Patents by Inventor Arun Raghuramu
Arun Raghuramu has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11902304Abstract: Systems, methods, and related technologies for clustering are described. The method includes determining one or more access policies associated with each of one or more clusters of entities, wherein a cluster comprises one or more entities with similar behavior. The method further includes determining one or more anomalies based on the one or more clusters, wherein the one or more access policies control communications between entities of the one or more clusters based on the one or more anomalies. The method further includes storing data associated with at least one of the one or more clusters and the one or more anomalies.Type: GrantFiled: December 8, 2022Date of Patent: February 13, 2024Assignee: Forescout Technologies, Inc.Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Publication number: 20240048578Abstract: Systems, methods, and related technologies for profiling an entity and classifying an entity based on a profile are described. In certain aspects, data associated with communications of a first entity on a network are accessed, behaviors are determined based on the data associated with the communications of the first entity, and sequences of the behaviors of the first entity are determined. A profile of the first entity is determined based on the sequences of the behaviors, the profile including a classification of the first entity, a state machine of the profile of the first entity is determined, the state machine being associated with the classification against which the behaviors can be matched, a second entity is detected coming onto the network, and responsive to detecting the second entity coming onto the network, the second entity is classified based on the state machine of the profile of the first entity.Type: ApplicationFiled: October 5, 2023Publication date: February 8, 2024Inventors: Yang Zhang, Arun Raghuramu, Siying Yang
-
Patent number: 11843621Abstract: Systems, methods, and related technologies for profiling an entity and classifying an entity based on a profile are described. In certain aspects, accessing data associated with one or more communications of an entity is accessed and one or more behaviors based on the data associated with the one or more communications of the entity are determined. One or more sequences of the one or more behaviors of the entity are determined and a profile is determined based on the one or more sequences of the one or more behaviors, wherein the profile comprises a classification of the entity. The profile may then be stored.Type: GrantFiled: March 8, 2019Date of Patent: December 12, 2023Assignee: FORESCOUT TECHNOLOGIES, INC.Inventors: Yang Zhang, Arun Raghuramu, Siying Yang
-
Patent number: 11792207Abstract: In some examples, a secure compliance protocol may include a virtual computing instance (VCI) deployed on a hypervisor and may be provisioned with hardware computing resources. In some examples the VCI may also include a cryptoprocessor to provide cryptoprocessing to securely communicate with a plurality of nodes, and a plurality of agents to generate a plurality of compliance proofs; the VCI may communicate with a server corresponding to a node of the plurality of nodes; and receive a time stamp corresponding to at least one compliance proof based on a metric of a connected device.Type: GrantFiled: December 1, 2021Date of Patent: October 17, 2023Assignee: Hewlett Packard Enterprise Development LPInventors: Puneet Sharma, Arun Raghuramu, David Lee
-
Publication number: 20230289631Abstract: Systems, methods, and related technologies for classification are described. Network traffic from a network may be accessed and an entity may be selected. One or more values associated with one or more properties associated with the entity may be determined. The one or more values may be accessed from the network traffic. A first model associated with a first level of granularity is accessed. A first classification result of the entity based on the first model is determined by a processing device. A second model associated with a second level of granularity is accessed. The second level of granularity is higher than the first level of granularity and the second model is accessed based on the first classification result. A second classification result of the entity based on the second model is determined. At least one of the first classification result or the second classification result is stored.Type: ApplicationFiled: May 17, 2023Publication date: September 14, 2023Inventors: Yuzhou Song, Arun Raghuramu, Yang Zhang
-
Publication number: 20230275818Abstract: Systems, methods, and related technologies for increasing data availability. The determining of one or more recommendations to improve classification may include accessing network traffic from a network and selecting an entity. One or more values associated with one or more properties associated with the entity may be determined. The one or more values may be accessed from the network traffic. The entity may be classified and in response to the classification meeting a condition, one or more properties that are unavailable in the network traffic may be determined. A data source associated with the one or more properties for which a value is not present in the network traffic may be determined and the data source associated with the one or more properties that are unavailable in the network traffic may be stored.Type: ApplicationFiled: May 2, 2023Publication date: August 31, 2023Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Patent number: 11694098Abstract: Systems, methods, and related technologies for classification are described. Network traffic from a network may be accessed and an entity may be selected. One or more values associated with one or more properties associated with the entity may be determined. The one or more values may be accessed from the network traffic. A first model associated with a first level of granularity is accessed. A first classification result of the entity based on the first model is determined by a processing device. A second model associated with a second level of granularity is accessed. The second level of granularity is higher than the first level of granularity and the second model is accessed based on the first classification result. A second classification result of the entity based on the second model is determined. At least one of the first classification result or the second classification result is stored.Type: GrantFiled: June 29, 2020Date of Patent: July 4, 2023Assignee: FORESCOUT TECHNOLOGIES, INC.Inventors: Yuzhou Song, Arun Raghuramu, Yang Zhang
