专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07735094B2 Ascertaining domain contexts 有权
标题翻译：确定域上下文
公开(公告)号：US07735094B2
公开(公告)日：2010-06-08
申请号：US11150869
申请日：2005-06-10
申请人： Govind Varshney , Marc A. Silbey , Shankar Ganesh , Robert Impollonia , Venkatraman V Kudallur
发明人： Govind Varshney , Marc A. Silbey , Shankar Ganesh , Robert Impollonia , Venkatraman V Kudallur
IPC分类号： G06F9/44
CPC分类号： H04L63/1408 , G06F17/30887 , G06F17/30902
摘要： Various embodiments pertain to ascertaining domain contexts. In one embodiment, an application receives content that may contain a script (i.e. code). In this case, the domain context is ascertained and the script is executed in the context of the domain associated with the received content, rather than requiring the application or some other component to navigate to a location, such as a web location, to attempt to ascertain the domain context of the script. In another embodiment, third party objects or code are required to provide their domain context to an application in order for the application to make a security-based decision.
摘要翻译：各种实施例涉及确定域上下文。在一个实施例中，应用程序接收可能包含脚本（即代码）的内容。在这种情况下，确定域上下文并且在与所接收的内容相关联的域的上下文中执行脚本，而不是要求应用程序或某个其他组件导航到诸如web位置的位置，以尝试确定脚本的域上下文。在另一个实施例中，需要第三方对象或代码将其域上下文提供给应用，以便应用进行基于安全的决策。

2. 发明授权

US07725930B2 Validating the origin of web content 有权
标题翻译：验证网页内容的起源
公开(公告)号：US07725930B2
公开(公告)日：2010-05-25
申请号：US11093527
申请日：2005-03-30
申请人： Eric M Lawrence , Roberto A. Franco , Venkatraman V Kudallur , Marc A Silbey
发明人： Eric M Lawrence , Roberto A. Franco , Venkatraman V Kudallur , Marc A Silbey
IPC分类号： H04L9/32
CPC分类号： H04L63/126 , H04L67/02
摘要： Described herein is a technique of protecting users against certain types of Internet attacks. The technique involves obtaining certificates from visited web sites and qualifying communications with those web sites based on the content of the certificates.
摘要翻译：这里描述的是保护用户免遭某些类型的因特网攻击的技术。该技术包括从访问的网站获取证书，并根据证书的内容与这些网站进行合格通信。

3. 发明申请

US20120222137A1 Validating the Origin of Web Content 有权
标题翻译：验证Web内容的起源
公开(公告)号：US20120222137A1
公开(公告)日：2012-08-30
申请号：US13465426
申请日：2012-05-07
申请人： Eric M. Lawrence , Roberto A. Franco , Venkatraman V Kudallur , Marc A. Silbey
发明人： Eric M. Lawrence , Roberto A. Franco , Venkatraman V Kudallur , Marc A. Silbey
IPC分类号： G06F21/24
CPC分类号： H04L63/126 , H04L67/02
摘要： Described herein is a technique of protecting users against certain types of Internet attacks. The technique involves obtaining certificates from visited web sites and qualifying communications with those web sites based on the content of the certificates.
摘要翻译：这里描述的是保护用户免遭某些类型的因特网攻击的技术。该技术包括从访问的网站获取证书，并根据证书的内容与这些网站进行合格通信。

4. 发明授权

US08646078B2 MIME handling security enforcement 有权
标题翻译： MIME处理安全执行
公开(公告)号：US08646078B2
公开(公告)日：2014-02-04
申请号：US12685528
申请日：2010-01-11
申请人： Venkatraman V Kudallur , Shankar Ganesh , Roberto A Franco , Vishu Gupta , John G Bedworth
发明人： Venkatraman V Kudallur , Shankar Ganesh , Roberto A Franco , Vishu Gupta , John G Bedworth
IPC分类号： G06F12/14 , G08B23/00
CPC分类号： G06F21/60 , G06F21/56 , G06F21/562 , G06F21/566
摘要： A model restricts un-trusted data/objects from running on a user's machine without permission. The data is received by a protocol layer that reports a MIME type associated with the DATA, and caches the data and related cache file name (CFN). A MIME sniffer is arranged to identify a sniffed MIME type based on the cached data, the CFN, and the reported MIME type. Reconciliation logic evaluates the sniffed MIME type and the CFN to determine a reconciled MIME type, and to update the CFN. A class ID sniffer evaluates the updated CFN, the cached data, and the reconciled MIME type to determine an appropriate class ID. Security logic evaluates the updated CFN, the reported class ID, and other related system parameters to build a security matrix. Parameters from the security matrix are used to intercept data/objects before an un-trusted data/object can create a security breach on the machine.
摘要翻译：模型限制不受信任的数据/对象在未经许可的情况下在用户计算机上运行。数据由报告与DATA关联的MIME类型的协议层接收，并缓存数据和相关缓存文件名（CFN）。安排MIME嗅探器根据缓存的数据，CFN和报告的MIME类型来识别嗅探的MIME类型。调和逻辑评估嗅探的MIME类型和CFN以确定对帐的MIME类型，并更新CFN。类ID嗅探器评估更新的CFN，缓存数据和已对帐的MIME类型，以确定适当的类ID。安全逻辑评估更新的CFN，报告的类ID和其他相关系统参数以构建安全性矩阵。来自安全矩阵的参数用于在不可信数据/对象可能在机器上创建安全漏洞之前拦截数据/对象。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式