Patents by Inventor Ofer BEN NOON

Ofer BEN NOON has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Publication number: 20220417277
    Abstract: A method for providing secure access to digital resources, the method comprising: monitoring communications between a website and a user using a web browser comprised in a user equipment (UE) that is useable to access the digital resources; processing the monitored communications to determine: a set (WVF) of website vulnerability features comprising features which as a result of the user connecting to the website render a digital resource of the digital resources with which the user communicates vulnerable to cyber damage; and a set of user browsing behaviour features (BHF) comprising features that characterize the user browsing behaviour and internet use pattern which render the digital resource vulnerable to cyber damage; determining based on the website vulnerability factors and the user profile a security risk indicator (SRI) having a value that provides an estimate of a cyber damage risk to the digital resource resulting from the user connecting to the website and the digital resource; and based on the S
    Type: Application
    Filed: August 23, 2022
    Publication date: December 29, 2022
    Inventors: Ofer Ben-Noon, Ohad Bobrov, Ido Salomon, Gilad Roth, Guy Harpak
  • Publication number: 20220366050
    Abstract: A communications system for providing secure access to a digital resource of a group of digital resources accessible via the internet, the system comprising: a data processing hub accessible via an IP (internet protocol) address; and a plurality of user equipment (UEs) useable to communicate via the internet, each configured to have a cyber secure isolated environment (CISE) isolated from ambient software in the UE, and comprising a secure web browser (SWB); wherein the hub and CISE are configured so that digital resources in motion and at rest in CISE are visible to the hub.
    Type: Application
    Filed: April 22, 2022
    Publication date: November 17, 2022
    Inventors: Ofer Ben-Noon, Ohad Bobrov, Gilad Roth, Guy Harpak, Ido Salomon
  • Publication number: 20220366032
    Abstract: A system or method may include an in-vehicle network including an interface port for connecting an external device to the in-vehicle network; and a security unit connected to the in-vehicle network, the security unit adapted to enable an external device to communicate with the in-vehicle network, over the interface port, based on a security token received from the external device. A system or method may, based on a token, prevent an external device from at least one of: communicating with a selected set of components on in an in-vehicle network, communicating with a selected set of network segments in the in-vehicle network and performing a selected set of operations.
    Type: Application
    Filed: July 21, 2022
    Publication date: November 17, 2022
    Applicant: Argus Cyber Securlty Ltd.
    Inventors: Ofer BEN-NOON, Yaron Galula, Oron Lavi
  • Publication number: 20220368689
    Abstract: A communications system for providing secure access to a digital resource of a group of digital resources accessible via a communications network, the system comprising: an identity provider (IDP) that controls access to the digital resource; a data processing hub accessible at an IP (internet protocol) address; a plurality of user equipment (UE) useable by users to communicate via the communications network, each UE having a cyber secure isolated environment (CISE) that is isolated from ambient software in the UE and comprises a secure web browser (SWB) identified by a web browser ID; wherein the hub, the IDP, and the SWB are configured to cooperate and exchange information to authorize a user of a UE of the plurality of UEs to use the UE's SWB to access the digital resource.
    Type: Application
    Filed: June 16, 2022
    Publication date: November 17, 2022
    Inventors: Ofer Ben-Noon, Ohad Bobrov, Ido Salomon
  • Patent number: 11458911
    Abstract: An in-vehicle communication network comprising a bus and at least one node connected to the bus; an in-vehicle network operating system (OS) that manages OS processes, to enable a processor to run the processes and execute their respective process codes; and a module hosted in the OS that is configured to monitor the OS and vet a process that the OS enables for running by a processor to determine if the process is potentially damaging.
    Type: Grant
    Filed: December 12, 2018
    Date of Patent: October 4, 2022
    Assignee: ARGUS CYBER SECURITY LTD.
    Inventors: Ofer Ben Noon, Yaron Galula, Oron Lavi
  • Patent number: 11397801
    Abstract: A system or method may include an in-vehicle network including an interface port for connecting an external device to the in-vehicle network; and a security unit connected to the in-vehicle network, the security unit adapted to enable an external device to communicate with the in-vehicle network, over the interface port, based on a security token received from the external device. A system or method may, based on a token, prevent an external device from at least one of: communicating with a selected set of components on in an in-vehicle network, communicating with a selected set of network segments in the in-vehicle network and performing a selected set of operations.
