专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07801840B2 Threat identification utilizing fuzzy logic analysis 有权
标题翻译：使用模糊逻辑分析的威胁识别
公开(公告)号：US07801840B2
公开(公告)日：2010-09-21
申请号：US11829592
申请日：2007-07-27
申请人： Rolf Repasi , Simon Clausen , Ian Oliver , Ryan Pereira
发明人： Rolf Repasi , Simon Clausen , Ian Oliver , Ryan Pereira
IPC分类号： G08B23/00 , G06F21/00 , G06F15/18
CPC分类号： G06F21/577 , G06F21/55
摘要： A method, system, computer program product, and/or computer readable medium of instructions for identifying a malicious entity in a processing system, comprising determining an entity threat value for an entity, the entity threat value being indicative of a level of threat that the entity represents to the processing system, wherein the entity threat value is determined based on one or more characteristics of the entity; and compare the entity threat value to an entity threat threshold to identify if the entity is malicious. In another form, there is provided a method, system, computer program product, and/or computer readable medium of instructions for identifying a malicious entity in a processing system, comprising determining one or more input values indicative of an entity; and performing a fuzzy logic analysis in relation to the one or more input values to identify if the entity is malicious.
摘要翻译：一种用于识别处理系统中的恶意实体的指令的方法，系统，计算机程序产品和/或计算机可读介质，包括确定实体的实体威胁值，所述实体威胁值指示威胁级别实体代表处理系统，其中实体威胁值基于实体的一个或多个特征来确定; 并将实体威胁值与实体威胁阈值进行比较，以确定实体是否是恶意的。在另一种形式中，提供了用于识别处理系统中的恶意实体的方法，系统，计算机程序产品和/或计算机可读介质，包括确定指示实体的一个或多个输入值; 并且相对于一个或多个输入值执行模糊逻辑分析以识别实体是否是恶意的。

2. 发明申请

US20070220043A1 Determination of related entities 有权
标题翻译：确定相关实体
公开(公告)号：US20070220043A1
公开(公告)日：2007-09-20
申请号：US11707425
申请日：2007-02-16
申请人： Ian Oliver , Ryan Pereira
发明人： Ian Oliver , Ryan Pereira
IPC分类号： G06F17/00
CPC分类号： G06F21/552 , G06F21/566 , G06F21/577 , G06F2221/2149 , H04L63/104
摘要： A method/system for determining a group of related entities of interest in one or more processing systems. The method comprises identifying a starting entity from one or more entities in the one or more processing systems, then obtaining, based on an entity type of the starting entity, a first set of rules for determining at least one other related entity, and then determining, using the first set of rules, the at least one related entity.
摘要翻译：一种用于确定一个或多个处理系统中感兴趣的一组相关实体的方法/系统。该方法包括从一个或多个处理系统中的一个或多个实体识别起始实体，然后基于起始实体的实体类型获得用于确定至少一个其他相关实体的第一组规则，然后确定使用第一组规则，至少一个相关实体。

3. 发明授权

US08141132B2 Determining an invalid request 有权
标题翻译：确定无效请求
公开(公告)号：US08141132B2
公开(公告)日：2012-03-20
申请号：US11504275
申请日：2006-08-15
申请人： Ian Oliver , Ryan Pereira
发明人： Ian Oliver , Ryan Pereira
IPC分类号： H04L29/06
CPC分类号： H04L63/1416 , G06F21/554 , G06F2221/2119
摘要： A method of determining an indication of an invalid request, the method including the steps of, in a processing system: receiving data at step 100, comparing at least a portion of the received data to predetermined criteria at step 110, determining an indication of an invalid request included in the data at step 120, and generating a notification in accordance with the determined invalid request at step 140.
摘要翻译：一种确定无效请求的指示的方法，所述方法包括以下步骤：在处理系统中：在步骤100接收数据，在步骤110将所接收的数据的至少一部分与预定标准相比较，确定一个包括在步骤120的数据中的无效请求，并且在步骤140根据确定的无效请求生成通知。

