专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08805956B1 Data leakage prevention in cloud-endpoint model 有权
标题翻译：云端点模型中的数据泄漏预防
公开(公告)号：US08805956B1
公开(公告)日：2014-08-12
申请号：US13246603
申请日：2011-09-27
申请人： Shun-Fa Yang , Chung-Tsai Su , Geng Hwang Twu , Haoping Liu
发明人： Shun-Fa Yang , Chung-Tsai Su , Geng Hwang Twu , Haoping Liu
IPC分类号： G06F15/16
CPC分类号： G06F21/10 , G06F2221/2111 , H04N21/23113 , H04N21/25841 , H04N21/2743 , H04W12/08
摘要： A data access policy is configured and stored on a computing device, including a list of secure gateway IP addresses and optionally secure geographic regions. A time parameter defines how long a digital file will remain not in use before deletion and a degree parameter defines how fast the file will be deleted. Once a digital file is downloaded to the computing device the device is checked periodically to determine whether or not it is in a secure location. If not in a secure location then a data deletion process is initiated which begins by checking whether or not the digital file is currently being used on the computing device. If the file is being used, then no deletion is performed. If the file is not in use (or has not been used after a certain amount of time) then the file is deleted. The file may be deleted gradually.
摘要翻译：数据访问策略被配置并存储在计算设备上，包括安全网关IP地址列表和可选地安全的地理区域。时间参数定义数字文件在删除之前保持不被使用的时间，并且度数参数定义文件将被删除的速度。一旦将数字文件下载到计算设备，定期检查设备以确定其是否处于安全位置。如果不在安全位置，则启动数据删除处理，首先检查数字文件当前是否在计算设备上被使用。如果正在使用该文件，则不执行删除。如果文件没有被使用（或者在一段时间后没有被使用），那么文件被删除。该文件可能会逐渐删除。

2. 发明授权

US08966632B1 In-the-cloud sandbox for inspecting mobile applications for malicious content 有权
标题翻译：用于检查移动应用程序的恶意内容的云端沙箱
公开(公告)号：US08966632B1
公开(公告)日：2015-02-24
申请号：US13399179
申请日：2012-02-17
申请人： Huaide Huang , Shun-Fa Yang , Chung-Tsai Su , Geng Hwang Twu , Haoping Liu
发明人： Huaide Huang , Shun-Fa Yang , Chung-Tsai Su , Geng Hwang Twu , Haoping Liu
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G06F21/53
CPC分类号： G06F21/53 , G06F21/566
摘要： A low resource mobile device, such as a smart phone or a tablet running a mobile operating system, requests a cloud computer system to inspect a mobile application for malicious content. The cloud computer system downloads the mobile application from a mobile application source, and installs the mobile application in a virtual machine sandbox. The cloud computer system inspects the mobile application for malicious content while the mobile application executes in the virtual machines sandbox. The result of the inspection is sent to the user in accordance with a setting that may be indicated in a cloud sandbox agent running on the mobile device.
摘要翻译：诸如智能电话或运行移动操作系统的平板电脑的低资源移动设备请求云计算机系统检查移动应用程序的恶意内容。云计算机系统从移动应用程序源下载移动应用程序，并将移动应用程序安装在虚拟机沙箱中。云计算机系统在移动应用程序在虚拟机沙箱中执行时检查移动应用程序的恶意内容。根据可以在移动设备上运行的云沙箱代理中指示的设置将检查结果发送给用户。

