专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明授权

US08752032B2 System and method of interlocking to protect software-mediated program and device behaviours 有权
标题翻译：联锁系统和方法，以保护软件介导的程序和设备行为
公开(公告)号：US08752032B2
公开(公告)日：2014-06-10
申请号：US11709654
申请日：2007-02-23
申请人： Harold Joseph Johnson , Yuan Xiang Gu , Yongxin Zhou
发明人： Harold Joseph Johnson , Yuan Xiang Gu , Yongxin Zhou
IPC分类号： G06F9/45 , G06F12/14
CPC分类号： G06F21/14 , G06F21/10 , G06F21/12 , G06F21/55 , G06F2221/0748 , H04L9/002 , H04L2209/04 , H04L2209/046 , H04L2209/16 , H04L2209/20
摘要： Methods and devices for thwarting code and control flow based attacks on software. The source code of a subject piece of software is automatically divided into basic blocks of logic. Selected basic blocks are amended so that their outputs are extended. Similarly, other basic blocks are amended such that their inputs are correspondingly extended. The amendments increase or create dependencies between basic blocks such that tampering with one basic block's code causes other basic blocks to malfunction when executed.
摘要翻译：阻止代码和控制流攻击软件的方法和设备。主题软件的源代码自动分为基本的逻辑块。修改所选的基本块，使其输出扩展。类似地，修改其他基本块，使得它们的输入相应地被扩展。这些修改增加或创建基本块之间的依赖关系，以便篡改一个基本块的代码导致其他基本块在执行时发生故障。

12. 发明授权

US5748741A Encoding technique for software and hardware 失效
公开(公告)号：US5748741A
公开(公告)日：1998-05-05
申请号：US611968
申请日：1996-03-07
申请人： Harold Joseph Johnson , Yuan Xiang Gu , Becky Laiping Chan , Stanley Taihai Chow
发明人： Harold Joseph Johnson , Yuan Xiang Gu , Becky Laiping Chan , Stanley Taihai Chow
IPC分类号： G06F21/22 , G06F1/00 , G06F11/10 , G06F21/00 , G09C5/00 , H04L9/00
CPC分类号： G06F21/14 , G06F11/10
摘要： An encoding technique of the invention protects software programs and hardware designs from being copied, tampered with, and its functions from being exposed. The software programs and hardware designs (collectively called programs) thus encoded still remain executable. The encoding technique employs the concept of complexity of programs and produces proximity inversion in terms of functions contained in the programs, while preserving the behaviors. Various embodiments are possible to achieve this encoding which includes, for example, cascading and intertwining of blocks of the programs.

13. 发明授权

US10318271B2 Updating software components in a program 有权
公开(公告)号：US10318271B2
公开(公告)日：2019-06-11
申请号：US15426090
申请日：2017-02-07
申请人： Clifford Liem , Hongrui Dong , Sam Martin , Yuan Xiang Gu , Michael Wiener
发明人： Clifford Liem , Hongrui Dong , Sam Martin , Yuan Xiang Gu , Michael Wiener
IPC分类号： G06F8/65 , G06F21/57 , G06F8/656 , G06F9/445
摘要： A method and system for renewing software at the component-level is provided. A client program includes a base component for loading a software component into at least one loadable region of the program to update the program. Code in the software component is for writing state data associating the state of the update in storage, upon execution of the software component, and testing the state data to verify condition of the updated program and disallowing rollback and roll-forward attacks, the state data comprising hash chain values. The state data for verifying the correctness of the updated program is entangled with application data used for the program functionality. A server includes: an update pool having a plurality of software updates deployed in each client, and a policy control for monitoring and controlling at least one of: the length of time the client runs until the software update is invoked, a chain of the updates; and the granularity of the update.