    Type: Grant
    Filed: September 22, 2016
    Date of Patent: July 26, 2022
    Assignee: Argus Cyber Security Ltd.
    Inventors: Ofer Ben-Noon, Yaron Galula, Oron Lavi
  • Patent number: 11303661
    Abstract: Systems and methods for detection of attacks on a communication authentication layer of an in-vehicle network, including determining, by at least one network node, at least one attack attempt on the communication authentication layer of the in-vehicle network, wherein the determination is carried out by identifying anomalies in at least one of messages, data and metadata directed to the communication authentication layer, and selecting, by the at least one network node, a response corresponding to the determined attack attempt from at least one of modification of parameter values corresponding to a security protocol, a failsafe response, and rejection of messages identified as anomalies.
    Type: Grant
    Filed: October 29, 2019
    Date of Patent: April 12, 2022
    Assignee: Argus Cyber Security Ltd
    Inventors: Yaron Galula, Ofer Ben-Noon, Oron Lavi
  • Patent number: 11277427
    Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over the in-vehicle communication network; receiving, by the processor, a message sent over the network; determining, by the processor, based on the model and based on a timing attribute of the message, whether or not the message complies with the model; and if the message does not comply with the model then performing, by the processor, at least one action related to the message.
    Type: Grant
    Filed: February 13, 2020
    Date of Patent: March 15, 2022
    Assignee: Argus Cyber Security Ltd.
    Inventors: Ofer Ben-Noon, Yaron Galula, Ofer Kapota, Alexei Kovelman
  • Patent number: 11252180
    Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over an in-vehicle communication network; receiving, by the processor, a plurality of messages communicated over the network; determining, by the processor, based on the model and based on content attributes of the plurality of messages, whether or not at least one of the messages complies with the model; and if at least one message does not comply with the model then performing, by the processor, at least one action related to the message.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: February 15, 2022
    Assignee: ARGUS CYBER SECURITY LTD.
    Inventors: Yaron Galula, Ofer Ben-Noon, Oron Lavi, Alexei Kovelman, Ofer Kapota
  • Patent number: 11165851
    Abstract: A system and method for providing security to a network may include identifying a message sent over a network, the message related to a data transfer from an initiator to a target node, and transmitting, over the network, at least one disruptive message that causes the data transfer to fail.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: November 2, 2021
    Assignee: Argus Cyber Security Ltd.
    Inventors: Yaron Galula, Ofer Ben-Noon, Oron Lavi, Ofer Kapota, Alexei Kovelman
  • Patent number: 11115433
    Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over the in-vehicle communication network; receiving, by the processor, a message sent over the network; determining, by the processor, based on the model and based on content in the message, whether or not the message complies with the model; and if the message does not comply with the model then performing, by the processor, at least one action related to the message.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: September 7, 2021
    Assignee: ARGUS CYBER SECURITY LTD.
    Inventors: Yaron Galula, Ofer Ben-Noon, Oron Lavi
  • Patent number: 11097674
    Abstract: An in-vehicle communication network comprising at least one node connected to a bus, the network comprising: at least one memory comprising software having data characterizing messages that propagate over the network during normal operation and executable instructions for processing a message based on the data to determine if the message is normal or anomalous; a module operable to: process messages received from the in-vehicle network in accordance with the executable instructions and the data to identify an anomaly in communications over the in-vehicle communication network; accumulate and store information responsive to the processing of the received messages; instruct a communication interface, configured to support communication with an entity external to the vehicle, to upload the stored information or a portion thereof to the entity external to the in-vehicle network.
    Type: Grant
    Filed: September 17, 2017
    Date of Patent: August 24, 2021
    Assignee: Argus Cyber Security Ltd.
    Inventors: Ofer Ben Noon, Yaron Galula, Oron Lavi
  • Patent number: 11063976
    Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over the in-vehicle communication network; receiving, by the processor, a message sent over the network; determining, by the processor, based on the model and based on content in the message, whether or not the message complies with the model; and if the message does not comply with the model then performing, by the processor, at least one action related to the message.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: July 13, 2021
    Assignee: ARGUS CYBER SECURITY LTD.
