Abstract: Systems and methods for time bound session management for Operational Technology (OT) applications using Cron expression policies over zero trust. Various embodiments include receiving a request to an end system from a user; determining that the request requires a time-based approval; performing one or more time-based policy checks associated with the request; and allowing or denying the request based on the one or more time-based policy checks. The steps can further include monitoring an active session between the user and the end system; and timing out the active session based on time-based policy checks.

Abstract: A fluid recovery system is configured to assist with the recovery of hydrocarbons or other fluids from a well. The fluid recovery system includes an electric submersible pumping system, a chemical injection system and an integrated control system. The electric submersible pumping system includes an electric motor, a pump driven by the electric motor and a motor drive configured to control the operation of the electric motor. The electric submersible pumping system includes a signal processing module that is configured to detect a sand slugging event by identifying a sand slugging signature in frequency spectrums derived from the current drawn by the motor from the motor drive. The integrated control system is configured to automatically cause the chemical injection system to increase the injection of treatment chemicals into the well if a sand slugging event is detected.

Abstract: Systems and methods for policy based traffic inspection in zero trust private networks. Various embodiments include receiving a request for a workload; analyzing one or more criteria associated with the request; determining an inspection profile to utilize for the request based on the analyzing of the one or more criteria; applying the inspection profile to the request; and inspecting traffic associated with the request based on the inspection profile.

Abstract: Systems and methods for policy based privileged remote access in zero trust private networks. Various embodiments include receiving a request to an end system; determining available end systems based on one or more criteria associated with the request, wherein the one or more criteria are analyzed based on policy; and providing access to the end system based on the one or more criteria, wherein the access includes remote pixel rendering protocols integrated with a zero trust architecture.

Abstract: Systems and methods for providing interactive visualizations of traffic characteristics within a network include determining, for one or more applications associated with a tenant of a cloud-based system, application information associated with each of the one or more applications; providing, via a Graphical User Interface (GUI), an interactive visualization of the application information associated with each of the one or more applications; and responsive to one or more selections being made via the interactive visualization, enabling one or more cloud-based security functions based on the one or more selections.

Abstract: Systems and methods for a dynamically reconfigurable traffic inspection pipeline in zero trust networks. Methods include steps of intercepting traffic traversing through a zero trust network to a destination; determining one or more traffic inspection stages to utilize for inspecting the traffic based on the characteristics of the traffic; creating a traffic inspection pipeline including the one or more traffic inspection stages; and performing the one or more traffic inspection stages on the traffic through the traffic inspection pipeline. The steps can include dynamically adding or removing traffic inspection stages in the traffic inspection pipeline after performing a traffic inspection stage.

Abstract: Systems and methods for active directory protection in zero trust networks. In an embodiment, steps include performing inline monitoring of traffic associated with a cloud-based system; detecting one or more active directory protocols based on the inline monitoring; classifying the traffic as being associated with any of the one or more active directory protocols; inspecting the traffic associated with the one or more detected active directory protocols; and generating one or more active directory logs based on the inspecting and classifying.

Abstract: Systems and methods for policy based privileged remote access in zero trust private networks. Various embodiments include receiving a request to an end system; determining available end systems based on one or more criteria associated with the request, wherein the one or more criteria are analyzed based on policy; and providing access to the end system based on the one or more criteria, wherein the access includes remote pixel rendering protocols integrated with a zero trust architecture.

Abstract: Systems and methods for time bound session management for Operational Technology (OT) applications using Cron expression policies over zero trust. Various embodiments include receiving a request to an end system from a user; determining that the request requires a time-based approval; performing one or more time-based policy checks associated with the request; and allowing or denying the request based on the one or more time-based policy checks. The steps can further include monitoring an active session between the user and the end system; and timing out the active session based on time-based policy checks.

Abstract: Systems and methods for policy based seamless authentication for PRA systems through zero trust private networks. The various systems and methods described herein include steps of receiving a request to access a Privileged Remote Access (PRA) system; determining if any credential rules apply to a console associated with the request; retrieving credentials associated with any of a user and the console from a database, thereby avoiding the user being required to provide credentials; and providing access to the requested PRA system based on the retrieved credentials.