14. 发明授权

US09141787B2 Interlocked binary protection using whitebox cryptography 有权
标题翻译：使用白盒加密的联锁二进制保护
公开(公告)号：US09141787B2
公开(公告)日：2015-09-22
申请号：US13319561
申请日：2010-05-06
申请人： Yuan Xiang Gu , Paul McRae , Bogdan Nicolescu , Valery Levitsky , Xijian Zhu , Hongrui Dong , Daniel Elie Murdock
发明人： Yuan Xiang Gu , Paul McRae , Bogdan Nicolescu , Valery Levitsky , Xijian Zhu , Hongrui Dong , Daniel Elie Murdock
IPC分类号： G06F5/00 , G06F21/54 , G06F21/14
CPC分类号： G06F21/54 , G06F21/14 , H04L9/002 , H04L2209/16 , H04L2209/603
摘要： A system and method for transforming a software application comprising binary code and optionally associated data, from an original form to a more secure form. The method includes performing a combination of binary transmutations to the application, and interlocking the transmutations by generating and placing interdependencies between the transmutations, wherein a transmutation is an irreversible change to the application. Different types of the transmutations are applied at varied granularities of the application. The transmutations are applied to the application code and the implanted code as well. The result is a transformed software application which is semantically equivalent to the original software application but is resistant to static and/or dynamic attacks.
摘要翻译：一种用于将包括二进制代码和可选地关联的数据的软件应用程序从原始形式转换为更安全的形式的系统和方法。该方法包括对应用执行二进制变换的组合，以及通过生成和放置变换之间的相互依赖性来互锁变换，其中变换是对应用的不可逆变化。在应用的不同粒度下应用不同类型的变化。这些变化也应用于应用代码和植入代码。结果是转换的软件应用程序在语义上等同于原始软件应用程序，但是抵抗静态和/或动态攻击。

15. 发明授权

US08458792B2 Secure method and system for computer protection 有权
标题翻译：计算机保护的安全方法和系统
公开(公告)号：US08458792B2
公开(公告)日：2013-06-04
申请号：US13106519
申请日：2011-05-12
申请人： Stanley T. Chow , Harold T. Johnson , Alexander Main , Yuan Xiang Gu
发明人： Stanley T. Chow , Harold T. Johnson , Alexander Main , Yuan Xiang Gu
IPC分类号： G06F12/14 , G06F17/30
CPC分类号： G06F21/566 , G06F21/14 , G06F2221/2145 , G06F2221/2149 , H04L63/1441
摘要： Attacks by computer viruses, worm programs, and other hostile software (‘malware’), have become very serious problems for computer systems connected to large communication networks such as the Internet. One potential defense against such attacks is to employ diversity—that is, making each copy of the attacked software different. However, existing diversity techniques do not offer sufficient levels of protection. The invention provides an effective diversity solution by applying tamper resistant software (TRS) encoding techniques, to the communications that take place between software components, with corresponding changes to the code handling those communications. These communications may include, for example, data passed between software routines via parameters or mutually accessible variables, light-weight messages, signals and semaphores passed between threads, and messages passed between software processes. Effective TRS encoding techniques include data-flow encoding and mass-data encoding techniques.
摘要翻译：计算机病毒，蠕虫程序和其他恶意软件（“恶意软件”）的攻击对于连接到大型通信网络（如Internet）的计算机系统而言，已经成为非常严重的问题。对这种攻击的一个潜在防御是采用多样性，即使受攻击软件的每个副本不同。然而，现有的多样性技术不能提供足够的保护。本发明通过将抗篡改软件（TRS）编码技术应用于在软件组件之间发生的通信以及处理那些通信的代码的相应变化来提供有效的分集解决方案。这些通信可以包括例如经由参数或相互可访问的变量的软件例程之间传递的数据，在线程之间传递的轻量级消息，信号和信号量以及在软件进程之间传递的消息。有效的TRS编码技术包括数据流编码和大量数据编码技术。

