Abstract: System and methods for enabling SD-WAN functionality to respond to Ethernet level OAM-related events are provided. According to an embodiment, a Software-Defined Network Wide Area Network (SD-WAN) module of a network device operating as both an SD-WAN node and a Maintenance Entity Group Endpoint (MEP) receives Operation, Administration and Maintenance (OAM) information via one of multiple OAM-enabled links of the network device. The SD-WAN module determines based on the OAM information, an event associated with the OAM network relating to one or more of service availability, Quality of Service (QoS), and service configuration, and based on the determined event, updates routing information to determine how to route application traffic over the OAM-enabled links.

Abstract: Systems and methods for facilitating secure and reliable communications among nodes of different tiers of a multi-tenant SOAR deployment are provided. According to one embodiment, data flow propagation within a hierarchy of nodes of the SOAR deployment is controlled. Responsive to creation of a record by a node: (i) when there exists a parent node in the hierarchy, setting a PID of the record to a TID of the parent node; otherwise, to a TID of the node; (ii) when there exists a child node in the hierarchy, setting a CID of the record to the TID of the child node; otherwise, to the TID of the node; and (iii) maintaining a set of propagation rules for the node relating to permissibility of propagation of the record within the hierarchy. During propagation of the record by the node, the PID and the CID of the record are updated.

Abstract: Systems, devices, and methods are discussed for forward testing rule sets at a granularity that is less than all activity on the network. In some cases, the granularity is that of an individual application.

Abstract: Systems and methods for facilitating secure unlocking of a computing device based on user-defined rules are provided. According to one embodiment, a request to unlock a client device is received by a security agent running on the client device. Responsive to the request, information regarding a set of operating characteristics of the client device is obtained by the security agent. One or more authentication mechanisms of multiple authentication mechanisms available on the client device are selectively enabled or disabled by the security agent based on the information regarding the set of operating characteristics and a set of user-defined rules.

Abstract: The present invention relates to a method for managing IoT devices by a security fabric. A method is provided for managing IoT devices comprises collecting, by analyzing tier, data of Internet of Things (IoT) devices from a plurality of data sources, abstracting, by analyzing tier, profiled element baselines (PEBs) of IoT devices from the data, wherein each PEB includes characteristics of IoT devices; retrieving, by executing tier, the PEBs from the analyzing tier, wherein the executing tier is configured to control network traffic of IoT devices of a private network; generating, by the executing tier, security policies for IoT devices from PEBs of the IoT devices; and controlling, by the executing tier, network traffic of the IoT devices of the private network to comply with the security policies.

Abstract: Systems, devices, and methods are discussed for identifying security policies applicable to a received information packet based upon a dual bitmap scheme accounting for bit position mergers and/or policies common to multiple bit positions.

Abstract: Systems, devices, and methods are discussed for classifying a number of security policies in relation to criteria for applying those security policies to yield a dual bitmap scheme representing a correlation between security policies and one or more criteria.

Abstract: Systems, devices, and methods are discussed for defining and monitoring network communication performance in an SD-WAN environment.

Abstract: Redundant upstream mesh links are formed with a gateway access point for each of the radio capabilities. A resource load is measured across each of the redundant upstream mesh links. During runtime, a packet is received for upstream (or downstream) transmission from a specific client from the plurality of clients. An upstream link is selected for transmission of the packet from the redundant upstream mesh links for transmission of the packet and packets of the packet session, based on a highest link quality available from the plurality of mesh links according to the resource load measurement.

Abstract: A wave generation module can illustrate an aggregate wave pattern in a virtual environment representative of a physical environment in 3-D. The aggregate wave pattern takes into account an effect of the composition characteristics of the structural walls and fixtures on the wave generating characteristics for the of access points.

Abstract: The present invention relates to a method for managing IoT devices by a security fabric.

Abstract: A thermistor sensor arrangement for measuring chipset temperature is provided. According to various aspects of the present disclosure, a sensor assembly is placed between a heat sink of a chipset and a PCB on which the chipset is mounted. The sensor assembly includes a thermistor sensor, an electrical connector, and a resilient pad. The thermistor sensor includes a first end having a sensing element and a second end having sensor contacts. The electrical connector has a first interface to receive the sensor contacts, a second interface through which the signals are outputted, and a bottom surface to mount to the PCB. The resilient pad has an upper surface to which the sensing element is attached and a lower surface to engage with the PCB such that when the resilient pad is compressed, spring force of the resilient pad facilitates temperature measurement by pressing the sensing element against the heat sink.

Abstract: Systems, devices, and methods are discussed for leveraging SD-WAN's property of redundant independent paths to enable out of band key exchange using the collection of available paths, dynamically managing link failures to keep the separation whenever possible, and/or signaling availability of quantum-safe data transfer to SD-WAN to enable quantum-safety to be used in SD-WAN policy decisions.

Abstract: Embodiments discussed generally relate to cellular network gateways. In some cases, embodiments discussed relate to cellular network gateways capable of processing multiple streams of IP traffic over multiple channels.

Abstract: Systems and methods for a passive wireless multi-factor authentication approach are provided. According to one embodiment, a user authentication request is received by a first computing device connected to a private network. The user authentication request is sent by an endpoint protection suite running on the first computing device to an authentication device associated with the private network. A proximity of a second computing device, which was previously registered with the authentication device to be used as a factor of a multi-factor authentication process involving the first computing device, is determined by the authentication device in relation to one or more wireless access points of a wireless network of the private network. The user authentication request is then processed by the authentication device based on the proximity.

Abstract: Systems, devices, and methods are discussed for enhancing security in a container server environment.

Abstract: During high-speed network policy searching for data packets, an upper limit and a lower limit for a policy count are predefined for a ratio of the policy count to the sum of the policy count and the range count. A policy tree builder generates a policy tree image from a set of recursive operations on the raw policy set including an on-the-fly determination of whether a specific node is a leaf based on a leaf policy count limit, wherein for a selected dimension, the specific node is converted to the leaf if the policy count does not exceed the leaf policy count limit and the range count for the selected dimension does not exceed a product of the leaf policy count limit and a range count limit coefficient, and otherwise the specific node is converted to two or more child nodes. A network processor configures at least one set of registers, at least one set of tables, and at least one sequence of instructions according to the policy tree image.

Abstract: In one embodiment, a similarity index is calculated from characteristics of a suspected phishing web page to a database of known phishing web pages. The characteristics derive from both HTML tags of the suspected phishing web page and a screenshot of the suspected phishing web page. With machine learning using the similarity index as an input, a probability is estimated that the suspected web page comprises a known phishing web page from the database of known phishing web pages. A known phishing web page is selected from one or more candidates known phishing web pages, based on having a highest probability.

Abstract: Systems and methods for analyzing user behavior patterns to detect compromised computing devices in an enterprise network are provided. According to one embodiment, an enforcement engine running on a network security device, identifies top users of a network exhibiting a suspicious behavior relating to login failures by determining a first set of users having a number of login failure events during a given time duration exceeding a threshold. The enforcement engine identifies from the first set of computers associated with the top users, a second set of computers exhibiting a suspicious behavior relating to new connections exceeding a threshold. The enforcement engine classifies a third set of computers, representing a subset of the second set exhibiting a suspicious behavior relating to consecutive new connections, as compromised source computers when their respective new connections are in a sequence that results in a Shannon entropy measure exceeding a threshold.

Abstract: Systems and methods for automatic VPN establishment are provided.