Patents by Inventor Ohad Bobrov
Ohad Bobrov has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240045953Abstract: A method for monitoring activity of a user interacting with a digital resource of a group of digital resources accessible via a communications network, the method comprising: providing the user with a user equipment (UE) comprising a web browser configured to make motion of resources in the web browser visible to a processing hub associated with the group of digital resources; and determining a user profile for a user comprising at least one key performance indicator (KPI) that characterizes the user activity when using the web browser to interact with a digital resource of the group of resources; and configuring responsive to the at least one KPI a monitoring mode for the web browser in accordance with which the browser operates to acquire monitoring data characterizing user activity while interacting with a resource of the group of resources using the web browser.Type: ApplicationFiled: October 15, 2023Publication date: February 8, 2024Inventors: Ofer Ben-Noon, Ohad Bobrov, Ido Salomon
-
Publication number: 20240039918Abstract: A method of controlling access to a digital resource of a group of digital resources, the method comprising: determining information sensitive features comprised in information contents of the resources for which access to the features are limited to a selection of users from a group of users associated with the group of resources; determining if contents of the digital resource comprise at least one of the information sensitive features; determining whether a user of the group of users has authorization to access at least a portion of the resource based on the at least one information sensitive feature; and enabling the user access only to the at least portion of the resource for which the user is determined to have authorization.Type: ApplicationFiled: October 15, 2023Publication date: February 1, 2024Inventors: Ofer Ben-Noon, Ohad Bobrov
-
Publication number: 20230308451Abstract: A communications system for providing secure access to a digital resource of a group of digital resources accessible via a communications network, the system comprising: a data processing hub accessible via an IP (internet protocol) address; and a plurality of user equipment (UEs) useable to communicate via the communications network, each configured to have a cyber secure isolated environment (CISE) isolated from ambient software in the UE, and comprising a secure web browser (SWB); wherein the hub and CISE are configured so that digital resources in motion and at rest in CISE are visible to the hub.Type: ApplicationFiled: March 29, 2023Publication date: September 28, 2023Inventors: Ofer Ben-Noon, Ohad Bobrov
-
Publication number: 20230122247Abstract: A method for providing secure access to cloud computing resources comprising: monitoring communications in sessions between a cloud computing resource, CCaaS, of cloud computing resources and users using web browsers comprised in user equipment, UE, to access the CCaaS; processing the monitored communications to accumulate data for at least one component or any combination of more than one of a set, CCaaS-KPI, of key performance indicators, KPIs, that characterize operation of the CCaaS during the sessions, a set, UE-KPI, of key performance indicators characterizing operation of the user equipment, UE, during the sessions, a set, U-KPI, characterizing actions of users accessing the CCaaS during the sessions, and/or a set, SMETA, of session metadata components that provide indexing and descriptive data for the sessions; processing the accumulated data to determine patterns characterizing normal interaction of users with the CCaaS; and using the normal patterns to detect an anomaly in a user session in which thType: ApplicationFiled: December 15, 2022Publication date: April 20, 2023Inventors: Ofer Ben-Noon, Ohad Bobrov, Ido Salomon, Gilad Roth, Guy Harpak
-
Publication number: 20220417277Abstract: A method for providing secure access to digital resources, the method comprising: monitoring communications between a website and a user using a web browser comprised in a user equipment (UE) that is useable to access the digital resources; processing the monitored communications to determine: a set (WVF) of website vulnerability features comprising features which as a result of the user connecting to the website render a digital resource of the digital resources with which the user communicates vulnerable to cyber damage; and a set of user browsing behaviour features (BHF) comprising features that characterize the user browsing behaviour and internet use pattern which render the digital resource vulnerable to cyber damage; determining based on the website vulnerability factors and the user profile a security risk indicator (SRI) having a value that provides an estimate of a cyber damage risk to the digital resource resulting from the user connecting to the website and the digital resource; and based on the SType: ApplicationFiled: August 23, 2022Publication date: December 29, 2022Inventors: Ofer Ben-Noon, Ohad Bobrov, Ido Salomon, Gilad Roth, Guy Harpak
-