16. 发明授权

US08424077B2 Simplified management of authentication credentials for unattended applications 有权
标题翻译：简化管理无人值守应用程序的身份验证凭据
公开(公告)号：US08424077B2
公开(公告)日：2013-04-16
申请号：US11640371
申请日：2006-12-18
申请人： Garney David Adams , Robert Grapes , Yuan Xiang Gu , Richard Edward Johnston Mehan , Jack Jiequn Rong
发明人： Garney David Adams , Robert Grapes , Yuan Xiang Gu , Richard Edward Johnston Mehan , Jack Jiequn Rong
IPC分类号： G06F21/00
CPC分类号： G06F21/62 , G06F21/31
摘要： Systems and methods for unattended authentication of software applications to provide these applications with access to shared resources. A server password manager (SPM) module resident on a node also occupied by a requester software application requesting access to resources receives the requestor's request. The SPM module creates a request package containing the requestor's information as well as the node's identifying information. The request package is then transmitted to a credentials manager (CM) module in a CM node. The request package, encrypted by the SPM module with encryption keys previously generated by the CM module, is decrypted by the CM module. The contents are checked against data stored by the CM module regarding the SPM module and the requestor application when these were registered with the CM. If the data matches, then the CM provides credentials which are used to give the requestor application access to the requested resources.
摘要翻译：用于软件应用程序的无人值守认证的系统和方法，以便为这些应用程序提供对共享资源的访问。驻留在请求访问资源的请求者软件应用程序所占用的节点上的服务器密码管理器（SPM）模块接收请求者的请求。 SPM模块创建一个包含请求者信息的请求包以及节点的标识信息。然后将请求包发送到CM节点中的凭证管理器（CM）模块。由SPM模块加密的先前由CM模块生成的加密密钥的请求包由CM模块解密。当CM模块向CM注册时，检查与CM模块存储的关于SPM模块和请求者应用程序的数据的内容。如果数据匹配，则CM提供用于给请求者应用程序访问所请求的资源的凭证。

17. 发明申请

US20120246487A1 System and Method to Protect Java Bytecode Code Against Static And Dynamic Attacks Within Hostile Execution Environments 有权
标题翻译：在恶意执行环境中保护Java字节码代码免受静态和动态攻击的系统和方法
公开(公告)号：US20120246487A1
公开(公告)日：2012-09-27
申请号：US13499495
申请日：2010-11-12
申请人： Yuan Xiang Gu , Garney Adams , Jack Rong
发明人： Yuan Xiang Gu , Garney Adams , Jack Rong
IPC分类号： G06F21/22
CPC分类号： G06F21/51 , G06F21/14
摘要： A method and system that provides secure modules that can address Java platform weaknesses and protect Java bytecode during execution time. The secure modules are implemented in C/C++ as an example. Because implementation of the security modules is made in C/C++, this enables use of security technology that secures C/C++ software code.
摘要翻译：提供可以解决Java平台缺点并在执行时保护Java字节码的安全模块的方法和系统。安全模块以C / C ++实现为例。由于安全模块的实现是在C / C ++中实现的，因此可以使用安全技术来保护C / C ++软件代码。

18. 发明申请

US20120192283A1 Interlocked Binary Protection Using Whitebox Cryptography 有权
标题翻译：使用白盒密码学的联锁二进制保护
公开(公告)号：US20120192283A1
公开(公告)日：2012-07-26
申请号：US13319561
申请日：2010-05-06
申请人： Yuan Xiang Gu , Paul McRae , Bogdan Nicolescu , Valery Levitsky , Xijian Zhu , Hongrui Dong , Daniel Elie Murdock
发明人： Yuan Xiang Gu , Paul McRae , Bogdan Nicolescu , Valery Levitsky , Xijian Zhu , Hongrui Dong , Daniel Elie Murdock
IPC分类号： G06F21/22 , G06F5/00 , G06F9/44
CPC分类号： G06F21/54 , G06F21/14 , H04L9/002 , H04L2209/16 , H04L2209/603
摘要： A system and method for transforming a software application comprising binary code and optionally associated data, from an original form to a more secure form. The method includes performing a combination of binary transmutations to the application, and interlocking the transmutations by generating and placing interdependencies between the transmutations, wherein a transmutation is an irreversible change to the application. Different types of the transmutations are applied at varied granularities of the application. The transmutations are applied to the application code and the implanted code as well. The result is a transformed software application which is semantically equivalent to the original software application but is resistant to static and/or dynamic attacks.
摘要翻译：一种用于将包括二进制代码和可选地关联的数据的软件应用程序从原始形式转换为更安全的形式的系统和方法。该方法包括对应用执行二进制变换的组合，以及通过生成和放置变换之间的相互依赖性来互锁变换，其中变换是对应用的不可逆变化。在应用的不同粒度下应用不同类型的变化。这些变化也应用于应用代码和植入代码。结果是转换的软件应用程序在语义上等同于原始软件应用程序，但是抵抗静态和/或动态攻击。

