专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09894099B1 Automatically configuring mobile devices and applying policy based on device state 有权
公开(公告)号：US09894099B1
公开(公告)日：2018-02-13
申请号：US13954644
申请日：2013-07-30
申请人： Palo Alto Networks, Inc.
发明人： Michael Soren Jacobsen , Joby Menon , Song Wang
IPC分类号： H04L29/08 , H04L29/06 , H04W4/00
CPC分类号： H04L63/20 , H04L41/0893 , H04L63/105 , H04L63/14 , H04L63/1433 , H04L67/303 , H04L67/306 , H04L67/34 , H04W4/50 , H04W4/60
摘要： Techniques for network-based security for mobile devices based on device state are disclosed. In some embodiments, automatically configuring mobile devices and applying policies based on a Host Information Profile (HIP) report includes receiving a Host Information Profile (HIP) report for a mobile device; performing a policy match based on the HIP report for the mobile device; and performing an action based on the policy match based on the HIP report for the mobile device.

2. 发明授权

US09384350B2 Signature compilation on a security device 有权
标题翻译：在安全设备上签名编译
公开(公告)号：US09384350B2
公开(公告)日：2016-07-05
申请号：US14547103
申请日：2014-11-18
申请人： Palo Alto Networks, Inc.
发明人： Huagang Xie , Song Wang
IPC分类号： H04L9/00 , G06F21/56
CPC分类号： G06F21/564 , G06F21/56 , G06F21/566 , G06F21/567
摘要： Signature compilation on a security device is disclosed. A first set of malware signatures is received. The first set of signatures is compiled at a first time. A second set of malware signatures is received. The second set of signatures is compiled at a second time that is different from the first time. A determination of whether a file is malicious is made based at least in part by performing a scan using the first and second compiled signatures.
摘要翻译：公开了一种安全装置上的签名编译。收到第一组恶意软件签名。第一组签名是第一次编译。接收到第二组恶意软件签名。第二组签名是与第一次不同的第二次编译。至少部分地通过使用第一和第二编译签名进行扫描来确定文件是否是恶意的。

3. 发明申请

US20150150136A1 SIGNATURE COMPILATION ON A SECURITY DEVICE 审中-公开
标题翻译：安全设备上的签名编译
公开(公告)号：US20150150136A1
公开(公告)日：2015-05-28
申请号：US14547103
申请日：2014-11-18
申请人： Palo Alto Networks, Inc.
发明人： Huagang Xie , Song Wang
IPC分类号： G06F21/56
CPC分类号： G06F21/564 , G06F21/56 , G06F21/566 , G06F21/567
摘要： Signature compilation on a security device is disclosed. A first set of malware signatures is received. The first set of signatures is compiled at a first time. A second set of malware signatures is received. The second set of signatures is compiled at a second time that is different from the first time. A determination of whether a file is malicious is made based at least in part by performing a scan using the first and second compiled signatures.
摘要翻译：公开了一种安全装置上的签名编译。收到第一组恶意软件签名。第一组签名是第一次编译。接收到第二组恶意软件签名。第二组签名是与第一次不同的第二次编译。至少部分地通过使用第一和第二编译签名进行扫描来确定文件是否是恶意的。

4. 发明申请

US20180139241A1 AUTOMATICALLY CONFIGURING MOBILE DEVICES AND APPLYING POLICY BASED ON DEVICE STATE 审中-公开
公开(公告)号：US20180139241A1
公开(公告)日：2018-05-17
申请号：US15717801
申请日：2017-09-27
申请人： Palo Alto Networks, Inc.
发明人： Michael Soren Jacobsen , Joby Menon , Song Wang
IPC分类号： H04L29/06
CPC分类号： H04L63/20 , H04L41/0893 , H04L63/105 , H04L63/14 , H04L63/1433 , H04L67/303 , H04L67/306 , H04L67/34 , H04W4/50 , H04W4/60
摘要： Techniques for network-based security for mobile devices based on device state are disclosed. In some embodiments, automatically configuring mobile devices and applying policies based on a Host Information Profile (HIP) report includes receiving a Host Information Profile (HIP) report for a mobile device; performing a policy match based on the HIP report for the mobile device; and performing an action based on the policy match based on the HIP report for the mobile device.

5. 发明授权

US09787635B1 Identifying external user names and enforcing policies 有权
公开(公告)号：US09787635B1
公开(公告)日：2017-10-10
申请号：US14157342
申请日：2014-01-16
申请人： Palo Alto Networks, Inc.
发明人： Nir Zuk , Song Wang
IPC分类号： H04L29/06 , G06F15/16
CPC分类号： H04L63/02 , H04L63/029 , H04L67/06 , H04L67/22
摘要： Techniques for identifying external user names and enforcing policies are disclosed. A request is received from a first client device within a first network to access an external application that is outside of the first network. An identification of an external user account associated with the received request is identified. A determination is made, based at least in part on the identification, of a policy to apply to the request. The policy is applied.

