专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

91. 发明授权

US09195805B1 Adaptive responses to trickle-type denial of service attacks 有权
标题翻译：对涓流型拒绝服务攻击的适应性响应
公开(公告)号：US09195805B1
公开(公告)日：2015-11-24
申请号：US13315175
申请日：2011-12-08
申请人： Eric Jason Brandwine
发明人： Eric Jason Brandwine
IPC分类号： G06F12/14 , G06F21/00 , G06F21/12
CPC分类号： H04L63/1458 , G06F21/00 , G06F21/121
摘要： Various approaches are provided that are able to mitigate the effects of potential trickle-type denial of service (DoS) attacks or similar occurrences. Connection values such as the maximum number of concurrent connections and the timeout values for new connections can be adjusted dynamically in response to changes in operational state and/or an amount of suspicious activity. The suspicious activity can include, for example, a low rate of packets or bytes per unit time, repetitive small headers, unrecognized headers, and other such information. In some embodiments the changes are made iteratively to minimize the effect of the changes on legitimate requests. After the level of suspicious activity decreases, the connection values can iteratively be readjusted hack to normal operational values, in order to minimize any remaining portion of the potential attack.
摘要翻译：提供了各种方法，能够减轻潜在的涓流型拒绝服务（DoS）攻击或类似事件的影响。响应于操作状态和/或可疑活动量的变化，可以动态地调整连接值，例如并发连接的最大数量和新连接的超时值。可疑活动可以包括例如每单位时间的低速率的分组或字节，重复的小报头，无法识别的报头以及其他这样的信息。在一些实施例中，迭代地进行改变以使更改对合法请求的影响最小化。在可疑活动级别减少之后，连接值可以迭代地重新调整到正常的操作值，以便最小化潜在攻击的任何剩余部分。

92. 发明授权

US09178701B2 Parameter based key derivation 有权
标题翻译：基于参数的密钥推导
公开(公告)号：US09178701B2
公开(公告)日：2015-11-03
申请号：US13248962
申请日：2011-09-29
申请人： Gregory B. Roth , Bradley Jeffery Behm , Eric D. Crahen , Cristian M. Ilac , Nathan R. Fitch , Eric Jason Brandwine , Kevin Ross O'Neill
发明人： Gregory B. Roth , Bradley Jeffery Behm , Eric D. Crahen , Cristian M. Ilac , Nathan R. Fitch , Eric Jason Brandwine , Kevin Ross O'Neill
IPC分类号： H04L9/32 , H04L9/08 , G06F21/31 , H04L29/06
CPC分类号： H04L9/0891 , G06F21/31 , G06F2221/2115 , H04L9/083 , H04L9/088 , H04L9/3247 , H04L63/08 , H04L2209/38 , H04L2463/061
摘要： Systems and methods for authentication generate keys from secret credentials shared between authenticating parties and authenticators. Generation of the keys may involve utilizing specialized information that, as a result of being used to generate the keys, renders the generated keys usable for a smaller scope of uses than the secret credential. Further, key generation may involve multiple invocations of a function where each of at least a subset of the invocations of the function results in a key that has a smaller scope of permissible use than a key produced from a previous invocation of the function. Generated keys may be used as signing keys to sign messages. One or more actions may be taken depending on whether a message and/or the manner in which the message was submitted complies with restrictions of the a key's use.
摘要翻译：用于认证的系统和方法从认证方和认证者之间共享的秘密凭证生成密钥。密钥的生成可以涉及利用专用信息，作为用于生成密钥的结果，使生成的密钥可用于比秘密凭证更小的使用范围。此外，密钥生成可以涉及函数的多次调用，其中函数的调用的至少一个子集中的每一个导致具有比从先前调用函数产生的密钥更小的允许使用范围的密钥。生成的密钥可以用作签名密钥来签名消息。取决于消息和/或提交消息的方式是否符合密钥使用的限制，可以采取一个或多个动作。