    Inventors: Yaron Galula, Ofer Ben-Noon, Oron Lavi
  • Patent number: 10798114
    Abstract: A system and method for providing security to a network may include monitoring, by a processor, traffic on a first and second network portions of an in-vehicle communication network; determining whether or not a first message detected on the first network portion is anomalous based on at least one of: an attribute of a second message detected on the second network portion and an absence of a second message from the second network portion over a predefined time period; and, if it is determined the first message is anomalous then performing at least one action.
    Type: Grant
    Filed: September 22, 2016
    Date of Patent: October 6, 2020
    Assignee: Argus Cyber Security Ltd.
    Inventors: Yaron Galula, Ofer Ben-Noon, Ofer Kapota, Alexei Kovelman
  • Patent number: 10766439
    Abstract: A module for providing security to a vehicle's in-vehicle communication network that is responsive to an operational state of the vehicle.
    Type: Grant
    Filed: August 8, 2017
    Date of Patent: September 8, 2020
    Assignee: Argus Cyber Security Ltd.
    Inventors: Ofer Ben Noon, Yaron Galula, Oron Lavi
  • Patent number: 10708293
    Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over the in-vehicle communication network; receiving, by the processor, a message sent over the network; determining, by the controller, based on the model and based on a timing attribute of the message, whether or not the message complies with the model; and if the message does not comply with the model then performing, by the processor, at least one action related to the message.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: July 7, 2020
    Assignee: Argus Cyber Security Ltd.
    Inventors: Yaron Galula, Ofer Ben-Noon, Oron Lavi, Ofer Kapota, Alexei Kovelman
  • Publication number: 20200186560
    Abstract: A system and method for providing security to a network may include maintaining, by a processor, a model of an expected behavior of data communications over the in-vehicle communication network; receiving, by the processor, a message sent over the network; determining, by the processor, based on the model and based on a timing attribute of the message, whether or not the message complies with the model; and if the message does not comply with the model then performing, by the processor, at least one action related to the message.
    Type: Application
    Filed: February 13, 2020
    Publication date: June 11, 2020
    Applicant: Argus Cyber Security Ltd.
    Inventors: Ofer BEN-NOON, Yaron GALULA, Ofer KAPOTA, Alexei KOVELMAN
  • Patent number: 10645104
    Abstract: A method of identifying a node of a plurality of nodes in an in-vehicle communications network that transmitted a waveform propagating in the network, comprising providing a library of fingerprints having a unique library fingerprint for waveforms transmitted by each node and comparing a fingerprint generated for the propagating voltage waveform with library fingerprints to determine which node transmitted the waveform.
    Type: Grant
    Filed: May 1, 2017
    Date of Patent: May 5, 2020
    Assignee: Argus Cyber Security Ltd.
    Inventors: Or Dagmi, Gilad Barzilay, Yaron Galula, Ofer Ben Noon, Amos Shalev
  • Patent number: 10625694
    Abstract: A cyber security module for providing security to an in-vehicle communication network having a bus, at least one node connected to the bus, and at least one communications device coupled to the in-vehicle communication network configured to interface the in-vehicle network with an external communication network, the cyber security module comprising: a communication port configured to receive a message from the communication device that the communication device generates based on a message that the communication device receives from the external communication network; at least one communication port coupled to the bus; an authentication module configured to authenticate whether or not the message originated from an authorized source; and a processor configured to operate to prevent content of the message from being operated on if the authentication module determines that the source of the message received by the communication device is not from an authorized source.
    Type: Grant
    Filed: May 30, 2017
    Date of Patent: April 21, 2020
    Assignee: Argus Cyber Security Ltd.
    Inventors: Ofer Ben Noon, Yaron Galula, Oron Lavi
  • Patent number: 10630699
    Abstract: A module for providing security to an in-vehicle communication network having a bus and at least one node connected to the bus, the module including: a memory having software including a model of an expected behavior of data communications over the portion of the in-vehicle communication network; and a processor that processes, responsive to the software in the memory, a plurality of messages registered from a portion of the in-vehicle network to: determine, based on the model and a context comprising attributes of the plurality of messages, whether or not at least one of the messages complies with the model; and if the at least one message does not comply with the model, then perform at least one action on the message.
    Type: Grant
    Filed: August 14, 2017
    Date of Patent: April 21, 2020
    Assignee: Argus Cyber Security Ltd.
    Inventors: Yaron Galula, Ofer Ben Noon, Oron Lavi