SYSTEM AND METHOD OF UTILIZING A DEDICATED COMPUTER SECURITY SERVICE

US 20170041342A1
Filed: 08/04/2015
Published: 02/09/2017
Est. Priority Date: 08/04/2015
Status: Active Grant

First Claim

Patent Images

1. A method for utilizing computer security services, the method comprising:

storing, in an electronic database, a plurality of rules that indicate when to use either a private cloud service or a public cloud service for at least one of the security services, wherein the private and public cloud services share similar internal working logic in processing one or more requests from a plurality of client computers to access various computer security services;

receiving a request from a client computer to access the at least one private or public security service that analyzes an unknown object received on the client computer and generates at least one application control rule that specifies how to process the unknown object on the client computer;

determining, by a hardware processor, at least one parameter relating to the received request;

applying, by the hardware processor, the at least one parameter to the plurality of rules to determine an instruction indicating whether to transmit the request to the private cloud service or the public cloud service; and

transmitting the request to one of either the private cloud service or the public cloud service, based on the instruction, to use the at least one security service.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are systems and method for utilizing a dedicated computer security service. An exemplary method includes storing in an electronic database rules that indicate when to use either a first cloud service or a second cloud service for one of the security services, receiving a request from a client computer to access the security service, determining parameters relating to the received request, applying the parameters to the plurality of rules to determine an instruction indicating whether to transmit the request to the first cloud service or the second cloud service; and transmitting the request to either the first cloud service or the second cloud service, based on the instruction, to use the at least one security service.

199 Citations

20 Claims

1. A method for utilizing computer security services, the method comprising:
- storing, in an electronic database, a plurality of rules that indicate when to use either a private cloud service or a public cloud service for at least one of the security services, wherein the private and public cloud services share similar internal working logic in processing one or more requests from a plurality of client computers to access various computer security services;
  
  receiving a request from a client computer to access the at least one private or public security service that analyzes an unknown object received on the client computer and generates at least one application control rule that specifies how to process the unknown object on the client computer;
  
  determining, by a hardware processor, at least one parameter relating to the received request;
  
  applying, by the hardware processor, the at least one parameter to the plurality of rules to determine an instruction indicating whether to transmit the request to the private cloud service or the public cloud service; and
  
  transmitting the request to one of either the private cloud service or the public cloud service, based on the instruction, to use the at least one security service.
- View Dependent Claims (2, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising:
    - performing, by the one of the private cloud service and the public cloud service, the at least one security service on the request; and
      
      transmitting, by the one of the private cloud service and the public service, an operation instruction to the client computer based on a result of the performed at least one security service.
  - 4. The method of claim 1, wherein the request from the client computer to access the at least one security service does not include an indication of whether to transmit the request to the private cloud service or the public cloud service.
  - 5. The method of claim 1, wherein the request is initially transmitted to the private cloud service and redirected to the public cloud service based on the instruction determined by the hardware processor.
  - 6. The method of claim 1, wherein the storing of the plurality of rules comprises storing rules relating to at least one of a predetermined time period when software of the private cloud service was last updated, a type of the at least one security service provided by the private cloud service, a type of data being sent by the request, a traffic quota of an amount of requests sent to at least one of the private or public cloud services.
  - 7. The method of claim 6, wherein the determining of the at least one parameter relating to the received request comprises determining at least one of a type of the at least one security service being accessed by the request, a type of file included in the request, a type of link included in the request, and a hash sum included in the request.