93. 发明授权

US09112841B1 Appliance backnets in dedicated resource environment 有权
标题翻译：专用资源环境中的设备后备网
公开(公告)号：US09112841B1
公开(公告)日：2015-08-18
申请号：US12885283
申请日：2010-09-17
申请人： Eric Jason Brandwine , Marvin M. Theimer , Don Johnson
发明人： Eric Jason Brandwine , Marvin M. Theimer , Don Johnson
IPC分类号： H04L29/06 , G06F15/177
CPC分类号： H04L41/5051 , H04L63/02 , H04L63/08 , H04L63/10 , H04L67/10 , H04L67/16
摘要： A backnet can be created within a dedicated private network of a customer that enables a distinct party to access and/or control a portion of the resources within the private network. In one example, a backnet includes a separate virtual interface for an appliance or other such resource that is not visible or accessible to the customer owning the customer cloud, but can be accessed by another appliance or component in the customer cloud, or an appliance vendor external to the customer cloud. While the customer can control the permission for the backnet, the vendor can control or implement the resources within the backnet in a way that is isolated from the customer. Usage of the backnet can be separately monitored and billed to the vendor, even though the resources are part of the dedicated customer cloud.
摘要翻译：可以在客户的专用专用网络内创建一个后端网，这使得一个不同的方可以访问和/或控制专用网络中的一部分资源。在一个示例中，后端网络包括用于设备或其他此类资源的单独的虚拟接口，该客户端拥有客户云的客户不可见或可访问，但可由客户云中的其他设备或组件或设备供应商在客户云外面。虽然客户可以控制backnet的权限，但是供应商可以以与客户隔离的方式来控制或实现后端网络中的资源。即使资源是专用客户云的一部分，后端网络的使用可以单独监控并向供应商支付。

94. 发明授权

US08954574B1 Best practice analysis, migration advisor 有权
标题翻译：最佳实践分析，迁移顾问
公开(公告)号：US08954574B1
公开(公告)日：2015-02-10
申请号：US13478960
申请日：2012-05-23
申请人： Mahendra M. Chheda , Shawn E. Heidel , Robert B. Jaye , Justin K. Brindley-Koonce , Eric Jason Brandwine
发明人： Mahendra M. Chheda , Shawn E. Heidel , Robert B. Jaye , Justin K. Brindley-Koonce , Eric Jason Brandwine
IPC分类号： G06F15/16 , G06Q20/42 , G06Q20/08
CPC分类号： H04L41/0826 , G06Q20/08 , G06Q20/085 , G06Q20/425 , H04L41/0806 , H04L41/0813 , H04L41/0816 , H04L41/0859 , H04L41/0886 , H04L41/18 , H04L41/20 , H04L47/70 , H04L67/02 , H04L67/1095 , H04L67/1097
摘要： Embodiments of the present disclosure are directed to, among other things, providing resource allocation advice, configuration recommendations, and/or migration advice regarding data storage, access, placement, and/or related web services. In some examples, a web service may utilize or otherwise control a client instance to control, access, or otherwise manage resources of a distributed system. Based at least in part on one or more resource usage checks and/or configuration checks, resource usage information and/or configuration information of an account utilizing a web service, and/or user preferences and/or settings, resource allocation advice, system configuration recommendations, and/or migration advice may be provided to a user of an account. Additionally, in some examples, one or more remediation operations may be performed automatically.
摘要翻译：本公开的实施例尤其涉及提供关于数据存储，访问，放置和/或相关web服务的资源分配建议，配置建议和/或迁移建议。在一些示例中，Web服务可以利用或以其他方式控制客户端实例来控制，访问或以其他方式管理分布式系统的资源。至少部分地基于一个或多个资源使用检查和/或配置检查，使用Web服务的帐户的资源使用信息和/或配置信息，和/或用户偏好和/或设置，资源分配建议，系统配置可以向帐户的用户提供建议和/或迁移建议。此外，在一些示例中，可以自动执行一个或多个修复操作。

95. 发明授权

US08931107B1 Techniques for generating block level data captures 有权
标题翻译：用于生成块级数据捕获的技术
公开(公告)号：US08931107B1
公开(公告)日：2015-01-06
申请号：US13221755
申请日：2011-08-30
申请人： Eric Jason Brandwine
发明人： Eric Jason Brandwine
IPC分类号： G06F17/30 , G06F7/04
CPC分类号： G06F11/1451 , G06F11/1461 , G06F11/3476 , G06F17/30 , G06F21/552 , G06F2201/82 , G06F2201/84 , G06F2201/855
摘要： Techniques, including systems and methods, take frequent captures of data sets for the purpose of forensic analysis. The data set captures are taken at the block level in various embodiments. Data set captures are used to instantiate forensic storage volumes that are attached to computing instances. The computing instances can access data in the forensic storage volumes at a state corresponding to a specified capture time. A user can select different capture times to re-instantiate the forensic storage volume to see how the forensic storage volume changed between captures.
摘要翻译：技术，包括系统和方法，经常捕获数据集，以进行法医分析。在各种实施例中，在块级别获取数据集捕获。数据集捕获用于实例化附加到计算实例的取证存储卷。计算实例可以在对应于指定捕获时间的状态下访问取证存储卷中的数据。用户可以选择不同的捕获时间来重新实例化法医存储卷，以查看取证之间取证存储卷的变化。

