专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

21. 发明申请

US20060259980A1 Method and system for limiting rights of services 审中-公开
标题翻译：限制服务权的方法和制度
公开(公告)号：US20060259980A1
公开(公告)日：2006-11-16
申请号：US11131431
申请日：2005-05-16
申请人： Scott Field , Chittur Sabbaraman , Ramesh Chinta
发明人： Scott Field , Chittur Sabbaraman , Ramesh Chinta
IPC分类号： H04L9/32 , H04L9/00 , G06K9/00 , G06F15/16 , G06F17/30 , G06F7/04 , G06F7/58 , H03M1/68 , G06K19/00 , H04K1/00 , H04N7/16
CPC分类号： H04L63/0807 , G06F21/51 , G06F21/53 , G06F2221/2141 , G06F2221/2149 , H04L63/10 , H04L63/101
摘要： A method and system for controlling access rights and privileges of services is provided. A service control system creates a security identifier that is unique for each service that executes within a service host and adds the security identifiers to the security context of the service host. The service control system may create a unique security identifier for each service that is independent of the computer system and the account on which the service executes. The service control system may also adjust the privileges of the security context of a service host to be an aggregate of the privileges needed by the services that are to execute within the service host. The service control system may also create a restricted security context for the service host that includes the security identifiers of the services as restricted service identifiers.
摘要翻译：提供了一种控制服务访问权限和权限的方法和系统。服务控制系统创建对于在服务主机内执行的每个服务是唯一的安全标识符，并将安全标识符添加到服务主机的安全上下文。服务控制系统可以为独立于计算机系统和服务执行的帐户的每个服务创建唯一的安全标识符。服务控制系统还可以将服务主机的安全上下文的权限调整为服务主机中要执行的服务所需的特权的聚合。服务控制系统还可以为包括作为受限服务标识符的服务的安全标识符的服务主机创建受限的安全上下文。

22. 发明申请

US20060200863A1 On-access scan of memory for malware 有权
标题翻译：恶意软件的内存访问扫描
公开(公告)号：US20060200863A1
公开(公告)日：2006-09-07
申请号：US11070468
申请日：2005-03-01
申请人： Kenneth Ray , Michael Kramer , Paul England , Scott Field
发明人： Kenneth Ray , Michael Kramer , Paul England , Scott Field
IPC分类号： G06F12/14
CPC分类号： G06F12/145 , G06F21/562
摘要： The present invention provides a system, method, and computer-readable medium for identifying malware that is loaded in the memory of a computing device. Software routines implemented by the present invention track the state of pages loaded in memory using page table access bits available from a central processing unit. A page in memory may be in a state that is “unsafe” or potentially infected with malware. In this instance, the present invention calls a scan engine to search a page for malware before information on the page is executed.
摘要翻译：本发明提供一种用于识别加载到计算设备的存储器中的恶意软件的系统，方法和计算机可读介质。由本发明实现的软件程序使用从中央处理单元获得的页表访问位来跟踪加载在存储器中的页的状态。内存中的页面可能处于“不安全”或可能感染恶意软件的状态。在这种情况下，本发明在页面上的信息被执行之前，调用扫描引擎来搜索页面中的恶意软件。

23. 发明申请

US20060136720A1 Computer security management, such as in a virtual machine or hardened operating system 有权
标题翻译：计算机安全管理，如虚拟机或硬化操作系统
公开(公告)号：US20060136720A1
公开(公告)日：2006-06-22
申请号：US11019094
申请日：2004-12-21
申请人： Benjamin Armstrong , Paul England , Scott Field , Jason Garms , Michael Kramer , Kenneth Ray
发明人： Benjamin Armstrong , Paul England , Scott Field , Jason Garms , Michael Kramer , Kenneth Ray
IPC分类号： H04L9/00
CPC分类号： G06F21/53 , G06F21/56 , G06F21/566
摘要： A security scheme provides security to one or more self-contained operating environment instances executing on a computer. The security scheme may include implementing a set of security applications that may be controlled by a supervisory process, or the like. Both the set of security applications and the supervisory process may operate on a host system of the computer, which may also provide a platform for execution of the one or more self-contained operating environments. The security scheme protects processes running in the one or more self-contained operating environment and processes running on the computer outside of the self-contained operating environments.
摘要翻译：安全方案为在计算机上执行的一个或多个自包含的操作环境实例提供安全性。安全方案可以包括实现可由监督过程等控制的一组安全应用。所述一组安全应用程序和监督过程可以在计算机的主机系统上操作，其还可以提供用于执行一个或多个独立操作环境的平台。安全性方案保护在独立操作环境中运行的进程和在独立操作环境之外的计算机上运行的进程。

