Ameya Mukund Talwalkar

US Patent:

20190089736, Mar 21, 2019

Filed:

Nov 15, 2018

Appl. No.:

16/192460

Inventors:

- Mountain View CA, US
Ameya Talwalkar - Saratoga CA, US

International Classification:

H04L 29/06
H04L 29/08

Abstract:

Techniques to facilitate passive detection of forged web browsers are disclosed herein. In at least one implementation, web traffic between a web server and a client is monitored, and a hypertext transfer protocol (HTTP) header transmitted by the client is processed to determine a type of web browser associated with the client. Attribute data points for the client are generated based on fields in the HTTP request header transmitted by the client and connection behavior of the client with the web server. The attribute data points for the client are then compared with predetermined attribute data points for the type of web browser associated with the client to determine if the client is a genuine web browser of the type of web browser associated with the client.

US Patent:

20180167412, Jun 14, 2018

Filed:

Dec 8, 2017

Appl. No.:

15/835765

Inventors:

- Mountain View CA, US
Shreyans Mehta - Los Altos CA, US
Ameya Talwalkar - Saratoga CA, US

International Classification:

H04L 29/06
G06F 21/53

Abstract:

Techniques to facilitate prevention of malicious attacks on a web service are disclosed herein. In at least one implementation, a computing system intercepts a web request directed to a web server providing the web service. The computing system identifies whether or not the web request is malicious. When the web request is identified as malicious, the computing system redirects the web request to an isolated mitigation server configured to mimic responses of the web server. The isolated mitigation server processes the web request to generate artificial content based on the web request that appears to be genuine content provided by the web server, and presents the artificial content in response to the web request.

US Patent:

20160366161, Dec 15, 2016

Filed:

Jun 10, 2016

Appl. No.:

15/178965

Inventors:

- Berkeley CA, US
Ameya Talwalkar - Saratoga CA, US

International Classification:

H04L 29/06

Abstract:

Techniques to facilitate network security analysis and attack response are disclosed herein. In at least one implementation, a passive analysis system receives a copy of network traffic, performs deep analysis on the copy of network traffic, and generates security data points based on the deep analysis. The passive analysis system then provides the security data points to an active inline security device, wherein the active inline security device compares incoming network traffic to the security data points to detect security events.

US Patent:

20160234244, Aug 11, 2016

Filed:

Feb 1, 2016

Appl. No.:

15/012323

Inventors:

- Berkeley CA, US
Ameya Talwalkar - Saratoga CA, US

International Classification:

H04L 29/06
H04L 29/08

Abstract:

Techniques to facilitate detection of whether or not applications are executed on physical devices are disclosed herein. In at least one implementation, a mobile application that generates a web service request is executed on a computing system. The computing system executes a client security component of the mobile application to collect attributes associated with the computing system and an operating environment on which the mobile application is executing, and utilizes a mobile application programming interface to transfer the web service request including the attributes for delivery to a web server. The web server executes a server security component of a web service to extract the attributes from the web service request and process the attributes to determine whether or not the mobile application is being executed on a physical mobile device.

US Patent:

20160219072, Jul 28, 2016

Filed:

Jan 27, 2016

Appl. No.:

15/007730

Inventors:

- Berkeley CA, US
Ameya Talwalkar - Saratoga CA, US

International Classification:

H04L 29/06
H04L 29/08

Abstract:

Techniques to validate web service requests from applications executing on wireless communication devices are disclosed herein. In at least one implementation, an application that generates a web service request is executed on a wireless communication device. The wireless communication device executes a client security component of the application to collect security information and include the security information in the web service request, and utilizes a mobile application programming interface to transfer the web service request including the security information for delivery to a web server. The web server executes a server security component of a web service to extract the security information from the web service request, validate the web service request based on the security information, and provide the web service request to the web service upon successful validation.