Abstract: Techniques for an enhanced internal host detection protocol are disclosed. In some embodiments, a system, a process, and/or a computer program product for an enhanced internal host detection protocol includes sending a response to a get configuration query from a portal for a cloud security service to an endpoint agent; routing a DNS reverse lookup query to a predetermined IP address associated with a DNS proxy associated with the cloud security service; sending a response to the DNS reverse lookup query from the DNS proxy associated with the cloud security service; and verifying that the response to the DNS reverse lookup query is not spoofed based on a match with the response to the get configuration query.

Abstract: An orchestrator that manages security appliances for an organization determines a sink configured for traffic mirroring and correspondingly configures components for the correlation and secure conveyance. The orchestrator also configures the security appliances. The orchestrator configures the security appliances to copy cryptographic keys (hereinafter “tunnel keys”) and identifiers associated with the keys of secure VPN tunnels established by the security appliances to a repository of the cloud-service provider. The orchestrator configures a virtual machine associated with the mirroring sink with correlation logic. The virtual machine correlates sets of packets aggregated across different mirroring streams and tunnel keys with the associated identifiers. Correlating the sets of packets and the tunnel keys allows an organization to efficiently access the content of the encrypted packets or facilitates secure conveyance.

Abstract: An orchestrator that manages security appliances for an organization determines a sink configured for traffic mirroring and correspondingly configures components for secure conveyance of mirrored traffic to a sink. The orchestrator configures a VM associated with the mirroring sink to use correlated packets and tunnel keys to securely convey the packets to an organization. The virtual machine decrypts each set of packets with the correlated tunnel key in memory and then re-encrypts the packets with a cryptographic key (hereinafter “random key”) generated on-the-fly for use on the current set of decrypted packets in memory. The virtual machine then encrypts the random key with a public key of the organization that will monitor and/or analyze the traffic data and writes the encrypted packets and/or packet contents and encrypted random key to a specified repository of the organization.

Abstract: According to an embodiment of the present invention, an apparatus for addressing compatibility in a session protocol environment is provided that includes a communications platform operable to communicate with a first endpoint and a second endpoint and to recognize signaling capabilities of the first and second endpoints. The apparatus also includes a media termination point (MTP) operable to communicate with the endpoints and the communications platform, the media termination point being provisioned by the communications platform in a stream that involves the first and second endpoints if a signaling compatibility issue is present amongst the endpoints. If an out-of-band digit from the first endpoint is received by the communications platform, the out-of-band digit is sent to the MTP, which is operable to inject a digit associated with the second protocol into the communication session such that a mapping occurs between the digits for the first and second protocols.

Abstract: According to an embodiment of the present invention, an apparatus for addressing compatibility in a session protocol environment is provided that includes a communications platform operable to communicate with a first endpoint and a second endpoint and to recognize signaling capabilities of the first and second endpoints. The apparatus also includes a media termination point (MTP) operable to communicate with the endpoints and the communications platform, the media termination point being provisioned by the communications platform in a stream that involves the first and second endpoints if a signaling compatibility issue is present amongst the endpoints. If an out-of-band digit from the first endpoint is received by the communications platform, the out-of-band digit is sent to the MTP, which is operable to inject a digit associated with the second protocol into the communication session such that a mapping occurs between the digits for the first and second protocols.

Abstract: According to an embodiment of the present invention, an apparatus for addressing compatibility in a session protocol environment is provided that includes a communications platform operable to communicate with a first endpoint and a second endpoint and to recognize signaling capabilities of the first and second endpoints. The apparatus also includes a media termination point (MTP) operable to communicate with the endpoints and the communications platform, the media termination point being provisioned by the communications platform in a stream that involves the first and second endpoints if a signaling compatibility issue is present amongst the endpoints. If an out-of-band digit from the first endpoint is received by the communications platform, the out-of-band digit is sent to the MTP, which is operable to inject a digit associated with the second protocol into the communication session such that a mapping occurs between the digits for the first and second protocols.

Abstract: A method for providing communication protocol interoperability may include receiving a request from a first endpoint to establish a communication session with a second endpoint, the request uses a first communication protocol. The method also includes receiving a first response from the second endpoint, the first response uses a second communication protocol different than the first communication protocol. The method may also include initiating a timer for receiving a set of capabilities from the second endpoint and establishing the communication session between the first endpoint and the second endpoint.

Abstract: According to an embodiment of the present invention, an apparatus for addressing compatibility in a session protocol environment is provided that includes a communications platform operable to communicate with a first endpoint and a second endpoint and to recognize signaling capabilities of the first and second endpoints. The apparatus also includes a media termination point (MTP) operable to communicate with the endpoints and the communications platform, the media termination point being provisioned by the communications platform in a stream that involves the first and second endpoints if a signaling compatibility issue is present amongst the endpoints. If an out-of-band digit from the first endpoint is received by the communications platform, the out-of-band digit is sent to the MTP, which is operable to inject a digit associated with the second protocol into the communication session such that a mapping occurs between the digits for the first and second protocols.