6. 发明授权

US09705919B1 Security policy enforcement for mobile devices based on device state 有权
公开(公告)号：US09705919B1
公开(公告)日：2017-07-11
申请号：US13954655
申请日：2013-07-30
申请人： Palo Alto Networks, Inc.
发明人： Michael Soren Jacobsen , Joby Menon , Song Wang
IPC分类号： H04L29/06
CPC分类号： H04L63/20 , H04L63/102 , H04W12/08
摘要： Techniques for network-based security for mobile devices based on device state are disclosed. In some embodiments, network-based security for mobile devices based on device state includes receiving a Host Information Profile (HIP) report for a mobile device from a mobile device management (MDM) service at the security device, in which the HIP report includes device state information for the mobile device; applying a policy based on the HIP report for the mobile device and the device state; and performing access control at the security device based on the policy based on the HIP report for the mobile device.

7. 发明授权

US09419942B1 Destination domain extraction for secure protocols 有权
标题翻译：目的域提取安全协议
公开(公告)号：US09419942B1
公开(公告)日：2016-08-16
申请号：US13951320
申请日：2013-07-25
申请人： Palo Alto Networks, Inc.
发明人： Shivakumar Buruganahalli , Song Wang
IPC分类号： H04L29/06
CPC分类号： H04L63/20 , H04L63/0227 , H04L63/0236 , H04L63/0245 , H04L63/0263 , H04L63/029 , H04L63/0428 , H04L63/06 , H04L63/101 , H04L63/1408 , H04L63/1416 , H04L63/166 , H04L63/18 , H04L67/141 , H04L67/42
摘要： Techniques for destination domain extraction for secure protocols are disclosed. In some embodiments, destination domain extraction for secure protocols includes monitoring network communications between a client and a remote server; determining if the client sends a request to create a secure connection with the remote server (e.g., in which the network communications are initiating a setup for a secure protocol-based connection); and extracting a destination domain from the request to create the secure connection with the remote server. In some embodiments, the secure protocol is a secure sockets layer (SSL) protocol or transport layer security (TLS) protocol, and the destination domain is extracted from the server name indication (SNI) of a client hello message sent from the client to the remote server. In some embodiments, destination domain extraction for secure protocols further includes applying a policy (e.g., a security policy) based on the destination domain to filter traffic using a security device.
摘要翻译：公开了用于安全协议的目的域提取的技术。在一些实施例中，用于安全协议的目的地域提取包括监视客户端和远程服务器之间的网络通信; 确定客户端是否发送与远程服务器建立安全连接的请求（例如，其中网络通信正在启动用于基于安全协议的连接的设置）; 并从请求中提取目的地域以创建与远程服务器的安全连接。在一些实施例中，安全协议是安全套接层（SSL）协议或传输层安全性（TLS）协议，并且从客户端发送到客户端的客户端hello消息的服务器名称指示（SNI）中提取目的地域远程服务器。在一些实施例中，用于安全协议的目的地域提取还包括基于目的地域应用策略（例如，安全策略）来使用安全设备来过滤业务。

8. 发明授权

US11632396B2 Policy enforcement using host information profile 有权
公开(公告)号：US11632396B2
公开(公告)日：2023-04-18
申请号：US16101105
申请日：2018-08-10
申请人： Palo Alto Networks, Inc.
发明人： Siu-Wang Leung , Song Wang , Yueh-Zen Chen
IPC分类号： H04L9/40
摘要： Embodiments of the present application relate to a method for policy enforcement, a system for policy enforcement, and a computer program product for policy enforcement. A method for policy enforcement is provided. The method includes receiving a host information profile report from a client device, and enforcing a security policy for network access based on the host information profile report. The host information profile report includes device profile information associated with the client device.

9. 发明授权

US10104128B2 Automatically configuring mobile devices and applying policy based on device state 有权
公开(公告)号：US10104128B2
公开(公告)日：2018-10-16
申请号：US15717801
申请日：2017-09-27
申请人： Palo Alto Networks, Inc.
发明人： Michael Soren Jacobsen , Joby Menon , Song Wang
IPC分类号： H04L29/06 , H04L29/08 , H04W4/50 , H04L12/24 , H04W4/60
摘要： Techniques for network-based security for mobile devices based on device state are disclosed. In some embodiments, automatically configuring mobile devices and applying policies based on a Host Information Profile (HIP) report includes receiving a Host Information Profile (HIP) report for a mobile device; performing a policy match based on the HIP report for the mobile device; and performing an action based on the policy match based on the HIP report for the mobile device.

10. 发明授权

US10075472B2 Policy enforcement using host information profile 有权
公开(公告)号：US10075472B2
公开(公告)日：2018-09-11
申请号：US14601018
申请日：2015-01-20
申请人： Palo Alto Networks, Inc.
发明人： Siu-Wang Leung , Song Wang , Yueh-Zen Chen
IPC分类号： H04L29/06
CPC分类号： H04L63/20 , H04L63/00 , H04L63/02 , H04L63/0272 , H04L63/102 , H04L63/1408 , H04L63/1433
摘要： Embodiments of the present application relate to a method for policy enforcement, a system for policy enforcement, and a computer program product for policy enforcement. A method for policy enforcement is provided. The method includes receiving a host information profile report from a client device, and enforcing a security policy for network access based on the host information profile report. The host information profile report includes device profile information associated with the client device.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式