公开(公告)号：US11166170B2

公开(公告)日：2021-11-02

申请号：US16147322

申请日：2018-09-28

Applicant: McAfee, LLC

Inventor： Raja Sinha ,  Dattatraya Kulkarni ,  Srikanth Nalluri ,  Anjan Kumar Nayak ,  Tirumaleswar Reddy Konda ,  Susmita Nayak ,  Purushothaman B ,  Harsha R. Joshi

IPC: H04W16/18 ,  H04W4/021 ,  H04W4/024 ,  H04W4/02 ,  H04W24/08

Abstract: A technique for collecting and using signal reputation data, comprising obtaining a plurality of signal reputation data corresponding to a plurality of locations, categorizing the signal reputation data into groups, calculating signal circles for at least some of the groups based on a representative signal value for the corresponding group, calculating a signal reputation score for each signal circle, determining a best signal circle for a user mobile device within a predetermined distance of dead zones, and sending the best signal circle to the user mobile device based at least in part on the signal reputation score and a location of the user mobile device. In some embodiments, the technique may include some but not all of these actions and additional actions, such as suspending obtaining signal reputation data based on battery status.

公开(公告)号：US20210329028A1

公开(公告)日：2021-10-21

申请号：US17360810

申请日：2021-06-28

Applicant: McAfee, LLC

Inventor： Tirumaleswar Reddy Konda ,  Harsha R. Joshi ,  Himanshu Srivastava ,  Srikanth Nalluri ,  Dattatraya Kulkarni

IPC: H04L29/06 ,  H04L12/24 ,  H04L12/741

Abstract: Example methods, apparatus, systems and articles of manufacture to implement cooperative mitigation of distributed denial of service attacks originating in local networks are disclosed. An example network element disclosed herein is to detect a first distributed denial of service attack associated with first network traffic received by an Internet service provider network, the first network traffic originating from a first device connected to a local network. The disclosed example network element is also to implement a threat signaling client to transmit first information describing the first distributed denial of service attack to a threat signaling server implemented by a local network router of the local network, and receive second information from the threat signaling server of the local network, the second information to provide a notification when the first network traffic associated with the first distributed denial of service attack has been mitigated.

公开(公告)号：US11496440B2

公开(公告)日：2022-11-08

申请号：US16403881

申请日：2019-05-06

Applicant: McAfee, LLC

Inventor： Tirumaleswar Reddy Konda ,  Harsha R. Joshi ,  Eric Wuehler ,  Shashank Jain

IPC: H04L29/12 ,  H04L12/46 ,  H04L29/06 ,  H04L29/08 ,  H04L61/2592 ,  H04L61/45 ,  H04L61/4511 ,  H04L9/40 ,  H04L67/146 ,  H04L67/147 ,  H04L67/12

Abstract: Mechanisms for split tunneling are provided. The mechanisms identify user devices and determine that communications for a first device of the user devices are to be tunneled. These mechanisms also receive a DNS request from a second device of the user devices, modify the DNS request to request meta information corresponding to a domain identified in the DNS request, and send the DNS request to a DNS server. The mechanisms further receive a response to the DNS request, wherein the response includes the meta information, determine that communications for the second device are not to be tunneled based at least in part on the meta information, and cause the communications for the first device to be tunneled and the communications for the second device to not be tunneled.

公开(公告)号：US20200067974A1

公开(公告)日：2020-02-27

申请号：US16154473

申请日：2018-10-08

Applicant: McAfee, LLC

Inventor： Tirumaleswar Reddy Konda ,  Harsha R. Joshi ,  Himanshu Srivastava ,  Srikanth Nalluri ,  Dattatraya Kulkarni

IPC: H04L29/06 ,  H04L12/741 ,  H04L12/24

Abstract: Example methods, apparatus, systems and articles of manufacture to implement cooperative mitigation of distributed denial of service attacks originating in local networks are disclosed. An example local network router disclosed herein includes a mitigator to mitigate a distributed denial of service attack detected by an Internet service provider, the distributed denial of service attack associated with network traffic originating from a first device connected to a local network. The example local network router also includes a threat signaling server to identify the first device based on first information received from a threat signaling client of the Internet service provider, the first information describing the distributed denial of service attack. The example threat signaling server is also to transmit second information to notify the threat signaling client of the Internet service provider when the network traffic associated with the distributed denial of service attack has been mitigated.

公开(公告)号：US20210314329A1

公开(公告)日：2021-10-07

申请号：US17060576

申请日：2020-10-01

Applicant: McAfee, LLC

Inventor： Harsha R. Joshi ,  Dattatraya Kulkarni ,  Srikanth Nalluri

IPC: H04L29/06

Abstract: Mechanisms for authorizing requests to access a resource are provided, the methods comprising: receiving a request to access the resource at a hardware processor from an Internet Protocol (IP) address; determining whether a rule applies to the request to access the resource; in response to determining that a rule does not apply to the request to access the resource, sending a request for authorization; receiving a response to the request for authorization; and in response to the response to the request for authorization indicating that access is authorized, providing a connection to the resource.

