US 12,244,647 B2
Context-based security in mobile networks using an API and a data store
Sachin Verma, Danville, CA (US); Leonid Burakovsky, Pleasanton, CA (US); and Srikanth Ramachandran, Hayward, CA (US)
Assigned to Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed by Palo Alto Networks, Inc., Santa Clara, CA (US)
Filed on Jan. 30, 2023, as Appl. No. 18/103,011.
Prior Publication US 2024/0259428 A1, Aug. 1, 2024
Int. Cl. G06F 7/04 (2006.01); H04L 9/40 (2022.01)
CPC H04L 63/20 (2013.01) [H04L 63/1425 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A system, comprising:
a processor configured to:
monitor network traffic on a mobile network at a security platform to identify a new session;
determine user-IP mapping information associated with the new session by performing the following:
query a local user-IP mapping table stored at the security platform using an IP address of a packet associated with the new session;
query a cloud-based data store using the IP address of the packet associated with the new session if the IP address is not stored in the local user-IP mapping table; and
send an API query to another data store that includes user contextual information if the IP address is not stored in the cloud-based data store; and
enforce a security policy on the new session at the security platform based on the user-IP mapping information to apply context-based security in the mobile network; and
a memory coupled to the processor and configured to provide the processor with instructions.