19. 发明申请

US20080208560A1 System and method of interlocking to protect software - mediated program and device behaviors 有权
标题翻译：联锁的系统和方法，以保护软件介导的程序和设备行为
公开(公告)号：US20080208560A1
公开(公告)日：2008-08-28
申请号：US11980392
申请日：2007-10-31
申请人： Harold Joseph Johnson , Yuan Xiang Gu , Yongxin Zhou
发明人： Harold Joseph Johnson , Yuan Xiang Gu , Yongxin Zhou
IPC分类号： G06F9/45
CPC分类号： G06F21/14 , G06F21/10 , G06F21/12 , G06F21/55 , G06F2221/0748 , H04L9/002 , H04L2209/04 , H04L2209/046 , H04L2209/16 , H04L2209/20
摘要： A method for rendering software resistant to reverse engineering. Replace at least one first constant (mathematical expression, etc.) in a computational expression with a second mixed mathematical and bitwise-Boolean expression, the first constant being simpler than the second expression and the second expression being based on the value or the variables found in the first constant (or expression). Evaluation of the second mixed mathematical and bitwise-Boolean expression produces a value preserving the value of the first constant, either: with the original value of the first constant or the original value of the result of the first expression, in which case the second mixed mathematical and bitwise-Boolean expression is obtained from the first constant by converting the first constant by mathematical identities; or, in an encoded form, as a new value, which can be converted back to the original value of the first constant by applying an information-preserving decoding function, in which case the second mixed mathematical and bitwise-Boolean expression is obtained from the first constant by modifying the first constant by a combination of conversion according to mathematical identities and transformation according to an information preserving encoding function.
摘要翻译：一种用于渲染反向工程的软件的方法。用计算表达式中的至少一个第一个常数（数学表达式等）替换为第二个混合的数学和位元布尔表达式，第一个常数比第二个表达式简单，而第二个表达式基于值或发现的变量在第一个常数（或表达式）中。评估第二个混合数学和比特布尔表达式产生一个保留第一个常数的值的值，或者是：第一个常数的原始值或第一个表达式的结果的原始值，在这种情况下，第二个混合数学和按位 - 通过用数学标识转换第一个常数从第一个常数获得布尔表达式; 或者以编码形式作为新值，其可以通过应用信息保存解码功能而被转换回到第一常数的原始值，在这种情况下，从第二混合数学和按位布尔表达式通过根据数学标识的转换和根据信息保存编码功能的变换的组合来修改第一常数的第一常数。

20. 发明申请

US20140026214A1 Method of Securing Non-Native Code 有权
标题翻译：保护非本地代码的方法
公开(公告)号：US20140026214A1
公开(公告)日：2014-01-23
申请号：US14008384
申请日：2011-03-31
申请人： Garney David Adams , Yuan Xiang Gu , Jack Jiequn Rong
发明人： Garney David Adams , Yuan Xiang Gu , Jack Jiequn Rong
IPC分类号： G06F21/51
CPC分类号： G06F21/54 , G06F8/71 , G06F9/3017 , G06F9/30174 , G06F9/3879 , G06F9/45516 , G06F9/45558 , G06F21/51 , G06F21/52 , G06F21/53 , G06F2009/45587 , G06F2221/033
摘要： A method to secure a non-native application. The non-native application is processed to obtain an application stub to be triggered within a virtual machine. The processing of the non-native application also provide a native code function upon which the application stub depends. The non-native function is part of a trusted module that extends security services from the trusted module to the virtual machine. The trusted module is a native code application that creates a trusted zone as a root of trustiness extending to the virtual machine by an execution-enabling mechanism between the application tab and the non-native function.
摘要翻译：一种保护非本地应用程序的方法。处理非本地应用程序以获取在虚拟机中触发的应用程序存根。非本地应用程序的处理还提供应用程序存根所依赖的本机代码功能。非本机功能是将可信模块的安全服务扩展到虚拟机的受信任模块的一部分。可信模块是本地代码应用程序，其通过应用程序选项卡和非本地函数之间的执行启用机制，将受信任区域创建为通过虚拟机延伸的可信任根。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式