DOCUMENT CLASSIFICATION BY A HYBRID CLASSIFIER
Granted: March 22, 2018
Application Number:
20180083970
Systems and methods for classifying URLs by a hybrid classifier are provided. According to one embodiment, a hybrid classifier receives a candidate URL. A naïve Bayes classifier of the hybrid classifier classifies the candidate URL to generate a first classification of the candidate URL and a sublink classifier of the hybrid classifier classifies the candidate URL to generate a second classification of the candidate URL. The hybrid classifier determines a classification of the candidate…
FIREWALL POLICY MANAGEMENT
Granted: March 22, 2018
Application Number:
20180083922
Methods and systems are provided for creation and implementation of firewall policies. According to one embodiment, a firewall maintains a log of observed network traffic flows. An administrator may request the firewall to generate a customized report based on the logged network traffic by extracting information from the log based on specified report parameters. The report includes aggregated network traffic items and one or more corresponding action objects. Responsive to receipt of a…
CHECK VALVE FOR PREVENTING AIR BACKFLOW IN A MODULAR COOLING SYSTEM
Granted: March 22, 2018
Application Number:
20180080571
A cooling system for electrical and electronic devices for hot swapping of a fan module without affecting cooling efficiency due to air backflow, preventing stalling of newly installed exhaust device due to reverse rotation. A check valve assembly having an inlet side frame member, an outlet side frame member, and one or more non-symmetrical valve flaps, each flap having a movable part and a fixed part. The outlet side frame allows the flaps to open under suction pressure on side of the…
FAN VIBRATION DAMPING DEVICES, SYSTEMS AND/OR METHODS
Granted: March 22, 2018
Application Number:
20180080479
Vibration damping devices and methods utilizing the same for damping vibrations in a fan. A vibration damping device for a fan, the fan having an inlet side of a frame and an exhaust side of the frame and the frame retains a fan mechanism. The vibration damping device includes a mass mT which may include either: a block with a total mass mT; or a finger guard and at least one resilient attachment member having a first spring characteristic, wherein resilient attachment member is…
CLOUD-BASED SECURITY POLICY CONFIGURATION
Granted: March 15, 2018
Application Number:
20180077202
Systems and methods for configuring security policies based on security parameters stored in a public or private cloud infrastructure are provided. According to one embodiment, security parameters associated with a first network appliance of an enterprise, physically located at a first site, are shared by the first network appliance with multiple network appliances of the enterprise by logging into an shared enterprise cloud account. The shared parameters are retrieved by a second…
AUGMENTED REALITY VISUALIZATION DEVICE FOR NETWORK SECURITY
Granted: March 15, 2018
Application Number:
20180077200
Systems and methods for managing network security events with the assistance of augmented reality are provided. According to one embodiment, a reality image of a network object is captured by an augmented reality device. The network object is identified from the reality image by the augmented reality device. Dynamic network security information is received by the augmented reality device from a network security appliance associated with a network that is managing the network object. An…
LOAD BALANCING AMONG A CLUSTER OF FIREWALL SECURITY DEVICES
Granted: March 15, 2018
Application Number:
20180077118
A method for balancing load among firewall security devices (FSDs) is provided. According to one embodiment, a switching device performs adaptive load balancing among cluster units of an HA cluster of firewall security devices. A load balancing (LB) function implemented by the switching device is configured based on information received from a network administrator. A LB table is maintained that forms associations between hash values output by the LB function and corresponding ports of…
COMPUTERIZED SYSTEM AND METHOD FOR DEPLOYMENT OF MANAGEMENT TUNNELS
Granted: March 15, 2018
Application Number:
20180077116
Methods and systems for deploying management tunnels between managed and managing devices are provided. According to one embodiment, the use of PKI-authenticated serial numbers within network devices manufactured by a particular manufacturer enables one-step provisioning of one or more managed devices. A managed device is provisioned with the serial number of a management device manufactured by the particular manufacturer. When the managed device is installed within a network, the…
VIRTUAL MEMORY PROTOCOL SEGMENTATION OFFLOADING
Granted: March 15, 2018
Application Number:
20180077087
Methods and systems for a more efficient transmission of network traffic are provided. According to one embodiment, presence of outbound payload data, distributed across a first and second payload buffer, within a user memory space of a network device that has been generated by a user process is determined by a bus/memory interface or a network interface unit. The payload data is fetched by performing direct virtual memory addressing of the user memory space including mapping virtual…
CACHE MANAGEMENT BASED ON FACTORS RELATING TO REPLACEMENT COST OF DATA
Granted: March 8, 2018
Application Number:
20180069946
Systems and methods for a cache replacement policy that takes into consideration factors relating to the replacement cost of currently cached data and/or the replacement cost of received data. According to one embodiment, data is received by a network device responsive to a request issued on behalf of a client device. A cache management system running on the network device estimates, for each of multiple cache entries of a cache managed by the cache management system, a computational…
