公开(公告)号：US11552943B2

公开(公告)日：2023-01-10

申请号：US17097809

申请日：2020-11-13

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky ,  Dima Barboi ,  Tal Zigman

IPC: H04L9/40

Abstract: Disclosed embodiments relate to systems and methods for securely establishing secretless and remote native access sessions. Techniques include identifying a client configured to participate in remote native access sessions, wherein the client has a remote access protocol file that has been modified to include an identifier associated with the client; sending a prompt to the client to establish a secure tunnel connection with a connection agent using the identifier associated with the client; and authentication the client. The techniques may further include accessing target identity information associated with one or more target resources; receiving from the client a token that identifies a target resource from among the one or more target resources; obtaining, based on the token, a credential required for secure access to the target resource; and initiating, using the credential, a remote native access session between the client and the target resource.

公开(公告)号：US10970378B2

公开(公告)日：2021-04-06

申请号：US16410182

申请日：2019-05-13

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky

IPC: G06F21/36 ,  G06F21/62 ,  G06F21/33 ,  G06K19/06 ,  G06F21/74 ,  H04L9/32

Abstract: Disclosed embodiments relate to systems and methods for securely generating verifiable machine-readable visual codes. Techniques include identifying a data element to be made available to a computing device, generating a machine-readable visual code including the data element, making available the generated machine-readable visual code to a display medium, such that the generated machine-readable visual code can be decoded from the display medium to yield the data element and can be validated. The computing device's ability to interact with the data element may be conditioned on the validation of the data element being successful.

公开(公告)号：US20240281506A1

公开(公告)日：2024-08-22

申请号：US18375127

申请日：2023-09-29

Applicant: CyberArk Software Ltd.

Inventor： Nir Popik ,  Ari Brian Schwartz ,  Tamar Yankelevich ,  Arthur Bendersky

IPC: G06F21/31 ,  G06F21/62

CPC classification number: G06F21/31 ,  G06F21/629

Abstract: Disclosed embodiments relate to systems and methods for controlling web sessions. Techniques include identifying, by a browser component executing on an endpoint device, navigation by a user to a web application, the web application including at least one interface element; accessing, based on an identifier of the at least one interface element, at least one rule associated with the at least one interface element; identifying an interaction with the at least one interface element by the user; determining whether the interaction with the at least one interface element triggers the at least one rule; and based on a determination that the interaction with the at least one interface element triggers the at least one rule, causing a control action to be performed.

公开(公告)号：US11316842B2

公开(公告)日：2022-04-26

申请号：US16601730

申请日：2019-10-15

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky ,  Hadas Elkabir ,  Tal Zigman

IPC: H04L29/06 ,  G06F16/24

Abstract: Disclosed embodiments relate to uniquely identifying and validating identities based on electronic file fingerprints. Techniques include identifying an identity associated with a computing device; accessing fingerprinting data associated with an electronic file stored on or transmitted from the computing device; generating, based on a diversity of different properties of the fingerprinting data, a profile for the electronic file; accessing a repository storing profiles corresponding to a plurality of identities; comparing the generated profile with one or more of the stored profiles; determining whether the generated profile matches a stored profile, from the repository of stored profiles, associated with the identity; and validating, conditional on the matching, the identity.

公开(公告)号：US11005849B1

公开(公告)日：2021-05-11

申请号：US16916881

申请日：2020-06-30

Applicant: CyberArk Software Ltd.

Inventor： Dima Barboi ,  Arthur Bendersky ,  Tal Zigman

IPC: H04L29/06 ,  H04L29/08

Abstract: The disclosed embodiments relate to systems and methods for secure and efficient resource access using distributed directory caching techniques. Techniques include obtaining, from a directory service, client directory data associated with a client; providing the client directory data to a computing device associated with the client for caching on the computing device; identifying a request from the client; receiving, from the computing device, the client directory data that was cached on the computing device; and evaluating the request based on the received client directory data.

公开(公告)号：US10747900B1

公开(公告)日：2020-08-18

申请号：US16543788

申请日：2019-08-19

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/54 ,  G06F21/57

Abstract: Disclosed embodiments relate to systems and methods for discovering and controlling sensitive data stored in temporary access memory. Techniques include identifying an application configured to perform one or more secure functions using sensitive data, wherein the application is configured to store or access the sensitive data in a temporary access memory accessible to the application; analyzing one or more processes associated with runtime activity of the application; detecting, based on the analyzing, an instance of the sensitive data, wherein the detecting is based on at least one of: analyzing input from a user to the application, or analyzing attributes of the application; and automatically implementing, based on the detecting, a control action to limit the accessibility of the sensitive data in the temporary access memory.

公开(公告)号：US10579830B1

公开(公告)日：2020-03-03

申请号：US16555476

申请日：2019-08-29

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky ,  Dima Barboi

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/57 ,  G06F21/60 ,  G06F21/44 ,  G06F21/12

Abstract: Disclosed embodiments relate to systems and methods for securely and efficiently enabling activation of access-limited software to permitted identities. Techniques include receiving, from a personal computing device associated with an identity, a software identifier associated with access-limited software available on an endpoint computing resource; identifying a tenant identifier associated with the identity; identifying a prompt to activate the access-limited software available on the endpoint computing resource; determining that the identity is permitted to utilize the access-limited software based on at least the software identifier and tenant identifier; and enabling, based on the determining, activation of the access-limited software for use by the identity at the endpoint computing resource.

公开(公告)号：US12289308B2

公开(公告)日：2025-04-29

申请号：US18086119

申请日：2022-12-21

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky ,  Dima Barboi ,  Tal Zigman

IPC: H04L9/40

Abstract: Disclosed embodiments relate to systems and methods for securely establishing secretless and remote native access sessions. Techniques include identifying a client configured to participate in remote native access sessions, wherein the client has a remote access protocol file that has been modified to include an identifier associated with the client; sending a prompt to the client to establish a secure tunnel connection with a connection agent using the identifier associated with the client; and authentication the client. The techniques may further include accessing target identity information associated with one or more target resources; receiving from the client a token that identifies a target resource from among the one or more target resources; obtaining, based on the token, a credential required for secure access to the target resource; and initiating, using the credential, a remote native access session between the client and the target resource.

公开(公告)号：US12155681B2

公开(公告)日：2024-11-26

申请号：US17734270

申请日：2022-05-02

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky ,  Evgeni Aizikovich

IPC: H04L9/40 ,  H04L9/08

Abstract: Disclosed embodiments relate to systems and methods for securely and privately auditing web sessions. Techniques include receiving encrypted browser session data; storing the encrypted browser session data at a server; receiving an audit request associated with the stored encrypted browser session data; retrieving the stored encrypted browser session data based on the audit request; and transmitting the encrypted browser session data to an auditor endpoint device to enable access to the browser session data by the auditor endpoint device.

公开(公告)号：US20230140559A1

公开(公告)日：2023-05-04

申请号：US17734270

申请日：2022-05-02

Applicant: CyberArk Software Ltd.

Inventor： Arthur Bendersky ,  Evgeni Aizikovich

IPC: H04L9/40 ,  H04L9/08

Abstract: Disclosed embodiments relate to systems and methods for securely and privately auditing web sessions. Techniques include receiving encrypted browser session data; storing the encrypted browser session data at a server; receiving an audit request associated with the stored encrypted browser session data; retrieving the stored encrypted browser session data based on the audit request; and transmitting the encrypted browser session data to an auditor endpoint device to enable access to the browser session data by the auditor endpoint device.