3. (canceled)

8. A system for utilizing computer security services, the system comprising:
- an electronic database configured to store a plurality of rules that indicate when to use either a private cloud service or a public cloud service for at least one of the security services, wherein the private and public cloud services share similar internal working logic in processing one or more requests from a plurality of client computers to access various computer security services; and
  
  a hardware processor configured to;
  
  receive a request from a client computer to access the at least one private or public security service that analyzes an unknown object received on the client computer and generates at least one application control rule that specifies how to process the unknown object on the client computer,determine at least one parameter relating to the received request,apply the at least one parameter to the plurality of rules to determine an instruction indicating whether to transmit the request to the private cloud service or the public cloud service, andtransmit the request to one of either the private cloud service or the public cloud service, based on the instruction, to use the at least one security service.
- View Dependent Claims (9, 11, 12, 13, 14)
- - 9. The system of claim 8, wherein the one of the private cloud service and the public cloud service is configured to perform the at least one security service on the request, and to transmit an operation instruction to the client computer based on a result of the performed at least one security service.
  - 11. The system of claim 8, wherein the request from the client computer to access the at least one security service does not include an indication of whether to transmit the request to the private cloud service or the public cloud service.
  - 12. The system of claim 8, wherein the request is initially transmitted to private cloud service and redirected to public cloud service based on the instruction determined by the hardware processor.
  - 13. The system of claim 8, wherein the electronic database is configured to store the plurality of rules that relate to at least one of a predetermined time period when software of the private cloud service was last updated, a type of the at least one security service provided by the private cloud service, a type of data being sent by the request, a traffic quota of an amount of requests sent to at least one of the private or public cloud services.
  - 14. The system of claim 13, wherein the hardware processor is further configured to determine the at least one parameter by determining at least one of a type of the at least one security service being accessed by the request, a type of file included in the request, a type of link included in the request, and a hash sum included in the request.

10. (canceled)

15. A non-transitory computer readable medium storing computer executable instructions for utilizing computer security services, including instructions for:
- storing, in an electronic database, a plurality of rules that indicate when to use either a private cloud service or a public cloud service for at least one of the security services, wherein the private and public cloud services share similar internal working logic in processing one or more requests from a plurality of client computers to access various computer security services;
  
  receiving a request from a client computer to access the at least one private or public security service that analyzes an unknown object received on the client computer and generates at least one application control rule that specifies how to process the unknown object on the client computer;
  
  determining at least one parameter relating to the received request;
  
  applying the at least one parameter to the plurality of rules to determine an instruction indicating whether to transmit the request to the private cloud service or the public cloud service; and
  
  transmitting the request to one of either the private cloud service or the public cloud service, based on the instruction, to use the at least one security service.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The non-transitory computer readable medium of claim 15, wherein the request from the client computer to access the at least one security service does not include an indication of whether to transmit the request to the private cloud service or the public cloud service.
  - 18. The non-transitory computer readable medium of claim 15, wherein the request is initially transmitted to private cloud service and redirected to public cloud service based on the instruction determined by the hardware processor.
  - 19. The non-transitory computer readable medium of claim 15, wherein the instructions for the storing of the plurality of rules further comprise instructions for storing rules relating to at least one of a predetermined time period when software of the private cloud service was last updated, a type of the at least one security service provided by the private cloud service, a type of data being sent by the request, a traffic quota of an amount of requests sent to at least one of the private or public cloud services.
  - 20. The non-transitory computer readable medium of claim 19, wherein the instructions for determining the at least one parameter relating to the received request further comprise instructions for determining at least one of a type of the at least one security service being accessed by the request, a type of file included in the request, a type of link included in the request, and a hash sum included in the request.

16. (canceled)

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Lab A.O. Kaspersky
Original Assignee
Lab A.O. Kaspersky
Inventors
Efremov, Andrey A., Lapushkin, Anton S.

Granted Patent

US 9,667,657 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 16/22   Indexing; Data structures t...

G06F 21/56   Computer malware detection ...

H04L 63/20   for managing network securi...

H04L 63/205   involving negotiation or de...

H04L 67/10   in which an application is ...

H04L 67/1008   based on parameters of serv...

H04L 67/1097   for distributed storage of ...

SYSTEM AND METHOD OF UTILIZING A DEDICATED COMPUTER SECURITY SERVICE

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

199 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

SYSTEM AND METHOD OF UTILIZING A DEDICATED COMPUTER SECURITY SERVICE

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

199 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others