专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09286477B2 Secure app ecosystem with key and data exchange according to enterprise information control policy 有权
标题翻译：根据企业信息化管理政策，密钥和数据交换安全应用生态系统
公开(公告)号：US09286477B2
公开(公告)日：2016-03-15
申请号：US13598248
申请日：2012-08-29
申请人： William E. Sobel , Thomas Jeffrey Enderwick , Bruce McCorkendale
发明人： William E. Sobel , Thomas Jeffrey Enderwick , Bruce McCorkendale
IPC分类号： G06F11/30 , G06F21/60 , H04L29/06 , G06F17/30
CPC分类号： G06F21/606 , G06F17/30238 , G06F21/604 , H04L63/0428 , H04L63/20
摘要： Multiple apps of an ecosystem on a computer securely exchange encrypted data according to an information control policy of an enterprise, without allowing unauthorized access from outside of the ecosystem. An ecosystem agent creates an ecosystem directory, which contains policy information and identification information concerning each specific app in the ecosystem, including the ecosystem agent. Each ecosystem app generates an asymmetric key pair, the public key of which it shares only with apps in the ecosystem through the directory. The ecosystem agent's private key is used to encrypt the directory. Data is securely communicated between apps in the ecosystem, by encrypting and decrypting messages and data objects with the appropriate ecosystem app keys. Each specific app in the ecosystem complies with enterprise information control policy. Ecosystem apps can read a policy from the directory, and receive policy updates from the enterprise.
摘要翻译：计算机上生态系统的多个应用程序根据企业的信息控制策略安全地交换加密数据，而不允许从生态系统外面进行未经授权的访问。生态系统代理创建一个生态系统目录，其中包含有关生态系统中每个特定应用程序（包括生态系统代理）的策略信息和标识信息。每个生态系统应用程序都会生成一个非对称密钥对，其公钥仅通过目录与生态系统中的应用共享。生态系统代理的私钥用于加密目录。通过使用适当的生态系统应用程序密钥加密和解密消息和数据对象，可以在生态系统中的应用程序之间安全地传送数据。生态系统中的每个具体应用都符合企业信息控制政策。生态系统应用程序可以从目录中读取策略，并从企业接收策略更新。

2. 发明授权

US09223562B1 Controllable deployment of software updates 有权
标题翻译：可控部署软件更新
公开(公告)号：US09223562B1
公开(公告)日：2015-12-29
申请号：US11959103
申请日：2007-12-18
申请人： William E. Sobel
发明人： William E. Sobel
IPC分类号： G06F9/44 , G06F9/445
CPC分类号： G06F8/65 , Y10S707/99954
摘要： The risk of inadvertent introduction of software bugs to a large number of users during a software update is minimized by controlling updates using a uniform mechanism of sending updates to seed users. A value-generating module generates a value for a computer, the value falling within a population range of values. A sampling range-generating module generates a sampling range of values as a proper subset of the population range, the probability of the random value falling within the sampling range being predetermined. An eligibility determination module determines whether the computer is eligible to receive a software update, the computer being determined eligible when the random value for the computer falls within the sampling range, and an update module provides the software update to the computer based on the eligibility determination. In some embodiments, a problem review module determines whether the update has caused a problem for computers receiving the update.
摘要翻译：在软件更新期间无意中向大量用户引入软件错误的风险通过使用向种子用户发送更新的统一机制来控制更新来最小化。值产生模块为计算机生成值，该值落在值的总体范围内。采样范围生成模块生成值的采样范围作为群体范围的适当子集，随机值落在采样范围内的概率是预定的。资格确定模块确定计算机是否有资格接收软件更新，当计算机的随机值落在采样范围内时，计算机被确定合格，并且更新模块基于资格确定向计算机提供软件更新。在一些实施例中，问题审查模块确定该更新是否对接收该更新的计算机造成问题。

3. 发明授权

US09183377B1 Unauthorized account monitoring system and method 有权
标题翻译：未经授权的账户监控系统和方法
公开(公告)号：US09183377B1
公开(公告)日：2015-11-10
申请号：US12141736
申请日：2008-06-18
申请人： William E. Sobel , Brian Hernacki , Mark Kennedy
发明人： William E. Sobel , Brian Hernacki , Mark Kennedy
IPC分类号： G06F11/00 , G06F21/50 , G06F21/55
CPC分类号： G06F21/554 , G06F21/55 , G06F2221/034
摘要： A possibly pre-infected system is inspected for the existence of tracked application-specific accounts. In a tracked application-specific account is found, the system is further audited to verify that only authorized processes are using the account and that the authorized account creation application is installed on the host computer system.
摘要翻译：检查可能的预先感染的系统是否存在跟踪的特定于应用程序的帐户。在被跟踪的应用程序特定帐户中，系统被进一步审核，以验证只有授权的进程正在使用该帐户，并且授权的帐户创建应用程序安装在主机系统上。

