| 发明名称 | Cloud-based gateway security scanning | ||
| 摘要 | Some embodiments of cloud-based gateway security scanning have been presented. In one embodiment, some data packets are received sequentially at a gateway device. The data packets constitute at least a part of a file being addressed to a client machine coupled to the gateway device. The gateway device forwards an identification of the file to a remote datacenter in parallel with forwarding the data packets to the client machine. The datacenter performs signature matching on the identification and returns a result of the signature matching to the gateway device. The gateway device determining whether to block the file from the client machine based on the result of the signature matching from the datacenter. | ||
| 申请公布号 | US8769678(B2) | 申请公布日期 | 2014.07.01 |
| 申请号 | US201213626777 | 申请日期 | 2012.09.25 |
| 申请人 | SonicWALL, Inc. | 发明人 | Dubrovsky Aleksandr;Cheetancheri Senthilkumar G.;Yanovsky Boris |
| 分类号 | H04L29/06;G06F21/00 | 主分类号 | H04L29/06 |
| 代理机构 | Lewis Roca Rothgerber LLP | 代理人 | Lewis Roca Rothgerber LLP |
| 主权项 | 1. A method for providing cloud-based security scanning, the method comprising: storing a plurality of signatures of previously received files in memory of a datacenter, each signature based on at least a partial hash of less than all data packets of an associated previously received file, wherein the associated file is associated with a content rating indicative of a category of content; receiving an identification of less than all data packets of a file sent by one or more gateways over a communication network to the datacenter, the identification based on at least a partial hash of the packets comprising less than all data packets of the file before all data packets of the file are received; executing instructions stored in memory of the datacenter, wherein execution of the instructions by a processor of the datacenter determines that the identification matches a signature associated with one of the previously received files; and sending information over the communication network to the gateway regarding the file associated with the matching signature, the information including the associated content rating, wherein the gateway blocks the file based on the associated content rating indicating a prohibited category of content before all data packets of the file are received. | ||
| 地址 | San Jose CA US | ||