公开(公告)号：US20200304459A1

公开(公告)日：2020-09-24

申请号：US16403881

申请日：2019-05-06

Applicant: McAfee, LLC

Inventor： Tirumaleswar Reddy Konda, JR. ,  Harsha R. Joshi ,  Eric Wuehler ,  Shashank Jain

IPC: H04L29/12 ,  H04L12/46 ,  H04L29/06

Abstract: Mechanisms for split tunneling are provided, the method comprising: identifying a plurality of user devices; determining that communications for a first device of the plurality of user devices are to be tunneled; receiving a DNS request from a second device of the plurality of user devices; modifying the DNS request to request meta information corresponding to a domain identified in the DNS request; sending the DNS request to a DNS server using the hardware processor; receiving a response to the DNS request including the meta information; determining that communications for the second device are not to be tunneled based at least in part based on the meta information; and causing the communication for the first device to be tunneled and the communications for the second device to not be tunneled.

公开(公告)号：US20200236104A1

公开(公告)日：2020-07-23

申请号：US16296199

申请日：2019-03-07

Applicant: McAfee, LLC

Inventor： Tirumaleswar Reddy Konda ,  Harsha R. Joshi ,  Shashank Jain ,  Himanshu Srivastava ,  Srikanth Nalluri ,  Naveen Kandadi

IPC: H04L29/06 ,  H04L9/08

Abstract: Methods, apparatus, systems and articles of manufacture are disclosed to verify encrypted handshakes. An example apparatus includes a message copier to clone a client introductory message, the client introductory message is included in a first handshake for network communication between a client and a server, a connection establisher to initiate a second handshake between the apparatus and the server based on the cloned client introductory message, and a decrypter to, in response to the second handshake, decrypt a certificate sent by the server.

公开(公告)号：US11924221B2

公开(公告)日：2024-03-05

申请号：US17060576

申请日：2020-10-01

Applicant: McAfee, LLC

Inventor： Harsha R. Joshi ,  Dattatraya Kulkarni ,  Srikanth Nalluri

IPC: H04L9/40

CPC classification number: H04L63/108 ,  H04L63/0876 ,  H04L63/20

Abstract: Mechanisms for authorizing requests to access a resource are provided, the methods comprising: receiving a request to access the resource at a hardware processor from an Internet Protocol (IP) address; determining whether a rule applies to the request to access the resource; in response to determining that a rule does not apply to the request to access the resource, sending a request for authorization; receiving a response to the request for authorization; and in response to the response to the request for authorization indicating that access is authorized, providing a connection to the resource.

公开(公告)号：US11805423B2

公开(公告)日：2023-10-31

申请号：US17510313

申请日：2021-10-25

Applicant: McAfee, LLC

Inventor： Raja Sinha ,  Dattatraya Kulkarni ,  Srikanth Nalluri ,  Anjan Kumar Nayak ,  Tirumaleswar Reddy Konda ,  Susmita Nayak ,  Purushothaman B ,  Harsha R. Joshi

IPC: H04W16/18 ,  H04W4/021 ,  H04W4/024 ,  H04W4/02 ,  H04W24/08

CPC classification number: H04W16/18 ,  H04W4/021 ,  H04W4/024 ,  H04W4/025 ,  H04W24/08

Abstract: A technique for collecting and using signal reputation data, comprising obtaining a plurality of signal reputation data corresponding to a plurality of locations, categorizing the signal reputation data into groups, calculating signal circles for at least some of the groups based on a representative signal value for the corresponding group, calculating a signal reputation score for each signal circle, determining a best signal circle for a user mobile device within a predetermined distance of dead zones, and sending the best signal circle to the user mobile device based at least in part on the signal reputation score and a location of the user mobile device. In some embodiments, the technique may include some but not all of these actions and additional actions, such as suspending obtaining signal reputation data based on battery status.

公开(公告)号：US11411972B2

公开(公告)日：2022-08-09

申请号：US16189637

申请日：2018-11-13

Applicant: McAfee, LLC

Inventor： Himanshu Srivastava ,  Tirumaleswar Reddy Konda ,  Piyush P. Joshi ,  Harsha R. Joshi ,  Srikanth Nalluri ,  Dattatraya Kulkarni ,  Siddaraya Revashetti

IPC: H04L29/06 ,  H04L9/40 ,  H04W4/80 ,  H04W4/70 ,  H04L61/5014

Abstract: Methods, systems, and media for dynamically separating Internet of Things (IoT) devices in a network are provided. In accordance with some embodiments of the disclosed subject matter, a method for dynamically separating IoT devices in a network is provided, the method comprising: detecting a first IoT device in the network; monitoring network communication of the first IoT device; determining device information of the first IoT device based on the monitored network communication; and causing the first IoT device to communicate on a first subnet of a plurality of subnets in the network based on the device information.