专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2019226189A1 DATA LOSS PREVENTION USING CATEGORY-DIRECTED PARSERS 审中-公开
公开(公告)号：WO2019226189A1
公开(公告)日：2019-11-28
申请号：PCT/US2018/051031
申请日：2018-09-14
申请人： NETSKOPE, INC.
发明人： CHENG, Lebin , NARAYANASWAMY, Krishna
IPC分类号： H04L29/08 , G06F21/62 , H04L29/06 , H04W12/02
摘要： The technology disclosed includes a system to apply data loss prevention (DLP) to cloud-based services for which no service-specific parser is available. The system determines that a known cloud-based service is being accessed via an application programming interface (API) and no service-specific parser is available for the API being accessed. The system applies a category-directed parser to the API being accessed. The category-directed parser includes multiple category-directed match rules derived from multiple syntaxes used by numerous known providers to implement a category of service. The category-directed parser collects metadata from content being conveyed via the API and assigns the collected metadata to variables. The system invokes a DLP processor and sends the collected metadata to the DLP processor for use in focusing analysis of content being conveyed via the API.

2. 发明申请

WO2022246263A1 AUTOMATIC DETECTION OF CLOUD-SECURITY FEATURES (ADCSF) PROVIDED BY SAAS APPLICATIONS 审中-公开
公开(公告)号：WO2022246263A1
公开(公告)日：2022-11-24
申请号：PCT/US2022/030355
申请日：2022-05-20
申请人： NETSKOPE, INC.
发明人： SINGH, Durgeshwar, Pratap , Y, Naveen , SHUKLA, Awadh, Narayan
IPC分类号： G06F21/55 , G06F21/62 , G06F16/951 , H04L9/40 , G06N20/00
摘要： A method for scoring a cloud SaaS application to rate the level of cloud security provided by that application. The application URLs are crawled iteratively for data corresponding to a set of predetermined features using keyword strings. The features are determined to be those which are indicative of effective cloud security. The crawled data corresponding to features are stored in text files. The data are used for training and supervised machine learning algorithm to determine the probability score that a feature is present for that application. The feature scores are numerically combined to arrive at an overall cloud confidence index score (CCI) for that application. Every SaaS application is rated with a score between 1 and 100, depending on whether the selected features are present or not. The CCI score provides an easy way to determine the level of cloud security provided the application. It also provides a way to compare different SaaS applications as to their effectiveness in providing cloud security.

3. 发明申请

WO2022226208A1 SYNTHETIC REQUEST INJECTION TO IMPROVE OBJECT SECURITY POSTURE FOR CLOUD SECURITY ENFORCEMENT 审中-公开
公开(公告)号：WO2022226208A1
公开(公告)日：2022-10-27
申请号：PCT/US2022/025781
申请日：2022-04-21
申请人： NETSKOPE, INC.
发明人： WU, David Tze-Si , RAVI, Prasenna
IPC分类号： H04L9/40
摘要： The technology disclosed describes a system. The system comprises a network security system interposed between clients and cloud applications. The network security system is configured to receive from a client an incoming request to upload an object to a cloud application over an application session. The object is subject to policy enforcement by the network security system. The network security system is further configured to generate a synthetic request, upload the object to the cloud application, and inject the synthetic request into the application session to transmit the synthetic request to the cloud application. The synthetic request is configured to modify a security posture of the uploaded object in dependence upon the policy enforcement.

4. 发明申请

WO2018031778A1 SYSTEMS AND METHODS OF DETECTING AND RESPONDING TO A MALWARE ON A FILE SYSTEM 审中-公开
标题翻译：在文件系统上检测和回应恶意软件的系统和方法
公开(公告)号：WO2018031778A1
公开(公告)日：2018-02-15
申请号：PCT/US2017/046301
申请日：2017-08-10
申请人： NETSKOPE, INC.
发明人： HITTEL, Sean , NARAYANASWAMY, Krishna , BALUPARI, Ravindra K. , ITHAL, Ravi
IPC分类号： G06F21/55 , G06F21/56
摘要： The technology disclosed relates to detecting a data attack on a file system stored on an independent data store. The detecting includes scanning a list to identify files of the independent data store that have been updated within a timeframe, assembling current metadata for files identified by the scanning, obtaining historical metadata of the files, determining that a malicious activity is in process by analyzing the current metadata of the files and the historical metadata to identify a pattern of changes that exceeds a predetermined change velocity. Further, the detecting includes determining that the malicious activity is in process by analyzing the current metadata of the files and known patterns of malicious metadata to identify a match between the current metadata and the known patterns of malicious metadata, determining a entity that initiated the malicious activity, and implementing a response mechanism that restricts file modifications by the determined entity.
摘要翻译：所公开的技术涉及检测存储在独立数据存储器上的文件系统上的数据攻击。所述检测包括扫描列表以识别已经在时间范围内更新的独立数据存储的文件，组装由扫描识别的文件的当前元数据，获得文件的历史元数据，通过分析所述文件的历史元数据来确定恶意活动正在进行中文件的当前元数据和历史元数据，以识别超过预定变化速度的变化模式。此外，检测包括通过分析文件的当前元数据和已知的恶意元数据模式来确定恶意活动正在进行中，以识别当前元数据与已知恶意元数据模式之间的匹配，确定发起恶意的实体活动，并实施一个响应机制，限制所确定的实体进行文件修改。