Abstract: Systems and methods for a dynamically reconfigurable traffic inspection pipeline in zero trust networks. Methods include steps of intercepting traffic traversing through a zero trust network to a destination; determining one or more traffic inspection stages to utilize for inspecting the traffic based on the characteristics of the traffic; creating a traffic inspection pipeline including the one or more traffic inspection stages; and performing the one or more traffic inspection stages on the traffic through the traffic inspection pipeline. The steps can include dynamically adding or removing traffic inspection stages in the traffic inspection pipeline after performing a traffic inspection stage.

Abstract: Systems and methods for policy based traffic inspection in zero trust private networks. Various embodiments include receiving a request for a workload; analyzing one or more criteria associated with the request; determining an inspection profile to utilize for the request based on the analyzing of the one or more criteria; applying the inspection profile to the request; and inspecting traffic associated with the request based on the inspection profile.

Abstract: Embodiments as disclosed provide a What-You-See-Is-What-You Get (WYSIWYG) editor for web content, allowing the conversion of previously generated web content to reusable templates or components. Embodiments thus allow, among other advantages, users such as web content developers to easily repurpose or reuse previously developed pages or content by giving these users the ability to review and edit previously developed pages or content in a WYSIWYG editor.

Abstract: Systems and methods for policy based agentless file transfer in zero trust private networks. Various systems and methods include receiving a request for a file transfer; determining a file transfer protocol; evaluating one or more criteria associated with the request, the criteria being associated with any of an end user and the contents of the file; and allowing or denying the file transfer based on the evaluating. Responsive to an end user's policy including a requirement for file inspection, the steps can further include sending the file to a sandbox for inspection, and receiving a result of the inspection from the sandbox.

Abstract: Embodiments as disclosed provide a What-You-See-Is-What-You Get (WYSIWYG) editor for web content, allowing the conversion of previously generated web content to reusable templates or components. Embodiments thus allow, among other advantages, users such as web content developers to easily repurpose or reuse previously developed pages or content by giving these users the ability to review and edit previously developed pages or content in a WYSIWYG editor.

Abstract: Embodiments as disclosed provide a What-You-See-Is-What-You Get (WYSIWYG) editor for web content, allowing the conversion of previously generated web content to reusable templates or components. Embodiments thus allow, among other advantages, users such as web content developers to easily repurpose or reuse previously developed pages or content by giving these users the ability to review and edit previously developed pages or content in a WYSIWYG editor.

Abstract: Systems and methods for privileged remote access to Operational Technology (OT)/Internet of Things (IOT)/Industrial IOT (IIOT)/Industrial Control System (ICS) infrastructure, implemented in a cloud-based system. The method includes steps of, responsive to determining a user can access an application associated with the OT/IOT/IIOT/ICS infrastructure, determining the user's security and access policies and creating a session for the user; establishing a secure connection to the application via a lightweight connector connected to the application; and brokering a connection between the user's device and the application through the lightweight connector, enabling the user to interact with the application for the OT/IOT/IIOT/ICS infrastructure, based on the user's security and access policies.

Abstract: Embodiments as disclosed provide a What-You-See-Is-What-You Get (WYSIWYG) editor for web content, allowing the conversion of previously generated web content to reusable templates or components. Embodiments thus allow, among other advantages, users such as web content developers to easily repurpose or reuse previously developed pages or content by giving these users the ability to review and edit previously developed pages or content in a WYSIWYG editor.

Abstract: Embodiments as disclosed provide a What-You-See-Is-What-You Get (WYSIWYG) editor for web content, allowing the conversion of previously generated web content to reusable templates or components. Embodiments thus allow, among other advantages, users such as web content developers to easily repurpose or reuse previously developed pages or content by giving these users the ability to review and edit previously developed pages or content in a WYSIWYG editor.

Abstract: Generating PKI credentials for authenticating a networking appliance attempting to attach to a network includes: receiving a certificate signing request (CSR) from the networking appliance, wherein the CSR comprises credential data associated with an identity of the networking appliance; generating an appliance certificate based on the credential data and a certificate authority (CA) certificate associated with the computer; and returning the appliance certificate to the networking appliance.