×

Dynamic user identification and policy enforcement in cloud-based secure web gateways

  • US 9,531,758 B2
  • Filed: 05/14/2015
  • Issued: 12/27/2016
  • Est. Priority Date: 03/18/2011
  • Status: Active Grant
First Claim
Patent Images

1. A cloud-based gateway, comprising:

  • a network interface communicatively coupled to a network;

    a processor; and

    memory storing instructions that, when executed, cause the processor to;

    dynamically associate traffic received on the network interface with users to form a dynamic association, wherein the traffic comprises a combination of authenticated traffic and unknown traffic, wherein the authenticated traffic is associated to an authenticated user and the unknown traffic is associated to an associated user of a destination Internet Protocol (IP) address from the unknown traffic;

    maintain the dynamic association over time, wherein the dynamic association is maintained over time by updating the dynamic association based on newly received authenticated HTTP traffic, on pre-defined time thresholds for expiring associations, and on detecting collisions of multiple users on the destination IP address; and

    apply policies to the traffic based on the dynamic association.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×