-
Patent number: 11683248Abstract: Systems, methods, and related technologies for increasing data availability. The determining of one or more recommendations to improve classification may include accessing network traffic from a network and selecting an entity. One or more values associated with one or more properties associated with the entity may be determined. The one or more values may be accessed from the network traffic. The entity may be classified and in response to the classification meeting a condition, one or more properties that are unavailable in the network traffic may be determined. A data source associated with the one or more properties for which a value is not present in the network traffic may be determined and the data source associated with the one or more properties that are unavailable in the network traffic may be stored.Type: GrantFiled: December 20, 2019Date of Patent: June 20, 2023Assignee: FORESCOUT TECHNOLOGIES, INC.Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Publication number: 20230118017Abstract: Systems, methods, and related technologies for clustering are described. The method includes determining one or more access policies associated with each of one or more clusters of entities, wherein a cluster comprises one or more entities with similar behavior. The method further includes determining one or more anomalies based on the one or more clusters, wherein the one or more access policies control communications between entities of the one or more clusters based on the one or more anomalies. The method further includes storing data associated with at least one of the one or more clusters and the one or more anomalies.Type: ApplicationFiled: December 8, 2022Publication date: April 20, 2023Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Patent number: 11601445Abstract: Systems, methods, and related technologies for clustering are described. Network traffic is accessed from a network and the network may be associated with a plurality of entities. Behavior associated with each entity of the plurality of entities may be determined. The behavior may be determined based one or more communications associated with each entity. A processing device may be used to determine one or more clusters of entities based on entities having similar behavior. A cluster may comprise one or more entities with similar behavior. One or more anomalies may be determined based on the one or more clusters and storing data associated with at least one of the one or more clusters and the one or more anomalies may be stored.Type: GrantFiled: March 31, 2020Date of Patent: March 7, 2023Assignee: FORESCOUT TECHNOLOGIES, INC.Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Publication number: 20220303805Abstract: Systems, methods, and related technologies for device classification are described. In certain aspects, one or more properties are selected based on associated respective ranks. The selected one or more properties are used with information associated with the device to determine a classification. The classification may then be stored.Type: ApplicationFiled: May 31, 2022Publication date: September 22, 2022Inventors: Arun Raghuramu, Yi Zhang, Yang Zhang, Siying Yang
-
Patent number: 11381984Abstract: Systems, methods, and related technologies for device classification are described. In certain aspects, one or more properties are selected based on associated respective ranks. The selected one or more properties are used with information associated with the device to determine a classification. The classification may then be stored.Type: GrantFiled: March 27, 2018Date of Patent: July 5, 2022Assignee: ForeScout Technologies, Inc.Inventors: Arun Raghuramu, Yi Zhang, Yang Zhang, Siying Yang
-
Publication number: 20220201032Abstract: Systems, methods, and related technologies for determining a risk associated with a network portion are described. The determination of risk associated with a network portion may include accessing network traffic from a network and determining an entity type associated with at least one entity communicatively coupled to the network. A network portion associated with the at least one entity can be determined. A risk associated with the at least one entity can be determined. A risk associated with the network portion associated with the at least one entity can be determined based on the risk associated with the at least one entity. The risk associated with the network portion can then be stored.Type: ApplicationFiled: March 14, 2022Publication date: June 23, 2022Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Patent number: 11310258Abstract: Systems, methods, and related technologies for determining a risk associated with a network portion are described. The determination of risk associated with a network portion may include accessing network traffic from a network and determining an entity type associated with at least one entity communicatively coupled to the network. A network portion associated with the at least one entity can be determined. A risk associated with the at least one entity can be determined. A risk associated with the network portion associated with the at least one entity can be determined based on the risk associated with the at least one entity. The risk associated with the network portion can then be stored.Type: GrantFiled: September 25, 2019Date of Patent: April 19, 2022Assignee: FORESCOUT TECHNOLOGIES, INC.Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Publication number: 20220094696Abstract: In some examples, a secure compliance protocol may include a virtual computing instance (VCI) deployed on a hypervisor and may be provisioned with hardware computing resources. In some examples the VCI may also include a cryptoprocessor to provide cryptoprocessing to securely communicate with a plurality of nodes, and a plurality of agents to generate a plurality of compliance proofs; the VCI may communicate with a server corresponding to a node of the plurality of nodes; and receive a time stamp corresponding to at least one compliance proof based on a metric of a connected device.Type: ApplicationFiled: December 1, 2021Publication date: March 24, 2022Inventors: Puneet SHARMA, Arun RAGHURAMU, David LEE
-
Publication number: 20220092087Abstract: Systems, methods, and related technologies for classification are described. Network traffic from a network may be accessed. One or more values associated with one or more properties associated with an entity may be determined. The one or more values may be determined from the network traffic. A first classification attribute is determined based on the one or more values associated with one or more properties associated with the entity. A second classification attribute is determined, by a processing device, based on the first classification attribute and the one or more values associated with one or more properties associated with the entity. The second classification attribute is stored.Type: ApplicationFiled: September 24, 2020Publication date: March 24, 2022Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang
-
Patent number: 11223631Abstract: In some examples, a secure compliance protocol may include a virtual computing instance (VCI) deployed on a hypervisor and may be provisioned with hardware computing resources. In some examples the VCI may also include a cryptoprocessor to provide cryptoprocessing to securely communicate with a plurality of nodes, and a plurality of agents to generate a plurality of compliance proofs; the VCI may communicate with a server corresponding to a node of the plurality of nodes; and receive a time stamp corresponding to at least one compliance proof based on a metric of a connected device.Type: GrantFiled: April 6, 2018Date of Patent: January 11, 2022Assignee: Hewlett Packard Enterprise Development LPInventors: Puneet Sharma, Arun Raghuramu, David Lee
-
Publication number: 20210406255Abstract: Systems, methods, and related technologies for classification are described. Network traffic from a network may be accessed and an entity may be selected. One or more values associated with one or more properties associated with the entity may be determined. The one or more values may be accessed from the network traffic. A search query based on the one or more values associated with the one or more properties associated with the entity is determined and performed. A search query result is received and the search query result comprises a plurality of webpages. Data from a webpage of the plurality webpages is accessed. A classification result of the entity is determined, by a processing device, based on the data from the webpage of the plurality of webpages. The classification result is stored.Type: ApplicationFiled: June 29, 2020Publication date: December 30, 2021Inventors: Arun Raghuramu, Yuzhou Song, Yang Zhang
-
Publication number: 20210406720Abstract: Systems, methods, and related technologies for classification are described. Network traffic from a network may be accessed and an entity may be selected. One or more values associated with one or more properties associated with the entity may be determined. The one or more values may be accessed from the network traffic. A first model associated with a first level of granularity is accessed. A first classification result of the entity based on the first model is determined by a processing device. A second model associated with a second level of granularity is accessed. The second level of granularity is higher than the first level of granularity and the second model is accessed based on the first classification result. A second classification result of the entity based on the second model is determined. At least one of the first classification result or the second classification result is stored.Type: ApplicationFiled: June 29, 2020Publication date: December 30, 2021Inventors: Yuzhou Song, Arun Raghuramu, Yang Zhang
-
Publication number: 20210306354Abstract: Systems, methods, and related technologies for clustering are described. Network traffic is accessed from a network and the network may be associated with a plurality of entities. Behavior associated with each entity of the plurality of entities may be determined. The behavior may be determined based one or more communications associated with each entity. A processing device may be used to determine one or more clusters of entities based on entities having similar behavior. A cluster may comprise one or more entities with similar behavior. One or more anomalies may be determined based on the one or more clusters and storing data associated with at least one of the one or more clusters and the one or more anomalies may be stored.Type: ApplicationFiled: March 31, 2020Publication date: September 30, 2021Inventors: Arun Raghuramu, Aveek Kumar Das, Yang Zhang