5. 发明申请

WO2014138388A3 SECURITY FOR NETWORK DELIVERED SERVICES 审中-公开
标题翻译：网络提供服务的安全
公开(公告)号：WO2014138388A3
公开(公告)日：2014-11-06
申请号：PCT/US2014021174
申请日：2014-03-06
申请人： NETSKOPE INC
发明人： NARAYANASWAMY KRISHNA , CHENG LEBIN , ITHAL RAVI , BERI SANJAY
IPC分类号： G06F15/16
CPC分类号： H04L63/20 , H04L63/0272 , H04L63/0281 , H04L63/08 , H04L63/1425 , H04L63/168 , H04L67/20
摘要： A computer-implemented method for accessing a hosted service on client devices is described. The client devices include client software that uses a remotely delivered policy to redirect network requests for hosted services to a server to enforce visibility, policy and data security for network delivered services. The method can be used in conjunction with existing VPN and proxy solutions, but provides distinct additional functionality, particularly suited to corporate needs. Policies allow entities to centralize enforcement of service-specific restrictions across networks and communication channels, e.g. only certain users can download client records from a service— irrespective of the network used to access the service.
摘要翻译：描述了用于访问客户端设备上的托管服务的计算机实现的方法。客户端设备包括使用远程传递的策略的客户端软件，将托管服务的网络请求重定向到服务器，以实现对网络传送服务的可见性，策略和数据安全性。该方法可以与现有的VPN和代理解决方案结合使用，但提供了独特的附加功能，特别适合企业需求。政策允许实体集中执行网络和通信渠道之间的服务特定限制，例如只有某些用户可以从服务下载客户端记录，而不管用于访问服务的网络如何。

6. 发明申请

WO2023009511A1 CUSTOMIZED DEEP LEARNING CLASSIFIER FOR DETECTING ORGANIZATION SENSITIVE DATA IN IMAGES ON PREMISES 审中-公开
公开(公告)号：WO2023009511A1
公开(公告)日：2023-02-02
申请号：PCT/US2022/038325
申请日：2022-07-26
申请人： NETSKOPE, INC.
发明人： ZHANG, Yi , GUO, Dong , LIAO, Yihua , YANG, Siying , NARAYANASWAMY, Krishna
IPC分类号： G06V10/764 , G06V10/82 , G06N3/08 , G06N3/04
摘要： Disclosed is a method of building a customized deep learning (DL) stack classifier to detect organization sensitive data in images, referred to as image-borne organization sensitive documents, and protecting against loss of the image-borne organization sensitive documents, including distributing a trained feature map extractor stack with stored parameters to an organization, under the organization's control, configured to allow the organization to extract from image-borne organization sensitive documents, feature maps that are used to generate updated DL stacks, without the organization forwarding images of organization-sensitive training examples, and to save non invertible feature maps derived from the images, and ground truth labels for the image. Also included is receiving organization-specific examples including the non-invertible feature maps extracted from the organization-sensitive documents and the ground truth labels and using the received organization-specific examples to generate a customer-specific DL stack classifier. Further included is sending the customer-specific DL stack classifier to the organization.