ACCELERATING DATA COMMUNICATION USING TUNNELS
Granted: March 8, 2018
Application Number:
20180069831
Methods and systems are provided for increasing application performance and accelerating data communications in a WAN environment. According to one embodiment, packets are received at a flow classification module operating at the Internet Protocol (IP) layer of a first wide area network (WAN) acceleration device via a private tunnel, which is operable to convey application layer data for connection-oriented applications between WAN acceleration devices. The packets are passed to a WAN…
NETWORK FLOW ANALYSIS
Granted: March 8, 2018
Application Number:
20180069770
Systems and methods for a network flow analysis service that facilitates collection, analysis and sharing of information regarding network flows are provided. According to one embodiment, a network flow analysis service provider collects network traffic information of network flows from a plurality of different network sources, analyzes at least one attribute associating with the network flows based on the network traffic information; and distributes the at least one attribute to…
SECURE CLOUD STORAGE DISTRIBUTION AND AGGREGATION
Granted: March 8, 2018
Application Number:
20180068125
Methods and systems for secure cloud storage are provided. According to one embodiment, file storage policies are maintained for users of an enterprise network by a trusted gateway device interposed between the network and multiple third-party cloud storage services. Responsive to receiving a request to store a local file from a user: (i) searchable encrypted data is created by the gateway corresponding to one or more of (a) content of the local file and (b) metadata associated with the…
NETWORK CONTENT RATING BASED ON PUBLIC RATING DATABASE
Granted: March 1, 2018
Application Number:
20180063147
Systems and methods for inspecting/analyzing a data stream to identify one or more attributes of content associated with the data stream, and apply appropriate content filtering based thereon are provided. According to one embodiment, the data stream is in a form of one or more interactions between a client device and a server associated with a service provider that delivers, streams or authorizes access to digital content by subscribers of the service provider. An attribute of the…
CENTRALIZED MANAGEMENT AND ENFORCEMENT OF ONLINE PRIVACY POLICIES
Granted: February 8, 2018
Application Number:
20180041475
Systems and methods for centralized management and enforcement of online privacy policies of a private network are provided. According to one embodiment, existence of private information contained in a data packet originated by a client device of a private network and destined for a server device external to the private network is identified by a network security device protecting the private network by scanning the data packet for information matching a signature contained within a…
CONTENT FILTERING OF REMOTE FILE-SYSTEM ACCESS PROTOCOLS
Granted: February 1, 2018
Application Number:
20180034829
Methods and systems for content filtering of remote file-system access protocols are provided. According to one embodiment, a proxy, implemented within a network gateway device of a private network, monitors remote file-system access protocol sessions involving client computer systems and a server computer system associated with the private network. For each file on a share of the server computer system being accessed by one or more of the client computer systems: (i) a shared holding…
NETWORK PROCESSING UNIT (NPU) INTEGRATED LAYER 2 NETWORK DEVICE FOR LAYER 3 OFFLOADING
Granted: February 1, 2018
Application Number:
20180034734
Systems and methods for facilitating offloading of communication sessions from layer 3 network devices are provided. According to one embodiment, session information pertaining to a session capable of being offloaded is received from a layer 3 network device by a layer 2 network device that includes multiple network processing units (NPUs). The session is assigned to one of the NPUs. Subsequently, responsive to receiving, by the layer 2 network device, a packet associated with the…
WEB PAGE CLASSIFICATION BASED ON NOISE REMOVAL
Granted: January 25, 2018
Application Number:
20180025012
Systems and methods for improving accuracy of web content classification by removing perceived noise are provided. The system receives a Uniform Resource Locator (URL) of a web page that needs to be classified, and parses the web page so as to construct a tree containing a list of tags. Unwanted tags are removed from the list of tags to yield a tree containing only desired tags that form part of the web page. Subsequently, a list of hyperlinks are based on processing of the tree having…
CONTEXT-AWARE PATTERN MATCHING ACCELERATOR
Granted: January 11, 2018
Application Number:
20180013795
Methods and systems for improving accuracy, speed, and efficiency of context-aware pattern matching are provided. According to one embodiment, a packet stream is received by a first stage of a hardware accelerator of a network device. A pre-matching process is performed by the first stage to identify a candidate packet that matches a string or over-flow pattern associated with access control (e.g., IPS or ADC) rules. A candidate rule is identified based on a correlation of results of the…
DUAL-MODE PROCESSING OF CRYPTOGRAPHIC OPERATIONS
Granted: January 4, 2018
Application Number:
20180006806
Systems and methods for dual mode hardware acceleration for cryptographic operations are provided. According to one embodiment, data upon which a cryptographic operation is to be performed is receive by a computer system that includes a host CPU and a cryptographic hardware accelerator. The data is divided into multiple blocks. Performance of the operation on a first block is offloaded to the hardware accelerator. For each remaining block: (i) the CPU requests state information of the…
