专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US11003779B2 Continuous database security and compliance 有权
公开(公告)号：US11003779B2
公开(公告)日：2021-05-11
申请号：US17037708
申请日：2020-09-30
申请人： Imperva, Inc.
发明人： Avidan Reich , Amichai Shulman , Michael Cherny
IPC分类号： H04L29/06 , G06F21/57 , G06F16/21 , G06F21/56
摘要： A method by a security system for selectively triggering different ones of a plurality of database assessment scans for a database and detecting when non-compliant database configurations of the database are being used. The method includes monitoring for occurrences of a first class of database operations, responsive to detecting an occurrence of one or more database operations of the first class, selecting one or more subsets of the plurality of database assessment scans to be rerun, triggering performance of only the selected one or more of the subsets, identifying one or more non-compliant database configurations of the database based on accessing results of the selected one or more of the subsets, determining one or more security rules for detecting occurrences of database operations that make use of the identified one or more non-compliant database configurations, and applying the determined one or more security rules.

2. 发明授权

US10824730B2 Continuous database security and compliance 有权
公开(公告)号：US10824730B2
公开(公告)日：2020-11-03
申请号：US16109465
申请日：2018-08-22
申请人： Imperva, Inc.
发明人： Avidan Reich , Amichai Shulman , Michael Cherny
IPC分类号： H04L29/06 , G06F21/57 , G06F21/56 , G06F16/21
摘要： A method implemented by a security system for selectively triggering different ones of a plurality of database assessment scans for a database The method includes monitoring for occurrences of a first class of database operations that have been determined to require only rerunning subsets of the plurality of database assessment scans to determine whether results of the plurality of database assessment scan shave changed, responsive to detecting an occurrence of one or more database operations of the first class, selecting one or more of the subsets to be rerun based on which of the database operations of the first class occurred, and triggering performance of only the selected one or more of the subsets to determine whether the results of the plurality of database assessment scans have changed.

3. 发明申请

US20150135266A1 COMPROMISED INSIDER HONEY POTS USING REVERSE HONEY TOKENS 有权
标题翻译：使用反向HONEY TOKENS的压缩内脏蜂蜜点
公开(公告)号：US20150135266A1
公开(公告)日：2015-05-14
申请号：US14600855
申请日：2015-01-20
申请人： Imperva, Inc.
发明人： Amichai Shulman , Michael Cherny , Sagie Dulce
IPC分类号： H04L29/06
CPC分类号： H04L63/1491 , H04L63/0263 , H04L63/1416 , H04L63/20
摘要： According to one embodiment, a method for setting a trap to detect that an intruder has compromised a client end station (CES) in an attempt to gain unauthorized access to enterprise data provided by a server is described. The method includes causing a honey token to be placed on the CES secluded within a configuration repository, wherein the honey token is metadata and/or instructions indicating how applications can seemingly access the enterprise data but that is actually invalid, and the honey token is placed on the CES and not on the server. The method also includes causing attribute values to be installed on a security gateway for a security rule causing the security gateway to monitor network traffic for attempted use of the honey token, and to generate an alert when a set of one or more packets that include the honey token are received.
摘要翻译：根据一个实施例，描述了一种用于设置陷阱以检测入侵者已经破坏了客户端站（CES）以尝试获得未经授权的访问由服务器提供的企业数据的方法。该方法包括使蜂蜜令牌放置在配置库内隐藏的CES上，其中蜂蜜令牌是元数据和/或指示应用程序如何看起来访问企业数据但实际上无效的指令，并且蜂蜜令牌被放置在CES上，而不是在服务器上。该方法还包括使属性值安装在用于安全规则的安全网关上的安全规则，导致安全网关监视网络流量以尝试使用蜂蜜令牌，并且当包括一个或多个分组的一个或多个分组的集合时生成警报收到蜂蜜令牌。

4. 发明授权

US09667651B2 Compromised insider honey pots using reverse honey tokens 有权
公开(公告)号：US09667651B2
公开(公告)日：2017-05-30
申请号：US15184982
申请日：2016-06-16
申请人： Imperva, Inc.
发明人： Amichai Shulman , Michael Cherny , Sagie Dulce
IPC分类号： H04L29/06
CPC分类号： H04L63/1491 , H04L63/0263 , H04L63/1416 , H04L63/20
摘要： According to one embodiment, a method for setting a trap to detect that an intruder has compromised a client end station (CES) in an attempt to gain unauthorized access to enterprise data provided by a server is described. The method includes causing a honey token to be placed on the CES secluded within a configuration repository, wherein the honey token is metadata and/or instructions indicating how applications can seemingly access the enterprise data but that is actually invalid, and the honey token is placed on the CES and not on the server. The method also includes causing attribute values to be installed on a security gateway for a security rule causing the security gateway to monitor network traffic for attempted use of the honey token, and to generate an alert when a set of one or more packets that include the honey token are received.

