公开(公告)号：US12088608B2

公开(公告)日：2024-09-10

申请号：US17111478

申请日：2020-12-03

申请人： McAfee, LLC

发明人： Tirumaleswar Reddy Konda ,  Shashank Jain ,  Abhishek Tripathi ,  Piyush Pramod Joshi

IPC分类号： H04L9/40 ,  G06N3/04 ,  G06N3/08

CPC分类号： H04L63/1425 ,  G06N3/04 ,  G06N3/08 ,  H04L63/029 ,  H04L63/1416

摘要： Methods, apparatus, systems and articles of manufacture are disclosed to analyze telemetry data of a network device for malicious activity. An example apparatus includes an interface to obtain first telemetry data, a rules generator to, using the first telemetry data, generate a global block list using a machine learning model, the machine learning model generated based on a device specific block list and a device specific allow list, and a model manager to transmit the global block list to a gateway, the gateway to facilitate on-path classification of second telemetry data.

公开(公告)号：US11930359B2

公开(公告)日：2024-03-12

申请号：US17404910

申请日：2021-08-17

申请人： McAfee, LLC

发明人： Tirumaleswar Reddy Konda ,  Piyush Pramod Joshi ,  Devika Mishra ,  Shashank Jain

IPC分类号： H04W88/08 ,  H04W12/069 ,  H04W12/086 ,  H04W12/71 ,  H04W84/12 ,  H04L9/40 ,  H04W88/16

CPC分类号： H04W12/069 ,  H04W12/086 ,  H04W12/71 ,  H04W84/12 ,  H04L63/20 ,  H04W88/08 ,  H04W88/16

摘要： There is disclosed in an example, a gateway apparatus, including a hardware platform having a processor and a memory; a wireless network interface; and instructions encoded within the memory to instruct the processor to: provide a first virtual access point (VAP) secured by an IEEE 802.1x extensible authentication protocol (EAP) enterprise security method; provide a second VAP secured by a WiFi protected access pre-shared key (WPA-PSK) method; onboard a device, comprising determining whether the device supports the EAP method, and enrolling the device with the EAP method if the device supports the EAP method; and if the device does not support the EAP method, enrolling the device with the WPA-PSK method.

公开(公告)号：US11784977B2

公开(公告)日：2023-10-10

申请号：US17110054

申请日：2020-12-02

申请人： McAfee, LLC

发明人： Tirumaleswar Reddy Konda ,  Shashank Jain ,  Himanshu Srivastava

IPC分类号： H04L29/00 ,  H04L9/40

CPC分类号： H04L63/0272 ,  H04L63/029 ,  H04L63/166

摘要： Methods, apparatus, systems and articles of manufacture for communicating encrypted data via a virtual private network are disclosed. An example computer system disclosed herein includes a memory including instructions that, when executed, cause one or more processors to establish a first tunnel and a second tunnel between a VPN client and a VPN server. The instructions further cause the one or more processors to access a request message to be sent via the VPN and determine, in response to a payload being formatted using a first protocol, whether a packet associated with the request message includes an encrypted server name indication (SNI). The instructions further cause the one or more processors to, in response to the packet including the encrypted SNI, encrypt the header of the request message to form an encrypted header, create an encrypted message including the encrypted header and the payload of the request message, and transmit the encrypted message through the first tunnel.

公开(公告)号：US11632254B2

公开(公告)日：2023-04-18

申请号：US16899894

申请日：2020-06-12

申请人： McAfee, LLC.

发明人： Tirumaleswar Reddy Konda ,  Shashank Jain ,  Himanshu Srivastava

IPC分类号： G06F15/16 ,  H04L9/32 ,  H04L9/14 ,  H04L61/58 ,  H04L61/4511 ,  G06F15/173

摘要： There is disclosed in one example a home router, including: a hardware platform including a processor and a memory; a local area network (LAN) interface; a data store including rules for domain name-based services; and instructions encoded within the memory to instruct the processor to: provision a certificate and key pair to provide domain name system (DNS) over hypertext transfer protocol secure (DoH) or DNS over transport layer security (DoT) services; receive on the LAN interface an encrypted DNS request; decrypt the DNS request; query the data store according to the DNS request; receive a rule for the DNS request; and execute the rule.

公开(公告)号：US11516331B2

公开(公告)日：2022-11-29

申请号：US17088482

申请日：2020-11-03

申请人： McAfee, LLC

发明人： Harsha Ramamurthy Joshi ,  Shashank Jain ,  Piyush Pramod Joshi

IPC分类号： H04M1/66 ,  H04L9/40 ,  H04M3/436

摘要： An apparatus, related devices and methods, having a memory element operable to store instructions; and a processor operable to execute the instructions, such that the apparatus is configured to identify, on an electronic device, a phone number of an incoming caller device; request, via an out-of-band control channel, a digital certificate for the phone number from the incoming caller device; receive, via the out-of-band control channel, the digital certificate for the phone number from the incoming caller device; determine whether the digital certificate for the phone number is authentic; and indicate, on the electronic device, based on a determination that the digital certificate for the phone number is authentic or not authentic, whether the phone number is authentic or not authentic.

