专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09264448B2 Apparatus, and an associated method, for facilitating secure operations of a wireless device 有权
标题翻译：装置和相关方法，用于促进无线装置的安全操作
公开(公告)号：US09264448B2
公开(公告)日：2016-02-16
申请号：US12828668
申请日：2010-07-01
申请人： Daniel Jonas Major , Oliver Whitehouse , Neil Patrick Adams , Christopher Lyle Bender , Van Quy Tu
发明人： Daniel Jonas Major , Oliver Whitehouse , Neil Patrick Adams , Christopher Lyle Bender , Van Quy Tu
IPC分类号： G06F21/22 , H04L29/06 , H04W12/08
CPC分类号： H04L63/20 , H04W12/08
摘要： An apparatus, and an associated method, facilitates security at a wireless device, such as a wireless device comprising a mobile computing platform. A security decision engine is provided that monitors for an event necessitating a security decision. When a security decision is required, request is made of a knowledge fetcher, provided by a trusted third-party, installed at the wireless device for the security decision. The knowledge fetcher obtains the security decision, such as by obtaining the security decision from a remote, trusted third-party server, and provides the security decision to the decision engine. Use is made of the security decision pursuant to a setting for which the security decision is needed.
摘要翻译：一种装置和相关联的方法有助于诸如包括移动计算平台的无线设备之类的无线设备的安全性。提供了一种安全决策引擎，用于监视需要进行安全决策的事件。当需要安全决定时，请求安装在无线设备处的安全决定的由可信赖的第三方提供的知识提取器。知识获取器获得安全决策，例如通过从远程可信第三方服务器获得安全决策，并向决策引擎提供安全决策。根据需要进行安全决策的设置，使用安全决定。

2. 发明授权

US09088508B1 Incremental application of resources to network traffic flows based on heuristics and business policies 有权
标题翻译：基于启发式和业务策略，将资源增量应用于网络流量
公开(公告)号：US09088508B1
公开(公告)日：2015-07-21
申请号：US14251049
申请日：2014-04-11
申请人： Level 3 Communications, LLC
发明人： Pete Joseph Caputo, II , William Thomas Sella
IPC分类号： H04L12/26 , H04L12/56 , H04L1/00 , G06F11/00 , G06F11/07 , G06F12/14 , G06F21/22 , H04L12/851
CPC分类号： H04L47/20 , H04L41/0893 , H04L43/026 , H04L43/028 , H04L43/18 , H04L45/22 , H04L45/30 , H04L47/10 , H04L47/24 , H04L47/2441 , H04L63/0236 , H04L63/1416 , H04L63/1425 , H04L69/22
摘要： Disclosed herein are system, method, and computer program product embodiments for increasingly applying network resources to traffic flows based on heuristics and policy conditions. A network determines that a traffic flow satisfies a first condition and transmits a first portion of the traffic flow to a network service. A network service then inspects the first portion of the traffic flow at a first level of detail and determines that the traffic flow satisfies a second condition. The network can then transmit a second portion of the traffic flow to the network service based on the determining the traffic flow satisfies the second condition. The network service can inspect the second portion of the traffic flow at a second level of detail, wherein the inspecting at the second level of detail requires a different amount of computing resources than the inspecting at the first level of detail.
摘要翻译：这里公开了系统，方法和计算机程序产品实施例，用于基于启发式和策略条件来越来越多地将网络资源应用于业务流。网络确定业务流满足第一条件并将业务流的第一部分发送到网络服务。网络服务然后以第一级细节检查交通流的第一部分，并确定业务流满足第二条件。然后，网络可以基于确定业务流满足第二条件，将业务流的第二部分传送到网络服务。网络服务可以以第二级细节检查业务流的第二部分，其中在第二级细节上的检查需要与在第一级细节上的检查不同的计算资源量。

