Abstract: A system and method for directing network traffic in a client device based on a domain catalog. The method includes generating a virtual network interface having a namespace with a plurality of names, wherein a first name of the namespace is assigned to a client device; assigning a second name of the namespace to a resource accessible to the client device through a zero trust network environment; configuring the client device to communicate only through the virtual network interface; and sending network traffic to the resource, in response to determining that the resource is allowed based on a domain catalog.

Abstract: A system and method for configuring a client device to communicate utilizing a secure web gateway. The method includes generating a virtual network interface having a namespace with a plurality of names, wherein a first name of the namespace is assigned to a client device; assigning a second name of the namespace to a resource accessible to the client device through a zero trust network environment, wherein the resource is deployed in a secure network environment; and configuring the client device to communicate only through the virtual network interface.

Abstract: A system and method for providing file scanning between a client device and a resource through a zero trust network environment (ZTNE) are disclosed. The method includes detecting in network traffic between the client device and the ZTNE a request to receive a first content from a resource deployed in a private network, wherein the resource is accessible to the user device making first request through the ZTNE; detecting in network traffic between the client device and the ZTNE a second request to send a second content from the client device to a public network, wherein the public network is accessible to the user device making the second request through the ZTNE; sending the request to the public network, in response to determining that the second content is allowable; and blocking the request to the public network, in response to determining that the second content is not allowable network traffic.

Abstract: A system and method for facilitating communication between a user device and a web application through a zero trust network providing a secure web gateway using authentication cookies. The method includes receiving network traffic from a user device including an altered authentication cookie, the network traffic directed at a web application; retrieving an original authentication cookie based on the altered authentication cookie; generating a new network traffic based on: the received network traffic, and the original authentication cookie; and sending the new network traffic from the zero trust network environment to the web application.

Abstract: A method and system for providing web resources through a zero trust network environment are provided. The system comprises receiving a request from a client device to access a web resource through a zero trust network environment, wherein the web resource is external to the zero trust network environment, the request including a first uniform resource locator (URL), and the resource further including a second URL; fetching the web resource based on the first URL; generating an alternate resource, the alternate resource including an alternate URL replacing the second URL; and providing the alternate resource to the client device.

Abstract: A system and method for configuring a client device to communicate utilizing a secure web gateway. The method includes generating a virtual network interface having a namespace with a plurality of names, wherein a first name of the namespace is assigned to a client device; assigning a second name of the namespace to a resource accessible to the client device through a zero trust network environment, wherein the resource is deployed in a secure network environment; and configuring the client device to communicate only through the virtual network interface.

Abstract: A system and method for facilitating communication between a user device and a web application through a zero trust network providing a secure web gateway using authentication cookies. The method includes receiving network traffic from a user device including an altered authentication cookie, the network traffic directed at a web application; retrieving an original authentication cookie based on the altered authentication cookie; generating a new network traffic based on: the received network traffic, and the original authentication cookie; and sending the new network traffic from the zero trust network environment to the web application.

Abstract: A system and method for directing network traffic in a client device based on a domain catalog. The method includes generating a virtual network interface having a namespace with a plurality of names, wherein a first name of the namespace is assigned to a client device; assigning a second name of the namespace to a resource accessible to the client device through a zero trust network environment; configuring the client device to communicate only through the virtual network interface; and sending network traffic to the resource, in response to determining that the resource is allowed based on a domain catalog.

Abstract: A system and method for providing file scanning between a client device and a resource through a zero trust network environment (ZTNE) are disclosed. The method includes detecting in network traffic between the client device and the ZTNE a request to receive a first content from a resource deployed in a private network, wherein the resource is accessible to the user device making first request through the ZTNE; detecting in network traffic between the client device and the ZTNE a second request to send a second content from the client device to a public network, wherein the public network is accessible to the user device making the second request through the ZTNE; sending the request to the public network, in response to determining that the second content is allowable; and blocking the request to the public network, in response to determining that the second content is not allowable network traffic.

Abstract: In some examples, a system receives a request from a client device to access a web resource through a zero trust network environment, wherein the web resource is external to the zero trust network environment, the request including a first uniform resource locator (URL), and the web resource including a second URL; fetching the web resource based on the first URL; generating an alternate resource, the alternate resource including an alternate URL replacing the second URL; and providing the alternate resource to the client device.