Patents by Inventor Purvi Desai

Purvi Desai has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 10432673
    Abstract: Systems and methods in a mobile device communicatively coupled to a cloud based security system, the method for detecting and processing in-channel events associated with a network agnostic mobile application, the method includes intercepting outgoing data from the network agnostic mobile application at a tunnel interface on the mobile device; monitoring the outgoing data for network transactions from the network agnostic mobile application to maintain a context of the network transactions and intended responses for every request; transmitting the outgoing data from the tunnel interface to the cloud based security system; and receiving a response from the cloud based security system responsive to the outgoing data and processing any deviation from the intended responses.
    Type: Grant
    Filed: January 31, 2017
    Date of Patent: October 1, 2019
    Assignee: Zscaler, Inc.
    Inventors: Abhinav Bansal, Vikas Mahajan, Purvi Desai
  • Patent number: 10375024
    Abstract: A virtual private access method implemented by a cloud system, includes receiving a request to access resources from a user device, wherein the resources are located in one of a public cloud and an enterprise network and the user device is remote therefrom on the Internet; forwarding the request to a central authority for a policy look up and for a determination of connection information to make an associated secure connection through the cloud system to the resources; receiving the connection information from the central authority responsive to an authorized policy look up; and creating secure tunnels between the user device and the resources based on the connection information.
    Type: Grant
    Filed: May 18, 2016
    Date of Patent: August 6, 2019
    Assignee: Zscaler, Inc.
    Inventors: Patrick Foxhoven, John A. Chanak, William Fehring, Denzil Wessels, Purvi Desai, Manoj Apte, Sudhindra P. Herle
  • Publication number: 20190158503
    Abstract: A server configured to profile a mobile device for a cloud-based system, includes a network interface, a data store, and a processor communicatively coupled to one another; and memory storing computer executable instructions, and in response to execution by the processor, the computer-executable instructions cause the processor to, based on communication to a client application on the mobile device, cause the client application to collect data associated with the mobile device; receive the collected data; and determine a device fingerprint and a risk index for the mobile device based on the collected data, wherein the device fingerprint is utilized to uniquely identify the mobile device and the risk index is utilized to manage the mobile device
    Type: Application
    Filed: January 21, 2019
    Publication date: May 23, 2019
    Inventors: Abhinav Bansal, Purvi Desai
  • Patent number: 10243997
    Abstract: A method implemented by an agent operating on a mobile device communicating to a cloud-based system includes opening up local listening sockets on the mobile device; redirecting outgoing traffic from all application on the mobile device except the agent to the local listening sockets; and forwarding the outgoing traffic from the local listening sockets to the cloud-based system with additional information included therein for the cloud-based system.
    Type: Grant
    Filed: April 19, 2016
    Date of Patent: March 26, 2019
    Assignee: Zscaler, Inc.
    Inventors: Purvi Desai, Vikas Mahajan, Abhinav Bansal
  • Patent number: 10225740
    Abstract: Systems and methods implemented in a cloud node in a cloud based security system for network access control of a mobile device based on multidimensional risk profiling thereof include receiving posture data from the mobile device; determining a device fingerprint and a risk index of the mobile device based on the posture data; and, responsive to a request by the mobile device for network resources through the cloud based security system, performing a multidimensional risk analysis based on the device fingerprint and the risk index and allowing or denying the request based on the multidimensional risk analysis.
    Type: Grant
    Filed: December 13, 2016
    Date of Patent: March 5, 2019
    Assignee: Zscaler, Inc.
    Inventors: Abhinav Bansal, Purvi Desai
  • Publication number: 20180316684
    Abstract: A cloud-based security system enforcing application-based control of network resources includes a plurality of nodes communicatively coupled to the Internet; and one or more authority nodes communicatively coupled to the plurality of nodes; wherein a node of the plurality of nodes is communicatively coupled to a user device via the Internet, and wherein the node is configured to receive a request from a user device for network resources on the Internet or in an external network, to evaluate the request to determine an application on the user device associated with the request, and to provide application-based control of the request based on the determined application and the network resources.
    Type: Application
    Filed: July 7, 2018
    Publication date: November 1, 2018
    Inventors: Purvi DESAI, Abhinav BANSAL
  • Patent number: 10044719
    Abstract: Systems and methods, implemented by one or more nodes in a cloud-based security system, for enforcing application-based control of network resources include receiving a request from a user device for the network resources; evaluating the request through the cloud-based security system and determining an application on the user device performing the request; and performing one of (1) denying the request if the application is unauthorized to access the network resources, (2) redirecting the request to an authorized application on the user device if the application is legitimate but unauthorized to access the network resources, and (3) allowing the request if the application is authorized to access the network resources.
    Type: Grant
    Filed: January 29, 2016
    Date of Patent: August 7, 2018
    Assignee: Zscaler, Inc.