3. 发明授权

US08856500B2 Obfuscating program by scattering sequential instructions into memory regions such that jumps occur with steps of both signs in equal frequency 有权
标题翻译：通过将顺序指令散布到存储器区域中使得混合程序发生错误，从而以相同频率的两个符号的步骤发生跳转
公开(公告)号：US08856500B2
公开(公告)日：2014-10-07
申请号：US12866394
申请日：2009-02-02
申请人： Marc Vauclair , Pieter J. Janssens
发明人： Marc Vauclair , Pieter J. Janssens
IPC分类号： G06F9/32 , G06F21/22 , G06F21/14
CPC分类号： G06F9/32 , G06F9/322 , G06F21/14
摘要： A program is obfuscated by reordering its instructions. Original instruction addresses are mapped to target addresses in an irregular way, with position dependent address steps between the addresses of logically successive instructions. Preferably pseudo-random address steps are used, for example with address steps that have mutually opposite sign with equal frequency. The data processing device has an instruction flow control unit that updates instruction addresses according the position dependent address steps. The instruction flow control unit may comprise a circuit that contains secret information, which is not normally accessible from the outside, to control the updates. A lookup table may be used for example, with address steps, successor addresses or mapped address values. In an embodiment the mapping of original instruction addresses to target addresses may be visualized by means of a path (36) along points in an n-dimensional array, where n is greater than one. Successive original instruction addresses are mapped to successive locations in the path, and locations along respective rows of the array are mapped to respective mutually disjoint ranges (33a-d). Because an n-dimensional path is used a form of locality is preserved that provides for cache efficiency, whereas the multi-dimensional nature of the path makes it possible to combine this locality with pseudo-random steps.
摘要翻译：程序通过重新排序其指令而进行混淆。原始指令地址以不规则的方式映射到目标地址，位置相关地址在逻辑连续指令的地址之间。优选地，使用伪随机寻址步骤，例如具有具有相同频率的相互相反符号的寻址步骤。数据处理装置具有指令流控制单元，其根据位置依赖地址步骤更新指令地址。指令流控制单元可以包括一个电路，其包含通常不能从外部访问的秘密信息来控制更新。可以使用查找表，例如地址步骤，后继地址或映射地址值。在一个实施例中，原始指令地址到目标地址的映射可以通过沿着n维阵列中的点的路径（36）可视化，其中n大于1。连续的原始指令地址被映射到路径中的连续位置，并且沿着阵列的相应行的位置被映射到相应的相互不相交的范围（33a-d）。因为使用n维路径，保留了提供缓存效率的局部性形式，而路径的多维特性使得可以将该位置与伪随机步骤组合。

4. 发明授权

US08826033B1 Data protection using virtual-machine-specific stable system values 有权
标题翻译：使用虚拟机特定的稳定系统值进行数据保护
公开(公告)号：US08826033B1
公开(公告)日：2014-09-02
申请号：US12644195
申请日：2009-12-22
申请人： Ajay Venkateshan Krishnaprasad , Parasuraman Narasimhan , Robert Polansky , Magnus Nyström
发明人： Ajay Venkateshan Krishnaprasad , Parasuraman Narasimhan , Robert Polansky , Magnus Nyström
IPC分类号： G06F21/22
CPC分类号： G06F21/53 , G06F21/554
摘要： A virtual machine on a physical host computer provides controlled access to protected data by creating and storing a “stored system fingerprint” from stable system values (SSVs) as existing when creating the stored system fingerprint. The SSVs include virtual-machine-specific values that change upon cloning the virtual machine (VM) but do not change upon migration of the VM. Upon a request for access to the protected data, a current system fingerprint is calculated from the SSVs as existing when processing the request, the current system fingerprint is compared to the stored system fingerprint to determine whether there is a predetermined degree of matching, and the requested access to the protected data is permitted only if there is the predetermined degree of matching.
摘要翻译：物理主机上的虚拟机通过在创建存储的系统指纹时，从存在的稳定系统值（SSV）中创建并存储“存储的系统指纹”来提供受保护数据的受控访问。 SSV包括在克隆虚拟机（VM）时进行更改但在迁移VM时不会更改的虚拟机特定值。在请求访问受保护的数据时，当处理请求时，从存在的SSV计算当前系统指纹，将当前系统指纹与存储的系统指纹进行比较，以确定是否存在预定的匹配度，并且仅当存在预定匹配度时才允许对受保护数据的访问。

5. 发明授权

US08788829B2 System and method for interapplication communications 有权
标题翻译：系统和方法进行应用间通信
公开(公告)号：US08788829B2
公开(公告)日：2014-07-22
申请号：US11465183
申请日：2006-08-17
申请人： Terry N. Hayes
发明人： Terry N. Hayes
IPC分类号： G06F21/22
CPC分类号： H04L9/3271 , G06F9/54 , G06F21/105 , G06F21/33 , G06F21/445 , G06F2221/0773 , G06Q10/107 , H04L9/3247 , H04L9/3268
摘要： A first executable program on a computer system is enabled to exchange communications with a second executable program on the computer system by determining that the first executable program requests to exchange information with the second executable program, using the second executable program to challenge the first executable program for a digital certificate, and using the second executable program to exchange information with the first executable program when the digital certificate is verified.
摘要翻译：计算机系统上的第一可执行程序能够通过确定第一可执行程序请求与第二可执行程序交换信息，使用第二可执行程序来挑战第一可执行程序来与计算机系统上的第二可执行程序交换通信并且当数字证书被验证时，使用第二可执行程序与第一可执行程序交换信息。