4. 发明授权

US07971257B2 Obtaining network origins of potential software threats 有权
标题翻译：获取潜在软件威胁的网络起源
公开(公告)号：US07971257B2
公开(公告)日：2011-06-28
申请号：US11830144
申请日：2007-07-30
申请人： Rolf Repasi , Ian Oliver , Ryan Pereira , Neil Younusov
发明人： Rolf Repasi , Ian Oliver , Ryan Pereira , Neil Younusov
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G06F11/30 , G06F9/44 , G06F9/445 , G08B23/00 , G06F15/16
CPC分类号： H04L67/06 , H04L67/18 , H04W4/02
摘要： A method/system/computer program for obtaining the network origin of a downloaded entity of interest (e.g. a threat or malicious software). The method includes recording the network locations of at least some files downloaded to a processing system and recording the physical locations of the at least some files stored in one or more storage devices of the processing system. Then, identifying an entity of interest in the processing system and searching the recorded network locations and the recorded physical locations for the network location and the physical location of the entity of interest. Then, if the network location and the physical location of the entity of interest is identified, transmitting the network location and the physical location of the entity of interest to a remote processing system.
摘要翻译：一种用于获得下载的感兴趣实体（例如，威胁或恶意软件）的网络源的方法/系统/计算机程序。该方法包括记录下载到处理系统的至少一些文件的网络位置，并且记录存储在处理系统的一个或多个存储设备中的至少一些文件的物理位置。然后，识别处理系统中感兴趣的实体，并搜索所记录的网络位置和记录的物理位置以用于所关心的实体的网络位置和物理位置。然后，如果识别出感兴趣的实体的网络位置和物理位置，将感兴趣的实体的网络位置和物理位置发送到远程处理系统。

5. 发明申请

US20080046970A1 Determining an invalid request 有权
标题翻译：确定无效请求
公开(公告)号：US20080046970A1
公开(公告)日：2008-02-21
申请号：US11504275
申请日：2006-08-15
申请人： Ian Oliver , Ryan Pereira
发明人： Ian Oliver , Ryan Pereira
IPC分类号： G06F21/20
CPC分类号： H04L63/1416 , G06F21/554 , G06F2221/2119
摘要： A method of determining an indication of an invalid request, the method including the steps of, in a processing system: receiving data at step 100, comparing at least a portion of the received data to predetermined criteria at step 110, determining an indication of an invalid request included in the data at step 120, and generating a notification in accordance with the determined invalid request at step 140.
摘要翻译：一种确定无效请求的指示的方法，所述方法包括以下步骤：在处理系统中：在步骤100接收数据，在步骤110将所接收的数据的至少一部分与预定标准相比较，确定一个包括在步骤120的数据中的无效请求，并且在步骤140根据确定的无效请求生成通知。

6. 发明申请

US20080034434A1 OBTAINING NETWORK ORIGINS OF POTENTIAL SOFTWARE THREATS 有权
标题翻译：获取潜在软件威胁的网络起源
公开(公告)号：US20080034434A1
公开(公告)日：2008-02-07
申请号：US11830144
申请日：2007-07-30
申请人： Rolf Repasi , Ian Oliver , Ryan Pereira , Neil Younusov
发明人： Rolf Repasi , Ian Oliver , Ryan Pereira , Neil Younusov
IPC分类号： G06F11/00
CPC分类号： H04L67/06 , H04L67/18 , H04W4/02
摘要： A method/system/computer program for obtaining the network origin of a downloaded entity of interest (e.g. a threat or malicious software). The method includes recording the network locations of at least some files downloaded to a processing system and recording the physical locations of the at least some files stored in one or more storage devices of the processing system. Then, identifying an entity of interest in the processing system and searching the recorded network locations and the recorded physical locations for the network location and the physical location of the entity of interest. Then, if the network location and the physical location of the entity of interest is identified, transmitting the network location and the physical location of the entity of interest to a remote processing system.
摘要翻译：一种用于获得下载的感兴趣实体（例如，威胁或恶意软件）的网络源的方法/系统/计算机程序。该方法包括记录下载到处理系统的至少一些文件的网络位置，并且记录存储在处理系统的一个或多个存储设备中的至少一些文件的物理位置。然后，识别处理系统中感兴趣的实体，并搜索所记录的网络位置和记录的物理位置以用于所关心的实体的网络位置和物理位置。然后，如果识别出感兴趣的实体的网络位置和物理位置，将感兴趣的实体的网络位置和物理位置发送到远程处理系统。

7. 发明授权

US08196201B2 Detecting malicious activity 有权
标题翻译：检测恶意活动
公开(公告)号：US08196201B2
公开(公告)日：2012-06-05
申请号：US11780113
申请日：2007-07-19
申请人： Rolf Repasi , Simon Clausen , Ian Oliver , Ryan Pereira
发明人： Rolf Repasi , Simon Clausen , Ian Oliver , Ryan Pereira
IPC分类号： G06F21/00
CPC分类号： G06F21/552 , G06F21/56
摘要： A method, system, computer program product and/or computer readable medium of instructions to detect malicious activity. The method comprises intercepting an activity in a processing system, wherein a requesting entity requests the activity to be performed in relation to a target entity; determining, using a filter module if the activity is suspicious or non-suspicious; and in response to determining that the activity is suspicious, analysing at least one of the activity, the requesting entity and the target entity using an analysis module to detect malicious activity. There is also disclosed a method, system, computer program product and/or computer readable medium of instructions to facilitate the detection of malicious activity.
摘要翻译：用于检测恶意活动的方法，系统，计算机程序产品和/或计算机可读介质。该方法包括拦截处理系统中的活动，其中请求实体请求相对于目标实体执行活动; 确定使用过滤器模块，如果活动是可疑的或不可疑的; 并且响应于确定所述活动是可疑的，使用分析模块来分析活动中的至少一个，请求实体和目标实体以检测恶意活动。还公开了一种方法，系统，计算机程序产品和/或计算机可读介质，以便于检测恶意活动。

