Systems and methods for arbitrated failover control using countermeasures
Granted: July 23, 2024
Patent Number:
12047226
Various approaches for multi-node network cluster systems and methods. In some cases systems and methods for incident detection and/or recovery in multi-node processors are discussed.
Resolving the disparate impact of security exploits to resources within a resource group
Granted: July 16, 2024
Patent Number:
12041065
Systems, methods, and apparatuses enable one or more security microservices to resolve the disparate impact of security exploits to resources within a resource group. When a resource group is determined to be impacted by a security exploit, the one or more security microservices determines whether the members of the resource group are disparately impacted. In response, the one or more security microservices splits the resource group into an impacted resource group and a non-impacted…
Systems and methods for security policy application based upon a dual bitmap scheme
Granted: July 16, 2024
Patent Number:
12041032
Systems, devices, and methods are discussed for identifying security policies applicable to a received information packet based upon a dual bitmap scheme accounting for bit position mergers and/or policies common to multiple bit positions.
Systems and methods for scalable zero trust security processing
Granted: July 9, 2024
Patent Number:
12034769
Various approaches for providing scalable network access processing. In some cases, approaches discussed relate to systems and methods for providing scalable zero trust network access control.
Systems and methods for preventing data leaks over RTP or SIP
Granted: June 4, 2024
Patent Number:
12003484
Systems, devices, and methods are discussed for avoiding data thefts in real-time transactions.
Convex optimized stochastic vector sampling based representation of ground truth
Granted: June 4, 2024
Patent Number:
12001515
Systems and methods are described for training a machine learning model using intelligently selected multiclass vectors. According to an embodiment, a processing resource of a computing system receives a first set of un-labeled feature vectors. The first set feature vectors are homomorphically translated using a T-Distributed Stochastic Neighbor Embedding (t-SNE) algorithm to obtain a second set of feature vectors with reduced dimensionality. The second set of feature vectors are…
Detecting access points located within proximity of a computing device for troubleshooting of a network
Granted: May 21, 2024
Patent Number:
11991047
Systems and methods for detecting access points proximate to a mobile computing device to facilitate wireless network troubleshooting and management of the access points are provided. According to an embodiment, a mobile application, running on a mobile device that is operating within a physical environment, discovers a subset of wireless access points (APs) of various managed APs of a private network that are proximate to the mobile device by receiving short-range beacons originated by…
Providing a secure communication channel between kernel and user mode components
Granted: May 7, 2024
Patent Number:
11977494
Systems and methods for implementing a secure communication channel between kernel and user mode components are provided. According to an embodiment, a shared memory is provided through which a kernel mode process and a user mode process communicate. The kernel mode process is assigned read-write access to the shared memory. The user mode process is assigned read-only access to the shared memory. An offset-based linked list is implemented within the shared memory. Kernel-to-user messages…
Systems and methods for rapid natural language based message categorization
Granted: April 30, 2024
Patent Number:
11971983
Systems, devices, and methods are disclosed in relation to a system for natural language based message categorization designed to identify text from a particular topic from a potentially inexhaustible set of potential topics. In one of many possible implementations, a vector space model is first used to translate text into a vector representation. This vector is used to determine if the text can be recreated by swapping words and phrases from a training corpus of documents. This is done…
IPsec load balancing in a session-aware load balanced cluster (SLBC) network device
Granted: April 23, 2024
Patent Number:
11968237
A processing blade is assigned from the plurality of processing blades to a session of data packets. The load balancing engine manages a session table and an IPsec routing table by updating the session table with a particular security engine card assigned to the session and by updating the IPsec routing table for storing a remote IP address for a particular session. Outbound raw data packets of a particular session are parsed for matching cleartext tuple information prior to IPsec…
Early malware detection in on-the-fly security sandboxes using recursive neural networks (RNNs)to capture relationships in behavior sequences on data communication networks
Granted: April 23, 2024
Patent Number:
11968228
A file copy is executed in a virtual runtime environment that tracks behavior using RNN taking runtime behavior of at least a first time into account with current runtime behavior at a second time. This is responsive to not finding a known signature for suspicious activity during virus scanning. A behavior sequence is identified on-the-fly during file copy execution that is indicative of malware, prior to completing the execution, the behavior sequence involving at least two actions…
Capturing and correlating multiple sources of debugging information relating to a network resource via a browser extension
Granted: April 23, 2024
Patent Number:
11968095
Systems and methods for capturing and correlating multiple sources of debugging information relating to a network resource and a client device via a browser extension are provided. A browser extension integrated within a browser running on a client device, receives a request to initiate capturing of debugging information relating to a potential bug associated with a network resource with which an end user is interacting via the browser, and in response to the first request, starts…
Systems and methods for internal secure network resolution
Granted: April 9, 2024
Patent Number:
11956211
Systems, devices, and methods are discussed for limiting exposure of internal network operations beyond the boundary of a secure network.
Cloud-based orchestration of incident response using multi-feed security event classifications
Granted: March 12, 2024
Patent Number:
11930022
Systems and methods for performing multi-feed classification of security events to facilitate automated IR orchestration are provided. According to one embodiment a cloud-based security service protecting a private network provides a plurality of data feeds, wherein each data feed of the plurality of data feeds independently classify a given security event and produce a classification result. In response to an event associated with a process of an endpoint device that is part of the…
Dynamic elimination of old IPv6 addresses from WLAN/BYOD/IOT devices INDHCPv6 stateless mode after transitioning between VLANs
Granted: March 12, 2024
Patent Number:
11929850
A Wi-Fi controller identifies a mismatch between a first prefix of a first IPv6 address for a data packet corresponding to a first VLAN on which the data packet was sent from the station to the access point, and a prefix of a second IPv6 address for a second VLAN from which the data packet was transmitted from the access point to the Wi-Fi controller. Responsive to the VLAN mismatch identification, the Wi-Fi controller transmits an RA to the station with a preferred lifetime of 0,…
Machine learning systems and methods for regression based active learning
Granted: March 12, 2024
Patent Number:
11928593
Among a great deal of other disclosure and scope, systems and methods are enclosed that enable for highly efficient labeling of data. For example, in some of many cases, a novel methodology for ranking vectors most useful to label next is disclosed. In such an example, a neural network is trained to predict this ranking methodology upon being given a set of heuristics from which to assess the given problem space. A user can continue the cycle of identifying a set of candidate vectors to…
Intent-based orchestration of independent automations
Granted: March 12, 2024
Patent Number:
11928499
Systems and methods for intent-based orchestration of independent automation are described.
Real-time minimal vector labeling scheme for supervised machine learning
Granted: March 5, 2024
Patent Number:
11921820
Systems and methods are described for training a machine learning model using intelligently selected multiclass vectors. According to an embodiment, a set of un-labeled feature vectors are received. The set of feature vectors are grouped into clusters within a vector space having fewer dimensions than the first set of feature vectors by applying a homomorphic dimensionality reduction algorithm to the set of feature vectors and performing centroid-based clustering. An optimal set of…
Leveraging user-behavior analytics for improved security event classification
Granted: March 5, 2024
Patent Number:
11924235
Systems and methods for improving security event classification by leveraging user-behavior analytics are provided. According to an embodiment, a UEBA-based security event classification service of a cloud-based security platform maintains information regarding historical user behavior of various users of an enterprise network. An endpoint protection platform running on an endpoint device that is part of the enterprise network performs an initial classification of the event, based on…
Systems and methods for automated SD-WAN performance rule formation
Granted: March 5, 2024
Patent Number:
11924062
Systems, devices, and methods are discussed for defining and monitoring network communication performance in an SD-WAN environment.