6. 发明授权

US08769312B2 Tampering monitoring system, protection control module, and detection module 有权
标题翻译：篡改监控系统，保护控制模块和检测模块
公开(公告)号：US08769312B2
公开(公告)日：2014-07-01
申请号：US13513664
申请日：2011-10-19
申请人： Yuji Unagami , Yuichi Futa , Natsume Matsuzaki , Hiroki Shizuya , Eisuke Koizumi , Shingo Hasegawa
发明人： Yuji Unagami , Yuichi Futa , Natsume Matsuzaki , Hiroki Shizuya , Eisuke Koizumi , Shingo Hasegawa
IPC分类号： G06F21/22 , G06F21/55 , H04L9/08 , H04L9/32
CPC分类号： G06F21/55 , G06F21/51 , G06F21/554 , G06F21/575 , H04L9/085 , H04L9/3236 , H04L9/3247
摘要： Tampering monitoring system can detect whether protection control module is tampered with even if some of detection modules are tampered with. Tampering monitoring system includes protection control module detection modules, and management device. Protection control module includes: generation unit generating d pieces of distribution data from computer program, n and d being positive integers, d smaller than n; selection unit selecting d detection modules; and distribution unit distributing d pieces of distribution data to d detection modules. Each detection module judges whether received piece of distribution data is authentic to detect whether protection control module is tampered with, and transmits judgment result indicating whether protection control module is tampered with. Management device receives judgment results from d detection modules and manages protection control module with regard to tampering by using received judgment results.
摘要翻译：篡改监控系统可以检测保护控制模块是否被篡改，即使某些检测模块被篡改。篡改监控系统包括保护控制模块检测模块和管理设备。保护控制模块包括：生成单元，从计算机程序生成d个分布数据，n和d为正整数，d小于n; 选择单元选择d个检测模块; 分配单元将d个分发数据分配给d个检测模块。每个检测模块判断接收的分发数据是否可信，以检测保护控制模块是否被篡改，并发送指示保护控制模块是否被篡改的判断结果。管理设备从d检测模块接收判断结果，并通过使用收到的判断结果管理篡改的保护控制模块。

7. 发明申请

US20140047524A1 CODE-BASED AUTHORIZATION OF MOBILE DEVICE 有权
标题翻译：移动设备的基于代码的授权
公开(公告)号：US20140047524A1
公开(公告)日：2014-02-13
申请号：US13570855
申请日：2012-08-09
申请人： Jeremy AUGER
发明人： Jeremy AUGER
IPC分类号： G06F21/22 , G06F7/04 , G06F21/00
CPC分类号： H04W12/06 , G06F21/36 , G06K5/00 , G06K7/1417 , H04L63/08 , H04L63/0853 , H04L67/02
摘要： A system and method for authenticating mobile communications devices. The method comprises: generating a code corresponding to a user configured to be rendered on a rendering device to produce a rendered code, the rendered code being readable by a mobile communications device having a code reading device, the rendered code comprising a secret token; storing the secret token along with information identifying the user on a first storage device; providing the code to the user; receiving, at the authentication server, a setup message from the mobile device, the message includes a device identifier and the secret token; comparing the received secret token and the secret token stored on the first storage device; if the received secret token matches the secret token stored on the first storage device, storing, on a second storage device, information identifying the user and a trusted device value corresponding to the device identifier.
摘要翻译：一种用于认证移动通信设备的系统和方法。该方法包括：生成与被配置为在呈现设备上渲染的用户相对应的代码以产生呈现的代码，所呈现的代码由具有代码读取设备的移动通信设备可读，所呈现的代码包括秘密令牌; 将所述秘密令牌连同标识所述用户的信息一起存储在第一存储设备上; 向用户提供代码; 在所述认证服务器处接收来自所述移动设备的建立消息，所述消息包括设备标识符和所述秘密令牌; 比较接收到的秘密令牌和存储在第一存储设备上的秘密令牌; 如果接收到的秘密令牌与存储在第一存储设备上的秘密令牌相匹配，则在第二存储设备上存储标识用户的信息和与设备标识符对应的可信设备值。