96. 发明授权

US08924982B2 Managing private use of program execution capacity 有权
标题翻译：管理私人使用程序执行能力
公开(公告)号：US08924982B2
公开(公告)日：2014-12-30
申请号：US12686273
申请日：2010-01-12
申请人： Eric Jason Brandwine , James Alfred Gordon Greenfield
发明人： Eric Jason Brandwine , James Alfred Gordon Greenfield
IPC分类号： G06F9/50
CPC分类号： G06F9/466 , G06F9/5072 , G06Q20/085
摘要： Techniques are described for managing execution of programs, including using excess program execution capacity of one or more computing systems. For example, a private pool of excess computing capacity may be maintained for a user based on unused dedicated program execution capacity allocated for that user, with the private pool of excess capacity being available for priority use by that user. Such private excess capacity pools may further in some embodiments be provided in addition to a general, non-private excess computing capacity pool that is available for use by multiple users, optionally including users who are associated with the private excess capacity pools. In some such situations, excess computing capacity may be made available to execute programs on a temporary basis, such that the programs executing using the excess capacity may be terminated at any time if other preferred use for the excess capacity arises.
摘要翻译：描述了用于管理程序的执行的技术，包括使用一个或多个计算系统的多余的程序执行能力。例如，可以基于为该用户分配的未使用的专用程序执行能力为用户维护过剩计算能力的专用池，其中超额容量的专用池可供该用户优先使用。在一些实施例中，还可以提供这样的私人额外容量池，除了可供多个用户使用的一般非私有额外计算能力池之外，可选地包括与私有额外容量池相关联的用户。在某些这种情况下，可以使临时计算能力可用于执行程序，使得如果出现超额容量的其他优选使用，则可以随时终止使用过剩容量执行的程序。

97. 发明授权

US08868766B1 Optimizing communication among collections of computing resources 有权
标题翻译：优化计算资源集合之间的通信
公开(公告)号：US08868766B1
公开(公告)日：2014-10-21
申请号：US13074982
申请日：2011-03-29
申请人： Marvin M. Theimer , Eric Jason Brandwine
发明人： Marvin M. Theimer , Eric Jason Brandwine
IPC分类号： G06F15/16
CPC分类号： H04L47/781 , G06F9/5061 , H04L67/32
摘要： Techniques for provisioning computing resources utilize colorings of collections of resources. The collections may be networks of resources hosted by a computing resource provider that are operated under the direction of one or more customers of the resource provider. Colors may be applied to the collections of resources, such as by a customer of the resource provider. The same customer or another customer may request that resources be provisioned according to at least one relationship with one or more collections of resources having one or more colors. Resources may then be provisioned according to the request.
摘要翻译：用于配置计算资源的技术利用资源集合的着色。集合可以是由资源提供者的一个或多个客户的指导下运行的由计算资源提供者托管的资源的网络。颜色可以应用于资源集合，例如资源提供者的客户。相同的客户或其他客户可以根据与具有一种或多种颜色的一个或多个资源集合的至少一个关系来请求提供资源。然后可以根据请求配置资源。

98. 发明授权

US08570861B1 Reputation-based networking 有权
标题翻译：基于声望的网络
公开(公告)号：US08570861B1
公开(公告)日：2013-10-29
申请号：US12825824
申请日：2010-06-29
申请人： Eric Jason Brandwine , Swaminathan Sivasubramanian , Bradley E. Marshall , Tate Andrew Certain
发明人： Eric Jason Brandwine , Swaminathan Sivasubramanian , Bradley E. Marshall , Tate Andrew Certain
IPC分类号： G01R31/08 , H04L12/28 , G06F15/16 , G06F15/173 , G06F7/04 , G06F11/00
CPC分类号： H04L45/70
摘要： When one actor or network within a broader system of networks is announcing numerous routes or otherwise performing “poorly,” the neighboring networks can suffer because of the strain that the poorly performing network puts on resources. Typically, in order to counteract the effects of a poorly performing neighboring network, a router may simply stop accepting changes or stop accepting packets from the poorly performing neighbor. Some network participants may only temporarily be acting poorly and straining its neighbors' resources, however. Therefore, in some of the embodiments, a reputation score or level for a network participant may be determined based on its actions over time. This reputation may be used to determine whether, when, and how to act on the network request from the participant.
摘要翻译：当一个更广泛的网络系统中的一个演员或网络宣布了许多路由或以其他方式执行“不好”的时候，由于性能不佳的网络承载资源的压力，邻近网络可能会遭受损失。通常，为了抵消性能差的相邻网络的影响，路由器可以简单地停止接受改变或停止接受来自性能差的邻居的分组。然而，一些网络参与者可能暂时表现不佳，并使其邻国资源紧张。因此，在一些实施例中，可以基于其随时间的动作来确定网络参与者的信誉评分或级别。这个声誉可能被用于确定是否，何时以及如何对来自参与者的网络请求采取行动。