3. 发明授权

US09092306B1 Lightweight data leakage detection for mobile computing devices 有权
标题翻译：移动计算设备的轻量级数据泄露检测
公开(公告)号：US09092306B1
公开(公告)日：2015-07-28
申请号：US13457966
申请日：2012-04-27
申请人： Chung-Tsai Su , Huaide Huang , Shun-Fa Yang , Geng-Hwang Twu , Haoping Liu
发明人： Chung-Tsai Su , Huaide Huang , Shun-Fa Yang , Geng-Hwang Twu , Haoping Liu
IPC分类号： H01L29/00 , G06F11/00
CPC分类号： G06F11/00 , G06F11/3003 , G06F11/3086 , G06F11/3096 , G06F21/56 , G06F2201/865 , G06F2221/2127 , H04W12/10 , H04W12/12
摘要： Trap data is stored in a mobile computing device. A lightweight engine monitors outgoing communications in the mobile computing device for the trap data. Data leakage is deemed to have been detected in the mobile computing device when an outgoing communication includes the trap data. A cloud service hosted by a backend system may also be monitoring for the trap data. In the case where the trap data is a trap e-mail address, the cloud service may monitor for an e-mail that is addressed to the trap e-mail address. In response to receiving the e-mail, the cloud service may consult a database to determine that the trap e-mail address is stored in the mobile computing device. Receiving the e-mail indicates that data leakage is occurring in the mobile computing device.
摘要翻译：陷阱数据存储在移动计算设备中。轻量级引擎监视移动计算设备中的陷阱数据的传出通信。当输出通信包括陷阱数据时，数据泄漏被认为已经在移动计算设备中被检测到。由后端系统托管的云服务也可以监视陷阱数据。在陷阱数据是陷阱电子邮件地址的情况下，云服务可以监视寻址到陷阱电子邮件地址的电子邮件。响应于接收到电子邮件，云服务可以咨询数据库以确定陷阱电子邮件地址存储在移动计算设备中。接收电子邮件表示在移动计算设备中发生数据泄漏。

4. 发明授权

US08677495B1 Dynamic trap for detecting malicious applications in computing devices 有权
标题翻译：用于检测计算设备中的恶意应用程序的动态陷阱
公开(公告)号：US08677495B1
公开(公告)日：2014-03-18
申请号：US13479600
申请日：2012-05-24
申请人： Shun-Fa Yang , Chung-Tsai Su
发明人： Shun-Fa Yang , Chung-Tsai Su
IPC分类号： G06F21/00
CPC分类号： G06F21/577 , G06F21/552
摘要： A trap is dynamically created in a computing device to detect a malicious application. The trap may be a fake e-mail address created in response to detecting running of an application in the computing device. The fake e-mail address includes a local-part that identifies the application and identifies the mobile computing device (e.g., by user identifier). A backend system receives e-mails that are addressed to fake e-mail addresses. The backend system parses a recipient address of a received e-mail to identify an application associated with the e-mail and the computing device where the fake e-mail address was generated. The backend system informs a user of the computing device of a data leakage occurring in the computing device and the application that may be responsible for the data leakage.
摘要翻译：在计算设备中动态创建陷阱以检测恶意应用程序。陷阱可以是响应于检测计算设备中的应用的运行而创建的假电子邮件地址。假电子邮件地址包括识别应用并识别移动计算设备的本地部分（例如，通过用户标识符）。后端系统接收的电子邮件被发送到假的电子邮件地址。后端系统解析收到的电子邮件的收件人地址，以识别与电子邮件相关联的应用程序和生成假电子邮件地址的计算设备。后端系统向用户通知计算设备发生的数据泄漏和可能负责数据泄漏的应用程序。

5. 发明授权

US08424091B1 Automatic local detection of computer security threats 有权
标题翻译：自动本地检测计算机安全威胁
公开(公告)号：US08424091B1
公开(公告)日：2013-04-16
申请号：US12686238
申请日：2010-01-12
申请人： Chung-Tsai Su , Wen-Kwang Tsao , Chung-Chi Wu , Ming-Tai Chang , Yun-Chian Cheng
发明人： Chung-Tsai Su , Wen-Kwang Tsao , Chung-Chi Wu , Ming-Tai Chang , Yun-Chian Cheng
IPC分类号： G06F21/00
CPC分类号： H04L51/12 , G06F21/55 , H04L63/145
摘要： A system for locally detecting computer security threats in a computer network includes a processing engine, a fingerprint engine, and a detection engine. Data samples are received in the computer network and grouped by the processing engine into clusters. Clusters that do not have high false alarm rates are passed to the fingerprint engine, which generates fingerprints for the clusters. The detection engine scans incoming data for computer security threats using the fingerprints.
摘要翻译：用于本地检测计算机网络中的计算机安全威胁的系统包括处理引擎，指纹引擎和检测引擎。数据样本在计算机网络中接收并由处理引擎分组成簇。没有高错误警报率的群集将传递给指纹引擎，指纹引擎会为群集生成指纹。检测引擎使用指纹扫描传入数据以获取计算机安全威胁。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式