8. 发明授权

US08640242B2 Preventing and detecting print-provider startup malware 有权
标题翻译：防止和检测打印提供商启动恶意软件
公开(公告)号：US08640242B2
公开(公告)日：2014-01-28
申请号：US13309225
申请日：2011-12-01
申请人： Girish R. Kulkarni , Nandi Dharma Kishore , Pradeep Govindaraju
发明人： Girish R. Kulkarni , Nandi Dharma Kishore , Pradeep Govindaraju
IPC分类号： G06F21/22 , G06F9/00
CPC分类号： G06F21/554 , G06F21/56 , G06F21/84
摘要： A method for preventing malware attacks includes detecting an attempt on an electronic device to modify a print service registry, determining an entity associated with the attempt to modify the print service registry, determining a malware status of the entity, and, based on the malware status of the entity, allowing or denying the modification to the print service registry. The print service registry is configured to store configuration information about mechanisms to be used when printing from the electronic device.
摘要翻译：一种用于防止恶意软件攻击的方法包括检测电子设备上的尝试以修改打印服务注册表，确定与尝试修改打印服务注册表相关联的实体，确定实体的恶意软件状态，以及基于恶意软件状态的实体，允许或拒绝修改打印服务注册表。打印服务注册表被配置为存储关于从电子设备打印时要使用的机构的配置信息。

9. 发明授权

US08549275B2 Method and apparatus for secure execution using a secure memory partition 有权
标题翻译：使用安全存储器分区进行安全执行的方法和装置
公开(公告)号：US08549275B2
公开(公告)日：2013-10-01
申请号：US12911640
申请日：2010-10-25
申请人： Millind Mittal
发明人： Millind Mittal
IPC分类号： H04L29/02 , G06F21/22
CPC分类号： G06F21/72 , G06F12/1408 , G06F12/1441 , G06F12/1491 , G06F21/60 , G06F21/602 , G06F21/78 , G06F2221/2107 , G06F2221/2125
摘要： A processor capable of secure execution. The processor contains an execution unit and secure partition logic that secures a partition in memory. The processor also contains cryptographic logic coupled to the execution unit that encrypts and decrypts secure data and code.
摘要翻译：能够安全执行的处理器。该处理器包含一个执行单元和安全的分区逻辑，将分区保存在内存中。处理器还包含耦合到执行单元的加密逻辑，其加密和解密安全数据和代码。

10. 发明申请

US20130254874A1 METHOD FOR PREVENTING INFORMATION DISPLAYED ON SCREEN FROM BEING VIEWED WITHOUT AUTHORIZATION AND DISPLAY DEVICE HAVING ANTI-VIEWING FUNCTION 审中-公开
标题翻译：防止在没有授权的情况下显示在屏幕上的信息的方法和具有反视图功能的显示设备
公开(公告)号：US20130254874A1
公开(公告)日：2013-09-26
申请号：US13528034
申请日：2012-06-20
申请人： ZHONG-LIN XU
发明人： ZHONG-LIN XU
IPC分类号： G06F21/22 , G06K9/62
CPC分类号： G06F21/32 , G06F21/6209 , G06F21/84 , G06F2221/2139
摘要： A computerized method prevents information displayed on a screen of a display device from being viewed by unauthorized persons. Images in front of the screen are captured at regular intervals using an image capturing device of the display device. Faces are recognized from each of the captured images using facial recognition technologies. Whether or not the screen is in a state of being viewed by one or more unauthorized persons is determined according to the faces recognized as such in each of the captured images. A predetermined anti-viewing display is displayed on the screen to prevent the information being displayed on the screen from being viewed by any unauthorized person, when the screen is determined to be in the state of being viewed by any unauthorized person.
摘要翻译：计算机化方法防止未经授权的人员查看显示装置的屏幕上显示的信息。使用显示装置的图像捕获装置，以规则的间隔捕获屏幕前方的图像。使用面部识别技术从每个拍摄的图像识别脸部。根据在每个拍摄图像中被识别的面部来确定屏幕是否处于被一个或多个未授权人员观看的状态。当屏幕被确定为处于被任何未经授权的人被观看的状态时，屏幕上显示预定的反向观看显示器，以防止任何未经授权的人在屏幕上显示信息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式