Systems and methods for using a network access device to secure a network prior to requesting access to the network by the network access device
Granted: February 27, 2024
Patent Number:
11916902
Various approaches for securing networks against access from off network devices. In some cases, embodiments discussed relate to systems and methods for identifying potential threats included in a remote network by a network access device prior to requesting access to a known secure network via the remote network.
Systems and methods for four dimensional network session authorization
Granted: February 20, 2024
Patent Number:
11909826
Various embodiments provide systems and methods for automatically defining and enforcing network sessions based upon at least four dimensions of segmentation.
Mitigating malware impact by utilizing sandbox insights
Granted: February 20, 2024
Patent Number:
11909761
Systems and methods for mitigating the impact of malware by reversing malware related modifications in a computing device are provided. According to an embodiment, a sandbox service running within a network security platform protecting an enterprise network receives a file containing malware and associated contextual information from an endpoint security solution running on an endpoint device, which has been infected by the malware. The sandbox service captures information regarding a…
Dynamic retrieval of region code for network devices on data communication networks
Granted: February 20, 2024
Patent Number:
11907069
In network devices, during manufacturing, input for designation of a region code to be a non-specific region code is stored in a BIOS memory of the network device, and a specific region code is stored off the BIOS. During boot up, the BIOS is checked for a specific region code to regulate wireless transmissions at a physical location of operation. Responsive to receiving the non-specific region code from BIOS, the specific region code is requested from a region code server based on a…
Generating and managing message correction and retraction history from a chat server
Granted: February 13, 2024
Patent Number:
11902230
Changes on a chat client, such as one or more edits or retractions, and is characterized relative to an original chat string, and uploaded to a chat server for storage. The chat server combines the message change with at least a second change to the specific chat string uploaded from a different chat client. Responsive to a regeneration of the chat string on the chat client, the chat daemon downloads the combined message change from the chat server. The edits and retractions originating…
Generating and managing message correction and retraction history from a chat server
Granted: February 13, 2024
Patent Number:
11902230
Changes on a chat client, such as one or more edits or retractions, and is characterized relative to an original chat string, and uploaded to a chat server for storage. The chat server combines the message change with at least a second change to the specific chat string uploaded from a different chat client. Responsive to a regeneration of the chat string on the chat client, the chat daemon downloads the combined message change from the chat server. The edits and retractions originating…
Systems and methods for generating soar playbooks
Granted: February 6, 2024
Patent Number:
11894981
Various approaches are discussed for generation of SOAR playbooks using a variety playbook sources.
Improving incident classification and enrichment by leveraging context from multiple security agents
Granted: January 23, 2024
Patent Number:
11882128
Systems and methods are described for synergistically combining network security technologies to improve incident classification and enrichment. According to one embodiment, an endpoint protection platform running on an endpoint device receives a request via an event management agent of the endpoint protection platform from an event management service for process information relating to an incident detected by the event management service. The request is caused to be processed by an…
Artificially intelligent WLAN uplink monitoring for steering wireless stations to selective access points on wireless data communication networks
Granted: January 23, 2024
Patent Number:
11882467
Specific clients are assigned to a second access point based balancing an Ethernet uplink load status of the specific access point relative to the uplink load status of access points across a WLAN system, wherein the RSSI strength of the specific client relative to a first access point is higher than the RSSI strength of the specific client relative to the second access point.
Machine-learning based approach for dynamically generating incident-specific playbooks for a security orchestration, automation and response (SOAR) platform
Granted: January 23, 2024
Patent Number:
11882135
Systems and methods for a machine-learning based approach for dynamically generating incident-specific playbooks for a security orchestration and automated response (SOAR) platform are provided. The SOAR platform captures information regarding execution of a sequence of actions performed by analysts responsive to a first incident of a first type. The captured information is fed into a machine-learning model. When a second incident, observed by the SOAR platform, is similar in nature to…
Systems and methods for hierarchical facial image clustering
Granted: January 23, 2024
Patent Number:
11881053
Various systems and methods for for clustering facial images in, for example, surveillance systems.