    Inventors: Purvi Desai, Abhinav Bansal
  • Publication number: 20180198791
    Abstract: A cloud-based method of service function chaining using Security Assertion Markup Language (SAML) assertions includes receiving configuration information related to any of users, services, and correspondence between the users and the services; responsive to a request from a user, generating a SAML assertion for the request and attaching a stack of service tags with the SAML assertion, wherein the stack of service tags defines a service chain for the user and for the request; and providing the SAML assertion with the stack of service tags to the user in response to the request. The method can further include providing the SAML assertion by the user to one or more services, wherein each of the services creates a context based on the stack of service tags. Each of the services identifies itself in the stack and sends the SAML assertion to a next service or application in the stack.
    Type: Application
    Filed: January 12, 2017
    Publication date: July 12, 2018
    Inventors: Purvi DESAI, Abhinav BANSAL, Tejus GANGADHARAPPA
  • Publication number: 20180183794
    Abstract: Systems and methods implemented by an application executed on a user device for service discovery and connectivity include discovering one or more cloud services for a user associated with the user device; creating and operating an interface on the user device; and intercepting traffic at the interface from one or more client applications on the user device and splitting the traffic based on configuration to the one or more cloud services. The method can further include authenticating the user into the one or more cloud services prior to the splitting.
    Type: Application
    Filed: February 21, 2018
    Publication date: June 28, 2018
    Inventors: Purvi Desai, Vikas Mahajan, Abhinav Bansal, Ajit Singh, Sandeep Kumar, Vivek Raman
  • Publication number: 20180115463
    Abstract: A method for troubleshooting and performance analysis of a cloud based system, the method implemented by an analyzer service executed on one or more servers, and the analyzer service communicatively coupled to a network and to user devices, the method includes receiving results from execution of an analyzer application on each of the user devices, wherein the analyzer application is executed locally on user devices to perform tests comprising traceroutes and web page loads, and wherein the plurality of tests are performed both through the cloud based system to the network and directly to the network; processing the results to determine a status of the cloud based system and associated user devices communicating therewith; utilizing the status to identify bottlenecks and issues associated with the cloud based system and the network; and causing performance of remedial actions based on the identified bottlenecks and the issues.
    Type: Application
    Filed: December 13, 2016
    Publication date: April 26, 2018
    Inventors: Amit Sinha, Prem Mohan, Arshi Chadha, Preeti Arora, Ajit Singh, Purvi Desai
  • Patent number: 9935955
    Abstract: Systems and methods implemented by a unified agent application executed on a mobile device, for unified service discovery and secure availability include authenticating a user into a plurality of cloud services including a proxy service and a Virtual Private Network (VPN) service, wherein the proxy service is utilized for Internet traffic and the VPN service is for Intranet traffic; creating and operating a link local network at the mobile device with a virtual network interface and multiple listening sockets; and intercepting traffic at the virtual network interface from one or more client applications on the mobile device and splitting the traffic between the proxy service, the VPN service, and the Internet based on a type of the traffic, a destination, and the one or more client applications.
    Type: Grant
    Filed: May 12, 2016
    Date of Patent: April 3, 2018
    Assignee: Zscaler, Inc.
    Inventors: Purvi Desai, Vikas Mahajan, Abhinav Bansal, Ajit Singh, Sandeep Kumar, Vivek Raman
  • Publication number: 20170332238
    Abstract: Systems and methods implemented in a cloud node in a cloud based security system for network access control of a mobile device based on multidimensional risk profiling thereof include receiving posture data from the mobile device; determining a device fingerprint and a risk index of the mobile device based on the posture data; and, responsive to a request by the mobile device for network resources through the cloud based security system, performing a multidimensional risk analysis based on the device fingerprint and the risk index and allowing or denying the request based on the multidimensional risk analysis.
    Type: Application
    Filed: December 13, 2016
    Publication date: November 16, 2017
    Inventors: Abhinav BANSAL, Purvi DESAI
  • Publication number: 20170331859
    Abstract: Systems and methods in a mobile device communicatively coupled to a cloud based security system, the method for detecting and processing in-channel events associated with a network agnostic mobile application, the method includes intercepting outgoing data from the network agnostic mobile application at a tunnel interface on the mobile device; monitoring the outgoing data for network transactions from the network agnostic mobile application to maintain a context of the network transactions and intended responses for every request; transmitting the outgoing data from the tunnel interface to the cloud based security system; and receiving a response from the cloud based security system responsive to the outgoing data and processing any deviation from the intended responses.
