公开(公告)号：US09912641B2

公开(公告)日：2018-03-06

申请号：US14324068

申请日：2014-07-03

Applicant: Juniper Networks, Inc.

Inventor： Deepak Kushwaha

IPC: H04L29/06

CPC classification number: H04L63/0281 ,  H04L63/1408

Abstract: The disclosed computer-implemented method may include (1) detecting an online communication session established between a plurality of computing devices, (2) identifying at least one application involved in the online communication session established between the plurality of computing devices, (3) determining a security mode for a security proxy that inspects the online communication session based at least in part on the application involved in the online communication session, and then (4) configuring the security proxy to inspect the online communication session in accordance with the determined security mode. Various other systems, methods, and apparatuses are also disclosed.

公开(公告)号：US10091235B1

公开(公告)日：2018-10-02

申请号：US15175568

申请日：2016-06-07

Applicant: Juniper Networks, Inc.

Inventor： Deepak Kushwaha ,  Mohit Joshi ,  Puneet Tutliani

IPC: H04L29/06 ,  H04L12/58

Abstract: The disclosed computer-implemented method may include (1) detecting a request from a computing device of a member of an organization in connection with a communication session between the computing device and at least one additional computing device, (2) identifying, within the request, a URL that the computing device is attempting to access, (3) computing a unique identifier that represents the URL, (4) comparing the unique identifier against a database that includes unique identifiers that represent URLs embedded in emails received by members of the organization, (5) determining, based at least in part on the comparison, that the URL was included in an email received by the member of the organization, and then in response, (6) elevating a threat level of the communication session between the computing device and the additional computing device. Various other methods, systems, and apparatuses are also disclosed.

公开(公告)号：US20160006698A1

公开(公告)日：2016-01-07

申请号：US14324068

申请日：2014-07-03

Applicant: JUNIPER NETWORKS, INC.

Inventor： Deepak Kushwaha

IPC: H04L29/06

CPC classification number: H04L63/0281 ,  H04L63/1408

Abstract: The disclosed computer-implemented method may include (1) detecting an online communication session established between a plurality of computing devices, (2) identifying at least one application involved in the online communication session established between the plurality of computing devices, (3) determining a security mode for a security proxy that inspects the online communication session based at least in part on the application involved in the online communication session, and then (4) configuring the security proxy to inspect the online communication session in accordance with the determined security mode. Various other systems, methods, and apparatuses are also disclosed.

Abstract translation: 所公开的计算机实现的方法可以包括（1）检测在多个计算设备之间建立的在线通信会话，（2）识别在所述多个计算设备之间建立的在线通信会话中涉及的至少一个应用，（3）确定 至少部分地基于在线通信会话中涉及的应用来检查在线通信会话的安全代理的安全模式，然后（4）根据确定的安全模式来配置安全代理以检查在线通信会话 。 还公开了各种其它系统，方法和装置。

公开(公告)号：US10298606B2

公开(公告)日：2019-05-21

申请号：US15400922

申请日：2017-01-06

Applicant: Juniper Networks, Inc.

Inventor： Deepak Kushwaha ,  Mohit Joshi ,  Puneet Tutliani

IPC: G06F21/56 ,  H04L29/06

Abstract: The disclosed apparatus may include a physical processing that (1) receives, at a network device, a packet that is destined for a computing device within a network, (2) performs pattern matching on the packet by (A) comparing at least a portion of the packet with a set of signatures that facilitate pattern matching in connection with network traffic and (B) determining, based at least in part on the comparison, that the portion of the packet matches at least one of the signatures, (3) parses, after performing the pattern matching, at least the portion of the packet to determine whether the packet is malicious based at least in part on the portion of the packet, and then (4) upon determining that the portion of the packet is malicious, performs at least one security action in connection with the packet. Various other apparatuses, systems, and methods are also disclosed.

公开(公告)号：US20180198809A1

公开(公告)日：2018-07-12

申请号：US15400922

申请日：2017-01-06

Applicant: Juniper Networks, Inc.

Inventor： Deepak Kushwaha ,  Mohit Joshi ,  Puneet Tutliani

IPC: H04L29/06

CPC classification number: H04L63/1425 ,  G06F21/564 ,  H04L63/0227 ,  H04L63/1416 ,  H04L63/145

Abstract: The disclosed apparatus may include a physical processing that (1) receives, at a network device, a packet that is destined for a computing device within a network, (2) performs pattern matching on the packet by (A) comparing at least a portion of the packet with a set of signatures that facilitate pattern matching in connection with network traffic and (B) determining, based at least in part on the comparison, that the portion of the packet matches at least one of the signatures, (3) parses, after performing the pattern matching, at least the portion of the packet to determine whether the packet is malicious based at least in part on the portion of the packet, and then (4) upon determining that the portion of the packet is malicious, performs at least one security action in connection with the packet. Various other apparatuses, systems, and methods are also disclosed.