Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020139675 - ON-DEVICE DYNAMIC SAFE BROWSING

Publication Number WO/2020/139675
Publication Date 02.07.2020
International Application No. PCT/US2019/067346
International Filing Date 19.12.2019
IPC
H04L 29/06 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 29/12 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
12characterised by the data terminal
H04L 29/08 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
08Transmission control procedure, e.g. data link level control procedure
CPC
H04L 12/4641
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
28characterised by path configuration, e.g. local area networks [LAN], wide area networks [WAN]
46Interconnection of networks
4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
H04L 61/1511
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
15Directories; Name-to-address mapping
1505involving standard directories or standard directory access protocols
1511using domain name system [DNS]
H04L 61/2007
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
20Address allocation
2007internet protocol [IP] addresses
H04L 61/6013
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
60Details
6013Proxying of addresses
H04L 63/0236
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
02for separating internal from external traffic, e.g. firewalls
0227Filtering policies
0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
H04L 63/0272
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
02for separating internal from external traffic, e.g. firewalls
0272Virtual private networks
Applicants
  • MCAFEE, LLC [US]/[US]
Inventors
  • RUDNIK, Lior
  • MELNYK, Mykhaylo
Agents
  • CRANDALL, Sean C.
Priority Data
16/236,19528.12.2018US
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) ON-DEVICE DYNAMIC SAFE BROWSING
(FR) NAVIGATION SÉCURISÉE DYNAMIQUE SUR DISPOSITIF
Abstract
(EN)
In an example, there is disclosed a computing apparatus, including: a hardware platform comprising a processor and a memory; software to access a network or internet resource according to a domain name; a network stack to provide network or internet access; and a virtual private network (VPN), configured to locally intercept a domain name-based access request, query a domain policy repository to determine whether the domain name should be blocked, and to query an external domain name system (DNS) server for an internet protocol (IP) address for the domain name and pass the request through the network stack if the domain name should not be blocked.
(FR)
Dans un exemple, l'invention concerne un appareil informatique comprenant : une plateforme matérielle comprenant un processeur et une mémoire ; un logiciel pour accéder à une ressource réseau ou Internet en fonction d’un nom de domaine ; une pile réseau pour fournir un accès réseau ou Internet ; et un réseau privé virtuel (VPN) configuré pour intercepter localement une demande d'accès basée sur un nom de domaine, interroger un référentiel de règles de domaine afin de déterminer si le nom de domaine doit être bloqué, et rechercher le nom de domaine dans un serveur de système de noms de domaine externe (DNS) pour un protocole IP (Internet Protocol), puis transmettre la demande à travers la pile réseau si le nom de domaine ne doit pas être bloqué.
Also published as
Latest bibliographic data on file with the International Bureau