Publication number: 20220368689Abstract: A communications system for providing secure access to a digital resource of a group of digital resources accessible via a communications network, the system comprising: an identity provider (IDP) that controls access to the digital resource; a data processing hub accessible at an IP (internet protocol) address; a plurality of user equipment (UE) useable by users to communicate via the communications network, each UE having a cyber secure isolated environment (CISE) that is isolated from ambient software in the UE and comprises a secure web browser (SWB) identified by a web browser ID; wherein the hub, the IDP, and the SWB are configured to cooperate and exchange information to authorize a user of a UE of the plurality of UEs to use the UE's SWB to access the digital resource.Type: ApplicationFiled: June 16, 2022Publication date: November 17, 2022Inventors: Ofer Ben-Noon, Ohad Bobrov, Ido Salomon
-
Publication number: 20220366050Abstract: A communications system for providing secure access to a digital resource of a group of digital resources accessible via the internet, the system comprising: a data processing hub accessible via an IP (internet protocol) address; and a plurality of user equipment (UEs) useable to communicate via the internet, each configured to have a cyber secure isolated environment (CISE) isolated from ambient software in the UE, and comprising a secure web browser (SWB); wherein the hub and CISE are configured so that digital resources in motion and at rest in CISE are visible to the hub.Type: ApplicationFiled: April 22, 2022Publication date: November 17, 2022Inventors: Ofer Ben-Noon, Ohad Bobrov, Gilad Roth, Guy Harpak, Ido Salomon
-
Patent number: 10567425Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computers to be protected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the pluralityType: GrantFiled: March 5, 2019Date of Patent: February 18, 2020Assignee: CHECKPOINT MOBILE SECURITY LTD.Inventors: Michael Shaulov, Ohad Bobrov
-
Publication number: 20190199737Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computers to be protected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the pluralityType: ApplicationFiled: March 5, 2019Publication date: June 27, 2019Inventors: Michael Shaulov, Ohad Bobrov
-
Patent number: 10230758Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computers to be protected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the pluralityType: GrantFiled: January 20, 2016Date of Patent: March 12, 2019Assignee: CHECKPOINT MOBILE SECURITY LTDInventors: Michael Shaulov, Ohad Bobrov
-
Patent number: 10158665Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computer to be projected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the plurality oType: GrantFiled: March 31, 2016Date of Patent: December 18, 2018Assignee: CHECKPOINT MOBILE SECURITY LTDInventors: Michael Shaulov, Ohad Bobrov
-
Patent number: 9642013Abstract: A mobile communicator network routing decision system communicating with each mobile communicator device of a plurality of mobile communicator devices, the plurality of mobile communicator devices communicating with a network via at least one computerized network gateway server, the system including security risk calculation functionality operable for calculating a calculated malware-associated risk associated with each mobile communicator device, and security risk responsive decision functionality, operating in response to the calculated malware-associated risk, for ascertaining whether to allow the communicating of each mobile communicator device with the network via the computerized network gateway server.Type: GrantFiled: October 16, 2013Date of Patent: May 2, 2017Assignee: CHECK POINT MOBILE SECURITY LTDInventors: Michael Shaulov, Ohad Bobrov
-
Publication number: 20160219062Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computer to be projected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the plurality oType: ApplicationFiled: March 31, 2016Publication date: July 28, 2016Inventors: MICHAEL SHAULOV, Ohad Bobrov
-
Publication number: 20160142425Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computers to be protected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the pluralityType: ApplicationFiled: January 20, 2016Publication date: May 19, 2016Inventors: MICHAEL SHAULOV, OHAD BOBROV
-
Patent number: 9319427Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computers to be protected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the pluralityType: GrantFiled: May 12, 2013Date of Patent: April 19, 2016Assignee: CHECK POINT MOBILE SECURITY LTDInventors: Michael Shaulov, Ohad Bobrov
-
Publication number: 20150128269Abstract: An anti-malware system including at least one database, remote from a plurality of computers to be protected, which stores identification of computer applications resident on the computers to be protected and an application-specific communications footprint for the computer applications, and at least one server, remote from the plurality of computers to be protected, and being operative to calculate a reference computer-specific communications composite pattern based on multiple application-specific communications footprints for applications installed on the computers to be protected, calculate a current computer-specific communications composite pattern based on actual communications of at least one the plurality of computers to be protected, and provide an alert when the current computer-specific communications composite pattern of the at least one of the plurality of computers to be protected differs from the reference computer-specific communications composite pattern of the at least one of the pluralityType: ApplicationFiled: May 12, 2013Publication date: May 7, 2015Applicant: LACOON SECURITY LTD.Inventors: Michael Shaulov, Ohad Bobrov