    Type: Application
    Filed: January 31, 2017
    Publication date: November 16, 2017
    Inventors: Abhinav BANSAL, Vikas MAHAJAN, Purvi DESAI
  • Publication number: 20170279803
    Abstract: Systems and methods implemented by a unified agent application executed on a mobile device, for unified service discovery and secure availability include authenticating a user into a plurality of cloud services including a proxy service and a Virtual Private Network (VPN) service, wherein the proxy service is utilized for Internet traffic and the VPN service is for Intranet traffic; creating and operating a link local network at the mobile device with a virtual network interface and multiple listening sockets; and intercepting traffic at the virtual network interface from one or more client applications on the mobile device and splitting the traffic between the proxy service, the VPN service, and the Internet based on a type of the traffic, a destination, and the one or more client applications.
    Type: Application
    Filed: May 12, 2016
    Publication date: September 28, 2017
    Applicant: Zscaler, Inc.
    Inventors: Purvi Desai, Vikas Mahajan, Abhinav Bansal, Ajit SINGH, Sandeep KUMAR, Vivek RAMAN
  • Publication number: 20170223024
    Abstract: Systems and methods, implemented by one or more nodes in a cloud-based security system, for enforcing application-based control of network resources include receiving a request from a user device for the network resources; evaluating the request through the cloud-based security system and determining an application on the user device performing the request; and performing one of (1) denying the request if the application is unauthorized to access the network resources, (2) redirecting the request to an authorized application on the user device if the application is legitimate but unauthorized to access the network resources, and (3) allowing the request if the application is authorized to access the network resources.
    Type: Application
    Filed: January 29, 2016
    Publication date: August 3, 2017
    Applicant: Zscaler, Inc.
    Inventors: Purvi DESAI, Abhinav BANSAL
  • Patent number: 9621574
    Abstract: A cloud based security method includes authenticating a mobile device through a cloud based security system; associating the mobile device with a user of the cloud based security system based on the authenticating; monitoring user requests from the mobile device by the cloud based security system; detecting security threats based on the monitoring; and sending an out of band end user notification to the mobile device responsive to detecting a security threat, wherein the out of band end user notification comprises information for the user related to the security threat.
    Type: Grant
    Filed: August 18, 2014
    Date of Patent: April 11, 2017
    Assignee: Zscaler, Inc.
    Inventors: Purvi Desai, Abhinav Bansal, Vikas Mahajan
  • Publication number: 20160261564
    Abstract: A virtual private access method implemented by a cloud system, includes receiving a request to access resources from a user device, wherein the resources are located in one of a public cloud and an enterprise network and the user device is remote therefrom on the Internet; forwarding the request to a central authority for a policy look up and for a determination of connection information to make an associated secure connection through the cloud system to the resources; receiving the connection information from the central authority responsive to an authorized policy look up; and creating secure tunnels between the user device and the resources based on the connection information.
    Type: Application
    Filed: May 18, 2016
    Publication date: September 8, 2016
    Applicant: Zscaler, Inc.
    Inventors: Patrick FOXHOVEN, John A. CHANAK, William FEHRING, Denzil WESSELS, Purvi DESAI, Manoj APTE, Sudhindra P. HERLE
  • Publication number: 20160248812
    Abstract: A method implemented by an agent operating on a mobile device communicating to a cloud-based system includes opening up local listening sockets on the mobile device; redirecting outgoing traffic from all application on the mobile device except the agent to the local listening sockets; and forwarding the outgoing traffic from the local listening sockets to the cloud-based system with additional information included therein for the cloud-based system.
    Type: Application
    Filed: April 19, 2016
    Publication date: August 25, 2016
    Applicant: Zscaler, Inc.
    Inventors: Purvi DESAI, Vikas MAHAJAN, Abhinav BANSAL
  • Patent number: 9350644
    Abstract: A method implemented by an agent operating on a mobile device communicating to a cloud-based system includes opening up local listening sockets on the mobile device; redirecting outgoing traffic from all application on the mobile device except the agent to the local listening sockets; and forwarding the outgoing traffic from the local listening sockets to the cloud-based system with additional information included therein for the cloud-based system.
    Type: Grant
    Filed: December 4, 2014
    Date of Patent: May 24, 2016
    Assignee: Zscaler. Inc.
    Inventors: Purvi Desai, Vikas Mahajan, Abhinav Bansal
  • Publication number: 20160050227
    Abstract: A cloud based security method includes authenticating a mobile device through a cloud based security system; associating the mobile device with a user of the cloud based security system based on the authenticating; monitoring user requests from the mobile device by the cloud based security system; detecting security threats based on the monitoring; and sending an out of band end user notification to the mobile device responsive to detecting a security threat, wherein the out of band end user notification comprises information for the user related to the security threat.
    Type: Application
    Filed: August 18, 2014
    Publication date: February 18, 2016
    Applicant: Zscaler, Inc.
    Inventors: Purvi DESAI, Abhinav BANSAL, Vikas MAHAJAN