： H04L29/06 , H04L9/32
摘要： Some embodiments of proxy-less Secure Sockets Layer (SSL) data inspection have been presented. In one embodiment, a secured connection according to a secured network protocol between a client and a responder is setup via a gateway device, which is coupled between the client and the responder. The gateway device transparently intercepts data transmitted according to the secured network protocol between the client and the responder. Furthermore, the gateway device provides flow-control and retransmission of one or more data packets of the data without self-scheduling the packet retransmissions using timeouts and based on the packet retransmission logic of either the client-side or the responder side of the connection. The gateway device is further operable to perform security screening on the data.

9. 发明申请

US20160285824A1 FIREWALL MULTI-LEVEL SECURITY DYNAMIC HOST-BASED SANDBOX GENERATION FOR EMBEDDED URL LINKS 审中-公开
标题翻译：防火墙多层次安全动态主机基于SANDBOX生成嵌入式URL链接
公开(公告)号：US20160285824A1
公开(公告)日：2016-09-29
申请号：US14665315
申请日：2015-03-23
申请人： SonicWALL, Inc.
发明人： Hugo Vazquez Carames
IPC分类号： H04L29/06 , H04L29/08 , H04W12/08
CPC分类号： H04L67/02 , G06F21/53 , H04L63/0227 , H04L63/1441 , H04L63/168
摘要： A firewall may identify a uniform resource locator (URL) being transmitted to a user device, the URL link pointing to a host system. The firewall can then modify the URL link to point instead to a sandbox system. Once a user at the user device selects the URL link (e.g., by clicking or touching it in a browser), the firewall receives the user device's HTTP request and directs it to the sandbox system, which generates a new HTTP request that is then sent through the firewall to the host system. The host system then sends host content to the sandbox system instead of to the user device. The user device may then be presented with a representation of the host content as rendered at the sandbox system (e.g., through a remote desktop interface).
摘要翻译：防火墙可以标识正在发送到用户设备的统一资源定位符（URL），URL链接指向主机系统。然后，防火墙可以将URL链接修改为沙盒系统。一旦用户设备中的用户选择了URL链接（例如，通过在浏览器中点击或触摸它），防火墙将接收用户设备的HTTP请求并将其引导到沙盒系统，该沙箱系统生成一个新的HTTP请求，然后发送通过防火墙到主机系统。主机系统然后将主机内容发送到沙箱系统而不是用户设备。然后可以向用户设备呈现在沙盒系统（例如通过远程桌面界面）呈现的主机内容的表示。

10. 发明申请

US20160065551A1 SINGLE LOGIN AUTHENTICATION FOR USERS WITH MULTIPLE IPV4/IPV6 ADDRESSES 有权
标题翻译：用于多个IPV4 / IPV6地址的用户的单一登录认证
公开(公告)号：US20160065551A1
公开(公告)日：2016-03-03
申请号：US14473190
申请日：2014-08-29
申请人： SonicWALL, Inc.
发明人： Xiao Yu Huang , Zhong Chen , Yi Fei Hu , Riji Cai
IPC分类号： H04L29/06
CPC分类号： H04L63/0815 , H04L61/2007 , H04L63/102 , H04L67/42
摘要： Disclosed in the authentication and authorization of a client device to access a plurality of resources, requiring a user of a client device to enter only one set of login information. Authentication and authorization of a client device to access a plurality of resources after an initial set of login information is received by a networked computing environment. After the initial set of login information is received, a series of steps are performed that may be entirely transparent to the user of the client device.
摘要翻译：公开了客户机设备访问多个资源的认证和授权，要求客户端设备的用户仅输入一组登录信息。网络计算环境接收初始登录信息集之后客户端设备访问多个资源的认证和授权。在接收到初始登录信息之后，执行对客户端设备的用户可以是完全透明的一系列步骤。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式