4. 发明授权

US09158558B1 Methods and systems for providing application manifest information 有权
标题翻译：提供应用程序清单信息的方法和系统
公开(公告)号：US09158558B1
公开(公告)日：2015-10-13
申请号：US12059513
申请日：2008-03-31
申请人： Brian Hernacki , William E. Sobel
发明人： Brian Hernacki , William E. Sobel
IPC分类号： G06F9/44 , G06F9/445
CPC分类号： G06F9/445 , G06F8/75 , G06F21/316 , G06F21/563 , G06F21/566 , G06F2221/2133
摘要： A computer-implemented method for providing application manifest information may include analyzing source code of a software application. The method may also include detecting that the source code is programmed to access a computer resource and determining a security implication of the source code being programmed to access the computer resource. Determining the security implication may include providing a notification of the security implication of the source code to a developer of the source code. Determining the security implication may also include providing information about the security implication in an application manifest. Systems and computer-readable-media for creating and editing application manifests are also disclosed.
摘要翻译：用于提供应用程序清单信息的计算机实现的方法可以包括分析软件应用的源代码。该方法还可以包括检测源代码被编程为访问计算机资源并且确定被编程为访问计算机资源的源代码的安全含义。确定安全含义可以包括向源代码的开发者提供源代码的安全含义的通知。确定安全含义还可以包括提供关于应用清单中的安全含义的信息。还公开了用于创建和编辑应用程序清单的系统和计算机可读介质。

5. 发明授权

US09075497B1 Enabling selective policy driven seamless user interface presentation between and among a host and a plurality of guests 有权
标题翻译：启用选择性策略驱动主机和多个客户端之间和之间的无缝用户界面呈现
公开(公告)号：US09075497B1
公开(公告)日：2015-07-07
申请号：US13048668
申请日：2011-03-15
申请人： William E. Sobel , Bruce McCorkendale
发明人： William E. Sobel , Bruce McCorkendale
IPC分类号： G06F3/00 , G06F3/0481 , G06F3/01 , G06F1/16
CPC分类号： G06F3/0481 , G06F1/1626 , G06F9/451 , G06F9/45558
摘要： Selective projection of user interface elements between a host and a plurality of guests is provided according to a configurable policy. User interface elements generated by guests and/or the host are captured. It is determined whether to project captured elements into the user interface with which the user is currently interacting, based on the policy. In some cases, it is determined to project a captured element originating from a first user interface into a second user interface with which the user is currently interacting, based on factors such as source, destination, element attributes, element contents and/or element type. Responsive to such a determination, the captured element is projected into the current user interface, thereby presenting the projected element to the user.
摘要翻译：根据可配置的策略提供主机与多个客户端之间的用户界面元素的选择性投影。捕获由客人和/或主机生成的用户界面元素。基于策略确定是否将捕获的元素投射到用户正在与之进行交互的用户界面中。在一些情况下，基于诸如源，目的地，元素属性，元素内容和/或元素类型的因素，确定将源自第一用户界面的捕获元素投影到用户正在与之进行交互的第二用户界面中。响应于这样的确定，捕获的元素被投影到当前用户界面中，从而向用户呈现投影元素。

6. 发明授权

US08745742B1 Methods and systems for processing web content encoded with malicious code 有权
标题翻译：处理使用恶意代码编码的网页内容的方法和系统
公开(公告)号：US08745742B1
公开(公告)日：2014-06-03
申请号：US12264101
申请日：2008-11-03
申请人： Sourabh Satish , William E. Sobel , Bruce McCorkendale
发明人： Sourabh Satish , William E. Sobel , Bruce McCorkendale
IPC分类号： G06F12/14 , G06F7/00 , G06F17/30
CPC分类号： G06F7/00 , G06F17/30 , G06F21/00 , G06F21/568
摘要： A computer-implemented method for processing web content may comprise receiving web content encoded with malicious steganographic code. Before presenting the web content, the method may comprise modifying the web content to create modified content such that information conveyed by the malicious steganographic code is at least partially corrupted in the modified content. Additionally, a functionality of the modified content may be at least substantially similar to a functionality of the web content following modification of the web content to create the modified content. Various other methods, computer-readable media, and systems are also disclosed.
摘要翻译：用于处理网页内容的计算机实现的方法可以包括接收用恶意隐写代码编码的网络内容。在呈现网络内容之前，该方法可以包括修改网络内容以创建修改的内容，使得恶意隐身代码传达的信息在修改的内容中至少部分地被破坏。此外，修改的内容的功能可以至少基本上类似于web内容的修改之后的web内容的功能，以创建修改的内容。还公开了各种其它方法，计算机可读介质和系统。

