Patents by Inventor Jeff Forristal
Jeff Forristal has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 9154475Abstract: Methods, systems, and apparatus, including computer program products, for distributed security system authorization. Client device authentication instructions are executed on a client device to determine if authentication data accessible by the client device authentication instructions are stored at the client device. If the authentication data are stored at the client device, the client device authentication instructions generate authenticated user data and store the authenticated user data at the client device. If the authentication data are not stored at the client device, the client device authentication instructions generate a login environment that allows a user of the client device to input login data. The login data are provided to a verification process that in response to verification provide the authentication data to the client device.Type: GrantFiled: January 16, 2009Date of Patent: October 6, 2015Assignee: Zscaler, Inc.Inventors: Kailash Kailash, Jeff Forristal, Narinder Paul, Sivaprasad Udupa
-
Patent number: 8984316Abstract: Secure fast platform hibernation and resumption for computing systems. An embodiment of an apparatus includes a processor to operate according to an operating system, the processor to transition the apparatus to a first reduced power state in response to a request, the transition to the first reduced power state including the processor to store context data for the apparatus in a volatile system memory, and logic to transition the apparatus to a second reduced power state, the logic to write the context data from the volatile system memory to a nonvolatile memory for the transition to the second reduced power state, wherein the logic is to implement one or more security measures for the writing of the context data into the nonvolatile memory.Type: GrantFiled: December 29, 2011Date of Patent: March 17, 2015Assignee: Intel CorporationInventors: Jeff Forristal, Faraz Siddiqi, Lukasz Mielicki, Hao-Chi Wong
-
Patent number: 8793488Abstract: Systems, methods and apparatus for a distributed security that detects embedded resource request identifiers. The system can identify requests, such as HTTP requests, and can identify encoded prefix data corresponding to URI prefixes, such as Base64 or Base16 encoded URI prefixes “www.” and “http:”.Type: GrantFiled: July 15, 2008Date of Patent: July 29, 2014Assignee: Zscaler, Inc.Inventor: Jeff Forristal
-
Patent number: 8763120Abstract: Systems, methods and apparatus for detecting malicious requests. In one aspect, a browser request is received from a client device. It is determined whether the request includes tracer data in a first parameter type. If the request is determined to include the tracer data in the first parameter type, then the request is allowed. If the request is determined to include the tracer data in a parameter type other than the first parameter type, then a security process is initiated.Type: GrantFiled: July 15, 2008Date of Patent: June 24, 2014Assignee: Zscaler, Inc.Inventor: Jeff Forristal
-
Patent number: 8656478Abstract: Systems, methods and apparatus for a distributed security system that detects proxied resource requests. The system can search data communications, such as HTTP requests and responses, for proxy strings that are indicative of a string pattern associated with corresponding proxy software. Security operations can be initiated for each data communication that includes a proxy string. The security operations can block the data communication, modify the data communication, and/or generate security notifications for system administrators.Type: GrantFiled: July 15, 2008Date of Patent: February 18, 2014Assignee: Zscaler, Inc.Inventor: Jeff Forristal
-
Publication number: 20130173942Abstract: Secure fast platform hibernation and resumption for computing systems. An embodiment of an apparatus includes a processor to operate according to an operating system, the processor to transition the apparatus to a first reduced power state in response to a request, the transition to the first reduced power state including the processor to store context data for the apparatus in a volatile system memory, and logic to transition the apparatus to a second reduced power state, the logic to write the context data from the volatile system memory to a nonvolatile memory for the transition to the second reduced power state, wherein the logic is to implement one or more security measures for the writing of the context data into the nonvolatile memory.Type: ApplicationFiled: December 29, 2011Publication date: July 4, 2013Inventors: Jeff Forristal, Faraz Siddiqi, Lukasz Mielicki, Hao-Chi Wong
-
Patent number: 8413239Abstract: System and methods for injecting content into a response for improving client-side security. The system includes a content injection service external to network edges of at least one system. The content injection service receives a request from a client within the at least one system and identifies or anticipates a potential threat associated with the response. The content injection service is configured to determine an appropriate counter for the identified or anticipated potential threat and in response injects content into the response according to the potential or anticipated threat identified.Type: GrantFiled: February 22, 2009Date of Patent: April 2, 2013Assignee: Zscaler, Inc.Inventors: Michael Andrew William Sutton, Jeff Forristal
-
Patent number: 8286220Abstract: Systems, methods and apparatus for a distributed security that monitors communications to manage client browser network access based upon the browser configuration of the client browser by use of a configuration script executed in the browser environment. Such management can reduce the exposure of potentially vulnerable client browsers to domains associated with malicious activity.Type: GrantFiled: September 23, 2008Date of Patent: October 9, 2012Assignee: Zscaler, Inc.Inventor: Jeff Forristal
-
Patent number: 8230506Abstract: Systems, methods and apparatus for a distributed security that provides security processing external to a network edge. The system can identify requests, such as HTTP requests, and can identify embedded resource request identifiers, such as embedded URLs. The embedded resource request identifiers can be classified and appropriate security measures can be initiated based on the classifications.Type: GrantFiled: July 15, 2008Date of Patent: July 24, 2012Assignee: Zscaler, Inc.Inventor: Jeff Forristal
-
Patent number: 8055767Abstract: Systems, methods and apparatus for a distributed security that detects proxied resource requests. The system can identify proxy strings, each of the proxy strings being indicative of a proper substring in a string of data constituting a proxy communication, the proxy communications being communications that are generated by processing systems executing a plurality of proxy applications. The proxy strings can be store and access to the stored proxy strings can be provided to facilitate detection of proxy communications for the one or more proxy applications in resource requests.Type: GrantFiled: July 15, 2008Date of Patent: November 8, 2011Assignee: Zscaler, Inc.Inventor: Jeff Forristal
-
Publication number: 20100218253Abstract: System and methods for injecting content into a response for improving client-side security. The system includes a content injection service external to network edges of at least one system. The content injection service receives a request from a client within the at least one system and identifies or anticipates a potential threat associated with the response. The content injection service is configured to determine an appropriate counter for the identified or anticipated potential threat and in response injects content into the response according to the potential or anticipated threat identified.Type: ApplicationFiled: February 22, 2009Publication date: August 26, 2010Applicant: zScalerInventors: Michael Andrew William Sutton, Jeff Forristal
-
Publication number: 20100077444Abstract: Systems, methods and apparatus for a distributed security that monitors communications to manage client browser network access based upon the browser configuration of the client browser by use of a configuration script executed in the browser environment. Such management can reduce the exposure of potentially vulnerable client browsers to domains associated with malicious activity.Type: ApplicationFiled: September 23, 2008Publication date: March 25, 2010Applicant: Zscaler, Inc.Inventor: JEFF FORRISTAL