Application identification
First Claim
Patent Images
1. A method comprising:
- storing, by a network device, information identifying applications executed by a plurality of devices,the information identifying the applications being stored in a first data structure,storing the information identifying the applications including;
storing, as part of the information identifying the applications, information included in one or more packets from a device of the plurality of devices,a particular application, of the applications, executed by the device being identified based on the one or more packets;
storing, by the network device, signature information associated with one or more applications,the signature information being stored in a second data structure;
receiving, by the network device, a packet from another network device,the packet being associated with a request to access a resource in a network associated with the network device;
searching, by the network device, at least one of the first data structure or the second data structure to identify information identifying an application associated with the other network device,the at least one of the first data structure or the second data structure being searched based on information included in the packet;
identifying, by the network device, particular information relating to accessing the resource in the network,the particular information being identified based on the information identifying the application; and
selectively granting, to the other network device and based on the particular information, access to the resource.
0 Assignments
0 Petitions
Accused Products
Abstract
A method may include receiving a communication from a client device and identifying a port number, a protocol and a destination associated with the communication. The method may also include identifying a first application being executed by the first client device based on the port number, the protocol and the destination associated with the first communication.
78 Citations
18 Claims
-
1. A method comprising:
-
storing, by a network device, information identifying applications executed by a plurality of devices, the information identifying the applications being stored in a first data structure, storing the information identifying the applications including; storing, as part of the information identifying the applications, information included in one or more packets from a device of the plurality of devices, a particular application, of the applications, executed by the device being identified based on the one or more packets; storing, by the network device, signature information associated with one or more applications, the signature information being stored in a second data structure; receiving, by the network device, a packet from another network device, the packet being associated with a request to access a resource in a network associated with the network device; searching, by the network device, at least one of the first data structure or the second data structure to identify information identifying an application associated with the other network device, the at least one of the first data structure or the second data structure being searched based on information included in the packet; identifying, by the network device, particular information relating to accessing the resource in the network, the particular information being identified based on the information identifying the application; and selectively granting, to the other network device and based on the particular information, access to the resource. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A device comprising:
-
a memory to store instructions; and a processor to execute the instructions to; receive a packet from another device, the packet being associated with a request to access a resource in a network associated with the device, search at least one of a first data structure or a second data structure to identify information identifying an application associated with the other device, the at least one of the first data structure or the second data structure being searched based on information included in the packet, the first data structure storing information identifying applications executed by a plurality of devices, a particular application, of the applications, executed by a device, of the plurality of devices being identified based on one or more packets from the device, and the information identifying the applications including information included in the one or more packets, and the second data structure storing signature information associated with one or more applications, identify particular information relating to accessing the resource in the network, the particular information being identified based on the information identifying the application, and selectively grant, to the other device and based on the particular information, access to the resource. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable medium storing instructions, the instructions comprising:
a plurality of instructions which, when executed by a device, cause the device to; receive a packet from another device, the packet being associated with a request to access a resource in a network associated with the device; search a data structure to identify information identifying an application associated with the other device, the data structure being searched based on information included in the packet, the data structure storing signature information associated with one or more applications, the data structure being searched when the information identifying the application is not identified in another data structure; identify particular information relating to accessing the resource in the network, the particular information being identified based on the information identifying the application; and selectively grant, to the other device and based on the particular information, access to the resource. - View Dependent Claims (15, 16, 17, 18)
Specification