8. 发明申请

US20080040804A1 MALICIOUS SOFTWARE DETECTION 有权
标题翻译：恶意软件检测
公开(公告)号：US20080040804A1
公开(公告)日：2008-02-14
申请号：US11835965
申请日：2007-08-08
申请人： Ian Oliver , Ryan Pereira
发明人： Ian Oliver , Ryan Pereira
IPC分类号： H04L9/00
CPC分类号： G06F21/564
摘要： A method, system, computer program product and/or a computer readable medium of instructions for detecting one or more entities which are able to reinfect a processing system with malicious software. The method includes: monitoring, in the processing system, activity indicative of the malicious software reinfecting the processing system; in response to detecting the activity, storing a record of the activity and one or more entities associated with the activity; determining if the malicious software has reinfected the processing system; and in response to determining that the malicious software has reinfected the processing system, analysing the record to detect the one or more entities which were associated with the activity that caused and/or assisted in reinfecting the processing system with the malicious software. There is also disclosed a method, system, computer program product and/or a computer readable medium of instructions for detecting a variant of malicious software in a processing system.
摘要翻译：一种方法，系统，计算机程序产品和/或用于检测能够用恶意软件重新加工处理系统的一个或多个实体的指令的计算机可读介质。该方法包括：在处理系统中监视指示恶意软件改变处理系统的活动; 响应于检测到所述活动，存储所述活动的记录和与所述活动相关联的一个或多个实体; 确定恶意软件是否重新处理了处理系统; 并且响应于确定所述恶意软件已经重新感染所述处理系统，分析所述记录以检测与所述活动相关联的一个或多个实体，所述活动引起和/或辅助利用所述恶意软件来重新构建所述处理系统。还公开了一种用于在处理系统中检测恶意软件的变体的方法，系统，计算机程序产品和/或计算机可读介质。

9. 发明授权

US07877806B2 Real time malicious software detection 有权
标题翻译：实时恶意软件检测
公开(公告)号：US07877806B2
公开(公告)日：2011-01-25
申请号：US11829608
申请日：2007-07-27
申请人： Rolf Repasi , Simon Clausen , Ian Oliver , Ryan Pereira
发明人： Rolf Repasi , Simon Clausen , Ian Oliver , Ryan Pereira
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00 , G06F11/30
CPC分类号： G06F21/577 , G06F21/554
摘要： A method, system, computer program product and/or computer readable medium of instructions for detecting malicious software, comprising intercepting a request to perform an activity in a processing system; determining an entity associated with the activity, wherein the entity comprises at least one of: a requesting entity of the activity; and a target entity of the activity; analysing the entity and the activity to determine if the request is associated with malicious software; and in the event that the request is determined to be associated with malicious software, restricting the request to perform the activity in the processing system.
摘要翻译：一种用于检测恶意软件的方法，系统，计算机程序产品和/或计算机可读介质，包括拦截在处理系统中执行活动的请求; 确定与所述活动相关联的实体，其中所述实体包括以下活动中的至少一个：活动的请求实体; 和活动的目标实体; 分析实体和活动以确定请求是否与恶意软件相关联; 并且在确定请求与恶意软件相关联的情况下，限制在处理系统中执行活动的请求。

10. 发明申请

US20080034404A1 METHOD AND SYSTEM FOR VALIDATING SITE DATA 有权
标题翻译：用于验证现场数据的方法和系统
公开(公告)号：US20080034404A1
公开(公告)日：2008-02-07
申请号：US11832922
申请日：2007-08-02
申请人： Ryan Pereira , Simon Clausen , Ian Oliver
发明人： Ryan Pereira , Simon Clausen , Ian Oliver
IPC分类号： H04L9/32
CPC分类号： H04L63/12
摘要： A method, and associated system and computer program product, of validating site data. The method includes the steps of, in a processing system 200, receiving 100 an indication of site data, performing a comparison 110 of the indication to site data criteria, and validating or invalidating 120 the indication based on a result of the comparison. The indication of site data could be at least part of a webpage, a link to a webpage, a Uniform Resource Locator, an IP address, at least part of an AJAX page, and/or at least part of a document.
摘要翻译：一种验证站点数据的方法和相关系统和计算机程序产品。该方法包括以下步骤：在处理系统200中，接收100站点数据的指示，执行对站点数据标准的指示的比较110，以及基于比较的结果来验证或使120指示无效120。站点数据的指示可以是网页的至少一部分，到网页的链接，统一资源定位符，IP地址，AJAX页面的至少一部分和/或文档的至少一部分。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式