7. 发明申请

WO2022226210A1 SYNTHETIC REQUEST INJECTION FOR CLOUD POLICY ENFORCEMENT 审中-公开
公开(公告)号：WO2022226210A1
公开(公告)日：2022-10-27
申请号：PCT/US2022/025787
申请日：2022-04-21
申请人： NETSKOPE, INC.
发明人： RAVI, Prasenna , WU, David Tze-Si
IPC分类号： H04L9/40 , G06F21/62 , G06F21/64 , G06F9/54
摘要： The technology disclosed describes a system. The system comprises a network security system interposed between clients and cloud applications. The network security system is configured to receive one or more incoming requests from a client during an application session, inject one or more synthetic requests into the application session independently of the incoming requests to transmit the synthetic requests to the cloud application, and receive one or more responses to the synthetic requests from the cloud application.

8. 发明申请

WO2022159611A1 PREVENTING PHISHING ATTACKS VIA DOCUMENT SHARING 审中-公开
公开(公告)号：WO2022159611A1
公开(公告)日：2022-07-28
申请号：PCT/US2022/013171
申请日：2022-01-20
申请人： NETSKOPE, INC.
发明人： PATHAPATI, VenkataSwamy , KUMAR, Anupam , RAVI, Prasenna , SHAFEEK, Muhammed
IPC分类号： H04L9/40 , G06F16/93
摘要： The technology disclosed includes a system and method for preventing phishing attacks caused by sharing documents with malicious content over a network, where the shared document may include links that redirect users to a malicious websites. The cloud-based method applies a set of rules and policies to allow the shared document or block the shared document from the network, based on identifying the ownership or originator of the shared document. Blocked documents are quarantined, analyzed for threats, and subjected to sandbox methods to determine malicious content that may compromise corporate data. If analysis proves the blocked document to be safe, it may be released into the network along with subsequent documents having the same ownership or originator. The technology disclosed is particularly useful where a malicious attacker creates a malicious file in a cloud-based store such a Google Drive and shares it with endpoint users. When users open the shared document, they are redirected to a malicious website where a corporation's critical data may be compromised.

9. 发明申请

WO2019226363A9 SMALL-FOOTPRINT ENDPOINT DATA LOSS PREVENTION (DLP) 审中-公开
公开(公告)号：WO2019226363A9
公开(公告)日：2019-11-28
申请号：PCT/US2019/031867
申请日：2019-05-10
申请人： NETSKOPE, INC.
发明人： NARAYANASWAMY, Krishna , AGRAWAL, Ajay
IPC分类号： H04L29/06 , G06F21/62 , H04L29/08
摘要： The technology disclosed presents an improved endpoint data loss prevention (DLP) solution, referred to herein as"small-footprint endpoint DLP (sf-EDLP), which enforces security policies at endpoints by relying on previously generated sensitivity metadata, rather than by performing content sensitivity scans at the endpoints. Since content sensitivity scans are computationally intensive and time consuming, sf-EDLP leads to a significantly simpler implementation, reduced runtime computation, and a smaller memory footprint; making it suitable for computationally constrained environments such as modem mobile devices.

10. 发明申请

WO2017156497A1 MIDDLE WARE SECURITY LAYER FOR CLOUD COMPUTING SERVICES 审中-公开
标题翻译：用于云计算服务的中间件安全层
公开(公告)号：WO2017156497A1
公开(公告)日：2017-09-14
申请号：PCT/US2017/021969
申请日：2017-03-10
申请人： NETSKOPE, INC.
发明人： NARAYANASWAMY, Krishna , CHENG, Lebin , KULKARNI, Abhay , ITHAL, Ravi , ANAND, Chetan , CHOPRA, Rajneesh
IPC分类号： G06F21/62 , H04L29/06
摘要： The technology disclosed relates to enforcing multi-part policies on data-deficient transactions of independent data stores. In particular, it relates to combining active analysis of access requests for the independent object stores with inspection of objects in the independent object stores, each of the analysis and inspection generating and persisting object metadata in a supplemental data store, actively processing data-deficient transactions that apply to the objects by accessing the supplemental data store to retrieve object metadata not available in transaction streams of the data-deficient transactions, and actively enforcing the multi-part policies using the retrieved object metadata.
摘要翻译：所披露的技术涉及对独立数据存储的数据缺陷交易实施多部分策略。具体地，涉及将独立对象库的访问请求的活动分析与独立对象库中的对象的检查相结合，每个分析和检查在补充数据库中生成并持久化对象元数据，主动处理数据缺陷事务通过访问补充数据存储以检索对象元数据，该对象元数据在数据缺陷事务的事务流中不可用，并且使用检索到的对象元数据来主动执行多部分策略，从而应用于对象。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式