Centralized state database storing state information
Granted: January 16, 2024
Patent Number:
11874845
Systems and methods for a cloud state engine are provided. According to one embodiment, a query pertaining to state information associated with a packet to be processed by a first packet processing device of multiple packet processing devices associated with a distributed security environment is received by a centralized state engine running on a computing device associated with the distributed security environment. The state information associated with the packet influences how the…
Systems and methods for centrally managed host and network firewall services
Granted: January 9, 2024
Patent Number:
11870814
Systems and methods for a unified, cloud-managed platform for controlling enterprise network security are provided. According to one embodiment, a network of an enterprise is protected by a cloud-managed platform. An underlying architecture of the cloud-managed platform is abstracted by providing a portal through which modifications to security policies are expressed as business requirements of the enterprise. The security policies are automatically enforced regardless of location or…
Kernel space based capture using intelligent packet selection paradigm and event output storage determination methodology
Granted: January 9, 2024
Patent Number:
11870693
Systems and methods for efficient kernel space packet processing and IoT device classification are provided. According to an embodiment, a computer system receives a packet in kernel space, ascertains whether the packet is destined for the computer system, when the ascertaining is affirmative the packet is forwarded to user space; otherwise, it is determined whether the packet is associated with a protocol used by IoT devices. When the determination is affirmative, header information is…
Scalable physical loop detection in non-native virtual local area networks (VLANs)
Granted: January 9, 2024
Patent Number:
11870607
Systems and methods for detecting physical loops in both native and non-native VLANs are provided. According to one embodiment, a processing resource of a network switch detects a physical loop in a non-native Virtual Local Area Network (VLAN) by configuring a set of one or more network chips (e.g., an ASIC) associated with an interface associated with the non-native VLAN of multiple interfaces of the network switch to provide an indication (e.g., a Media Access Control (MAC) address or…
Enabling global quality of service for real-time selection of best data communications channels in autonomous driving vehicles
Granted: January 2, 2024
Patent Number:
11863344
An orchestrator ensures the best available vehicle communication technology is selected. In the computer architecture, the orchestrator is injected on the data bus line is also coupled to a plurality of independent silos of vehicle communication technologies for autonomous driving vehicle technologies. Real-time accurate strength signals associated with the plurality of independent silos are received. One of the independent silos of communication is selected for rerouting the data…
Detecting potential domain name system (DNS) hijacking by identifying anomalous changes to DNS records
Granted: December 26, 2023
Patent Number:
11856020
Systems and methods are described for scanning or monitoring of Domain Name System (DNS) records of an entity for identifying anomalous changes to the DNS records that may be indicative of possible DNS hijacking. According to one embodiment, DNS monitoring engine running on a network security appliance protecting a private network, or implemented as a cloud-based service can be used for monitoring DNS records of the entity. Any modification in the monitored DNS record(s) can be detected…
Facilitating identification of compromised devices by network access control (NAC) or unified threat management (UTM) security services by leveraging context from an endpoint detection and response (EDR) agent
Granted: December 26, 2023
Patent Number:
11856008
Systems and methods are provided for synergistically combining network security technologies to detect compromised devices. According to one embodiment, an endpoint detection and response (EDR) agent of multiple endpoint security agents running on an endpoint device detects an incident. A security incident alert is generated by the EDR agent by proactively collecting data regarding the incident. Identification of a device coupled to a private network as potentially being compromised by a…
Framework for determining metrics of an automation platform
Granted: December 26, 2023
Patent Number:
11855854
Systems and methods for determining an efficiency score for an automation platform are provided. According to one embodiment, a first weight for each playbook of multiple playbooks of an automation framework and a second weight for each type of error of multiple types of errors that may cause execution of one of the multiple playbooks to fail are maintained. The first weight represents a relative importance of the playbook and the second weight represents an effort required to address…
Systems and methods for unpacking protected data from obfuscated code
Granted: December 12, 2023
Patent Number:
11841948
Systems, devices, and methods are discussed that provide for discovering protected data from a code. Such detection provides an ability to discover potentially malicious code and/or datasets obfuscated within a code prior to full execution of the code.