99. 发明授权

US08472324B1 Managing route selection in a communication network 有权
标题翻译：在通信网络中管理路由选择
公开(公告)号：US08472324B1
公开(公告)日：2013-06-25
申请号：US12826477
申请日：2010-06-29
申请人： David R. Richardson , Alan M. Judge , Eric Jason Brandwine , Swaminathan Sivasubramanian , Bradley E. Marshall , Tate Andrew Certain
发明人： David R. Richardson , Alan M. Judge , Eric Jason Brandwine , Swaminathan Sivasubramanian , Bradley E. Marshall , Tate Andrew Certain
IPC分类号： H04L1/00
CPC分类号： H04L45/42 , H04L45/308 , H04L45/34 , H04L45/38
摘要： A system, method and computer-readable medium for the determination of a transit route by a computing system distinct from a router are provided. By pre-determining routes for content within a routing environment, routers on the network forward communications according to the pre-determined route. Specifically, by distributing at least some of the route calculations functionality and/or routing entries storage/maintenance from router components (e.g., edge routers), the processing and memory requirements of such router components within the routing environment can be reduced. In one aspect, the distribution of at least a portion of the routing calculation function and routing entry storage/maintenance within a routing environment facilitates the use of lower-capability, cheaper commodity-based routers.
摘要翻译：提供了一种用于通过不同于路由器的计算系统来确定传输路由的系统，方法和计算机可读介质。通过预先确定路由环境内的内容路由，网络上的路由器根据预先确定的路由转发通信。具体地，通过从路由器组件（例如，边缘路由器）分发至少一些路由计算功能和/或路由条目存储/维护，可以减少路由环境内的这种路由器组件的处理和存储器要求。在一个方面，在路由环境中路由计算功能和路由条目存储/维护的至少一部分的分布有利于使用较低性能，更廉价的基于商品的路由器。

100. 发明申请

US20130086663A1 KEY DERIVATION TECHNIQUES 有权
标题翻译：主要衍生技术
公开(公告)号：US20130086663A1
公开(公告)日：2013-04-04
申请号：US13248973
申请日：2011-09-29
申请人： Gregory B. Roth , Bradley Jeffery Behm , Eric D. Crahen , Cristian M. Ilac , Nathan R. Fitch , Eric Jason Brandwine , Kevin Ross O'Neill
发明人： Gregory B. Roth , Bradley Jeffery Behm , Eric D. Crahen , Cristian M. Ilac , Nathan R. Fitch , Eric Jason Brandwine , Kevin Ross O'Neill
IPC分类号： H04L9/32 , G06F21/00
CPC分类号： H04L9/083 , G06F21/31 , G06F2221/2115 , H04L9/0861 , H04L9/088 , H04L9/3242 , H04L9/3247 , H04L63/0884 , H04L63/126 , H04L2209/38
摘要： Systems and methods for authentication generate keys from secret credentials shared between authenticating parties and authenticators. Generation of the keys may involve utilizing specialized information that, as a result of being used to generate the keys, renders the generated keys usable for a smaller scope of uses than the secret credential. Further, key generation may involve multiple invocations of a function where each of at least a subset of the invocations of the function results in a key that has a smaller scope of permissible use than a key produced from a previous invocation of the function. Generated keys may be used as signing keys to sign messages. One or more actions may be taken depending on whether a message and/or the manner in which the message was submitted complies with restrictions of the a key's use.
摘要翻译：用于认证的系统和方法从认证方和认证者之间共享的秘密凭证生成密钥。密钥的生成可以涉及利用专用信息，作为用于生成密钥的结果，使生成的密钥可用于比秘密凭证更小的使用范围。此外，密钥生成可以涉及函数的多次调用，其中函数的调用的至少一个子集中的每一个导致具有比从先前调用函数产生的密钥更小的允许使用范围的密钥。生成的密钥可以用作签名密钥来签名消息。取决于消息和/或提交消息的方式是否符合密钥使用的限制，可以采取一个或多个动作。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式