7. 发明授权

US08713687B2 Methods and systems for enabling community-tested security features for legacy applications 有权
标题翻译：用于实现遗留应用程序的社区测试安全功能的方法和系统
公开(公告)号：US08713687B2
公开(公告)日：2014-04-29
申请号：US12336668
申请日：2008-12-17
申请人： William E. Sobel , Sourabh Satish
发明人： William E. Sobel , Sourabh Satish
IPC分类号： G06F7/04 , G06F21/12
CPC分类号： H04L63/20 , G06F21/125 , G06F21/126 , G06F21/552 , G06F21/577 , G06F21/604 , H04L63/1433 , H04L63/145
摘要： A computer-implemented method for enabling community-tested security features for legacy applications may include: 1) identifying a plurality of client systems, 2) identifying a legacy application on a client system within the plurality of client systems, 3) identifying a security-feature-enablement rule for the legacy application, 4) enabling at least one security feature for the legacy application by executing the security-feature-enablement rule, 5) determining the impact of the security-feature-enablement rule on the health of the legacy application, and then 6) relaying the impact of the security-feature-enablement rule on the health of the legacy application to a server. Various other methods, systems, and computer-readable media are also disclosed.
摘要翻译：用于实现遗留应用的经社区测试的安全特征的计算机实现的方法可以包括：1）识别多个客户端系统，2）识别多个客户端系统内的客户端系统上的遗留应用; 3）用于遗留应用的特征启用规则，4）通过执行安全特征启用规则来为遗留应用启用至少一个安全特征，5）确定安全特征使能规则对遗产的健康的影响应用程序，然后6）将安全功能启用规则的影响中继到传统应用程序的运行状况到服务器。还公开了各种其它方法，系统和计算机可读介质。

8. 发明授权

US08561181B1 Detecting man-in-the-middle attacks via security transitions 有权
标题翻译：通过安全转换检测中间人的袭击
公开(公告)号：US08561181B1
公开(公告)日：2013-10-15
申请号：US12324820
申请日：2008-11-26
申请人： Brian Hernacki , William E. Sobel
发明人： Brian Hernacki , William E. Sobel
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08B13/00
CPC分类号： G06F21/552
摘要： A page list comprising a list of transitions between network resources is established. Subsequently, a transition is detected between a first network resource and a second network resource. An expected security level associated with the transition is identified based on the page list. Responsive to the detected security level being determined to be lower than the expected security level, a remedial action is performed.
摘要翻译：建立包括网络资源之间的转换列表的页面列表。随后，在第一网络资源和第二网络资源之间检测到转换。基于页面列表来识别与转换相关联的期望的安全级别。响应于检测到的安全级别被确定为低于预期安全级别，执行补救动作。

9. 发明授权

US08504680B1 Automatically adjusting polling intervals based on remote administrative activity 有权
标题翻译：根据远程管理活动自动调整轮询间隔
公开(公告)号：US08504680B1
公开(公告)日：2013-08-06
申请号：US12343377
申请日：2008-12-23
申请人： Brian Hernacki , William E. Sobel
发明人： Brian Hernacki , William E. Sobel
IPC分类号： G06F15/173
CPC分类号： H04L47/28
摘要： It is detected when an administrator begins or finishes performing remote administrative activity. In response, the polling interval is modified. When the level of remote administrative activity increases, the polling interval is decreased, thereby directing the managed clients to poll the server more frequently. When the level of remote administrative activity decreases, the polling interval is increased, thereby directing the managed clients to poll the server less frequently. By dynamically adjusting the polling interval based on remote administrative activity, a balance is struck between scalability and usability.
摘要翻译：当管理员开始或完成远程管理活动时检测到。作为响应，轮询间隔被修改。当远程管理活动级别增加时，轮询间隔减少，从而指示受管客户端更频繁地轮询服务器。当远程管理活动级别减少时，轮询时间间隔会增加，从而指导受管客户端较少的轮询服务器。通过根据远程管理活动动态调整轮询间隔，可扩展性和可用性之间取得平衡。

10. 发明授权

US08359649B1 Use of geo-location data for spam detection 有权
标题翻译：使用地理位置数据进行垃圾邮件检测
公开(公告)号：US08359649B1
公开(公告)日：2013-01-22
申请号：US13176652
申请日：2011-07-05
申请人： William E. Sobel , Bruce E. McCorkendale
发明人： William E. Sobel , Bruce E. McCorkendale
IPC分类号： G06F17/30
CPC分类号： H04L51/20 , H04L51/12 , H04L51/28 , H04L63/0227 , H04L63/107 , H04L63/1441
摘要： Computer implemented methods, apparatus, and computer-readable media for detecting suspected spam in e-mail (24) originating from a sending computer (21). A method embodiment comprises the steps of determining (11) the actual IP address (23) of the sending computer (21); converting (12) the actual IP address (23) into geo-location data; and, using the geo-location data, ascertaining (13) whether the e-mail (24) contains suspected spam.
摘要翻译：用于检测来自发送计算机（21）的电子邮件（24）中的可疑垃圾邮件的计算机实现的方法，装置和计算机可读介质。方法实施例包括以下步骤：确定（11）发送计算机（21）的实际IP地址（23）; 将（12）实际IP地址（23）转换为地理位置数据; 并且使用地理位置数据确定（13）电子邮件（24）是否包含可疑的垃圾邮件。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式