5. 发明授权

US08973142B2 Compromised insider honey pots using reverse honey tokens 有权
标题翻译：使用反向蜂蜜令牌的内疚蜜罐
公开(公告)号：US08973142B2
公开(公告)日：2015-03-03
申请号：US13934099
申请日：2013-07-02
申请人： Imperva Inc.
发明人： Amichai Shulman , Michael Cherny , Sagie Dulce
IPC分类号： G06F12/14 , H04L29/06
CPC分类号： H04L63/1491 , H04L63/0263 , H04L63/1416 , H04L63/20
摘要： According to one embodiment, a method for setting a trap to detect that an intruder has compromised a client end station (CES) in an attempt to gain unauthorized access to enterprise data provided by a server is described. The method includes causing a honey token to be placed on the CES secluded within a configuration repository, wherein the honey token is metadata and/or instructions indicating how applications can seemingly access the enterprise data but that is actually invalid, and the honey token is placed on the CES and not on the server. The method also includes causing attribute values to be installed on a security gateway for a security rule causing the security gateway to monitor network traffic for attempted use of the honey token, and to generate an alert when a set of one or more packets that include the honey token are received.
摘要翻译：根据一个实施例，描述了一种用于设置陷阱以检测入侵者已经破坏了客户端站（CES）以尝试获得未经授权的访问由服务器提供的企业数据的方法。该方法包括使蜂蜜令牌放置在配置库内隐藏的CES上，其中蜂蜜令牌是元数据和/或指示应用程序如何看起来访问企业数据但实际上无效的指令，并且蜂蜜令牌被放置在CES上，而不是在服务器上。该方法还包括使属性值安装在用于安全规则的安全网关上的安全规则，导致安全网关监视网络流量以尝试使用蜂蜜令牌，并且当包括一个或多个分组的一个或多个分组的集合时生成警报收到蜂蜜令牌。

6. 发明申请

US20150013006A1 COMPROMISED INSIDER HONEY POTS USING REVERSE HONEY TOKENS 有权
公开(公告)号：US20150013006A1
公开(公告)日：2015-01-08
申请号：US13934099
申请日：2013-07-02
申请人： Imperva Inc.
发明人： Amichai Shulman , Michael Cherny , Sagie Dulce
IPC分类号： H04L29/06
CPC分类号： H04L63/1491 , H04L63/0263 , H04L63/1416 , H04L63/20
摘要： According to one embodiment, a method for setting a trap to detect that an intruder has compromised a client end station (CES) in an attempt to gain unauthorized access to enterprise data provided by a server is described. The method includes causing a honey token to be placed on the CES secluded within a configuration repository, wherein the honey token is metadata and/or instructions indicating how applications can seemingly access the enterprise data but that is actually invalid, and the honey token is placed on the CES and not on the server. The method also includes causing attribute values to be installed on a security gateway for a security rule causing the security gateway to monitor network traffic for attempted use of the honey token, and to generate an alert when a set of one or more packets that include the honey token are received.

7. 发明授权

US11645392B2 Continuous database security and compliance 有权
公开(公告)号：US11645392B2
公开(公告)日：2023-05-09
申请号：US17219874
申请日：2021-03-31
申请人： Imperva, Inc.
发明人： Avidan Reich , Amichai Shulman , Michael Cherny
IPC分类号： G06F21/57 , G06F16/21 , G06F21/56
CPC分类号： G06F21/57 , G06F16/217 , G06F21/566 , G06F2221/033
摘要： A method by one or more electronic devices to notify an administrator when it is safe to mitigate a non-compliant database configuration of a database. The method includes responsive to identifying the non-compliant database configuration of the database, applying a security rule that detects occurrences of database operations that make use of the non-compliant database configuration and responsive to a determination that the security rule has not been invoked for at least a threshold length of time, causing a notification to be sent to the administrator that indicates that it is safe for the administrator to mitigate the non-compliant database configuration.

8. 发明授权

US09401927B2 Compromised insider honey pots using reverse honey tokens 有权
公开(公告)号：US09401927B2
公开(公告)日：2016-07-26
申请号：US14600855
申请日：2015-01-20
申请人： Imperva, Inc.
发明人： Amichai Shulman , Michael Cherny , Sagie Dulce
IPC分类号： G08B23/00 , H04L29/06
CPC分类号： H04L63/1491 , H04L63/0263 , H04L63/1416 , H04L63/20
摘要： According to one embodiment, a method for setting a trap to detect that an intruder has compromised a client end station (CES) in an attempt to gain unauthorized access to enterprise data provided by a server is described. The method includes causing a honey token to be placed on the CES secluded within a configuration repository, wherein the honey token is metadata and/or instructions indicating how applications can seemingly access the enterprise data but that is actually invalid, and the honey token is placed on the CES and not on the server. The method also includes causing attribute values to be installed on a security gateway for a security rule causing the security gateway to monitor network traffic for attempted use of the honey token, and to generate an alert when a set of one or more packets that include the honey token are received.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式