公开(公告)号：US11444944B2

公开(公告)日：2022-09-13

申请号：US16788046

申请日：2020-02-11

申请人： McAfee, LLC

发明人： Tirumaleswar Reddy Konda ,  Shashank Jain ,  Himanshu Srivastava ,  Naveen Kumar Reddy Kandadi ,  Piyush Pramod Joshi

IPC分类号： H04L29/06 ,  H04L9/40 ,  G16Y30/10 ,  H04L61/4511 ,  H04L101/663

摘要： There is disclosed in one example an enrollment over secure transport (EST)-capable gateway device, including: a hardware platform including a processor and a memory; a first network interface to communicatively couple to an external network, including an external DNS server; a second network interface to communicatively couple to a home network; a caching DNS server including a local DNS cache, and logic to provide DNS services to the home network; and an EST proxy to authenticate to a local endpoint on the home network, provision a DNS server certificate on the local endpoint, provision an authentication domain name (ADN) on the local endpoint, and provide encrypted domain name system (DNS) services to the local endpoint.

公开(公告)号：US11917080B2

公开(公告)日：2024-02-27

申请号：US17219411

申请日：2021-03-31

申请人： McAfee, LLC

发明人： Tirumaleswar Reddy Konda ,  Shashank Jain ,  Piyush Pramod Joshi ,  Himanshu Srivastava

IPC分类号： G06F21/57 ,  H04L9/32 ,  H04L9/40 ,  H04L12/66 ,  H04L9/08 ,  H04W12/069

CPC分类号： H04L9/3268 ,  G06F21/57 ,  H04L9/0891 ,  H04L12/66 ,  H04L63/20 ,  H04W12/069 ,  H04L63/0823

摘要： There is disclosed in one example a network gateway device, including: a hardware platform including a processor and a memory; a network interface, including network interface hardware; and instructions encoded within the memory to instruct the processor to: receive from an endpoint device, via the network interface, a signed security posture data structure, the signed security posture data structure including information about a security posture of the endpoint device; cryptographically verify the signed security posture data structure; and according to the signed security posture data structure, assign a network security policy to the endpoint device.

公开(公告)号：US11824645B2

公开(公告)日：2023-11-21

申请号：US16933289

申请日：2020-07-20

申请人： McAfee, LLC

发明人： Harsha Ramamurthy Joshi ,  Tirumaleswar Reddy Konda ,  Shashank Jain ,  Piyush Pramod Joshi ,  Himanshu Srivastava

IPC分类号： H04L9/40

CPC分类号： H04L63/126 ,  H04L63/20

摘要： There is disclosed in one example a computing apparatus, including: a hardware platform including a processor, a memory, and a network interface; and instructions encoded within the memory to instruct the processor to: receive an incoming packet via the network interface; extract from the incoming packet a source port and a source internet protocol (IP) address; correlate the source port and source IP to a device identifier (ID); receive a network policy for the device ID; and apply the network policy to the incoming packet.

公开(公告)号：US11736601B2

公开(公告)日：2023-08-22

申请号：US17971299

申请日：2022-10-21

申请人： McAfee, LLC

发明人： Harsha Ramamurthy Joshi ,  Shashank Jain ,  Piyush Pramod Joshi

IPC分类号： H04M1/66 ,  H04L9/40 ,  H04M3/436

CPC分类号： H04M1/66 ,  H04L63/0823 ,  H04L63/18 ,  H04M3/4365

摘要： An apparatus, related devices and methods, having a memory element operable to store instructions; and a processor operable to execute the instructions, such that the apparatus is configured to identify, on an electronic device, a phone number of an incoming caller device; request, via an out-of-band control channel, a digital certificate for the phone number from the incoming caller device; receive, via the out-of-band control channel, the digital certificate for the phone number from the incoming caller device; determine whether the digital certificate for the phone number is authentic; and indicate, on the electronic device, based on a determination that the digital certificate for the phone number is authentic or not authentic, whether the phone number is authentic or not authentic.

公开(公告)号：US11496440B2

公开(公告)日：2022-11-08

申请号：US16403881

申请日：2019-05-06

申请人： McAfee, LLC

发明人： Tirumaleswar Reddy Konda ,  Harsha R. Joshi ,  Eric Wuehler ,  Shashank Jain

IPC分类号： H04L29/12 ,  H04L12/46 ,  H04L29/06 ,  H04L29/08 ,  H04L61/2592 ,  H04L61/45 ,  H04L61/4511 ,  H04L9/40 ,  H04L67/146 ,  H04L67/147 ,  H04L67/12

摘要： Mechanisms for split tunneling are provided. The mechanisms identify user devices and determine that communications for a first device of the user devices are to be tunneled. These mechanisms also receive a DNS request from a second device of the user devices, modify the DNS request to request meta information corresponding to a domain identified in the DNS request, and send the DNS request to a DNS server. The mechanisms further receive a response to the DNS request, wherein the response includes the meta information, determine that communications for the second device are not to be tunneled based at least in part on the meta information, and cause the communications for the first device to be tunneled and the communications for the second device to not be tunneled.