24. 发明授权

US06272631B1 Protected storage of core data secrets 失效
标题翻译：保护存储的核心数据秘密
公开(公告)号：US06272631B1
公开(公告)日：2001-08-07
申请号：US08884864
申请日：1997-06-30
申请人： Matthew W. Thomlinson , Scott Field , Allan Cooper
发明人： Matthew W. Thomlinson , Scott Field , Allan Cooper
IPC分类号： G11C1100
CPC分类号： H04L63/0428 , G06F21/6245 , G06F2211/007 , G06F2211/008 , G06F2221/2149 , H04L63/06 , H04L63/08 , H04L63/12
摘要： The invention provides central storage for core data secrets, referred to as data items. The architecture includes a storage server, a plurality of installable storage providers, and one or more authentication providers. Programming interfaces are exposed so that application programs can utilize the services provided by the invention without having to actually implement the features. When storing a data item using the protected storage services, an application program can specify rules that determine when to allow access to the data item. Access can, if desired, be limited to the current computer user. Access can similarly be limited to specified application programs or to certain classes of application programs. The storage server authenticates requesting application programs before returning data to them. A default authentication provider authenticates users based on their computer or network logon. A default storage provider allows storage of data items on magnetic media such as a hard disk or a floppy disk. Data items are encrypted before they are stored. The encryption optionally uses a key that is derived from the previous authentication of the user. Specifically, the key is derived from the user's password, supplied during logon. In addition, an application program or the user can specify that certain items require another password that is entered whenever access to the data is requested. The default storage provider implements a multi-level encryption scheme to minimize the amount of encryption that has to be re-done when the user changes a password. Each data item is encrypted using an item key that is generated randomly by the system. The item key is in turn encrypted with a master key that is itself encrypted with a key derived from the user-supplied password (such as the user's logon password).
摘要翻译：本发明为核心数据秘密提供了称为数据项的中央存储。该架构包括存储服务器，多个可安装的存储提供商以及一个或多个认证提供者。编程接口被公开，使得应用程序可以利用本发明提供的服务，而不必实际实现特征。当使用受保护的存储服务存储数据项时，应用程序可以指定确定何时允许访问数据项的规则。如果需要，访问可以限于当前的计算机用户。访问可以类似地限于指定的应用程序或某些类别的应用程序。存储服务器在向其发送数据之前对请求的应用程序进行认证。默认身份验证提供者根据用户的计算机或网络登录信息对用户进行身份验证。默认存储提供程序允许在磁性介质（如硬盘或软盘）上存储数据项。数据项在存储之前被加密。加密可选地使用从先前的用户身份验证导出的密钥。具体来说，密钥是从登录时提供的用户密码导出的。此外，应用程序或用户可以指定某些项目需要在请求访问数据时输入的另一个密码。默认存储提供商实施多级加密方案，以最大限度地减少用户更改密码时必须重新完成的加密数量。使用系统随机生成的项目密钥对每个数据项进行加密。项目密钥依次使用主密钥进行加密，该主密钥本身使用从用户提供的密码导出的密钥（例如用户的登录密码）进行加密。

25. 发明授权

US09531588B2 Discovery and mining of performance information of a device for anticipatorily sending updates to the device 有权
标题翻译：发现和挖掘用于预期向设备发送更新的设备的性能信息
公开(公告)号：US09531588B2
公开(公告)日：2016-12-27
申请号：US13329121
申请日：2011-12-16
申请人： Edward Reus , Mario Goertzel , Scott Field , Michael Joseph Healy , Joseph Dadzie , David Kays , John Douceur , Henricus Johannes Maria Meijer
发明人： Edward Reus , Mario Goertzel , Scott Field , Michael Joseph Healy , Joseph Dadzie , David Kays , John Douceur , Henricus Johannes Maria Meijer
IPC分类号： G06F15/173 , H04L12/24 , H04L29/08 , G06F15/17 , H04L12/26
CPC分类号： H04L41/0813 , G06F15/17 , H04L41/0823 , H04L43/08 , H04L67/20 , H04L67/22 , H04L67/303 , H04L67/306 , H04L67/34
摘要： The subject disclosure relates to techniques for monitoring contextual and performance information of a device for anticipatorily sending update information to the device. An interface component can receive, from the client, contextual information indicating an operating environment of the client and performance information that is associated with one or more operations being performed by the client based on the operating environment, and send, based on correlation information, update information to the client. Further, a service component can to infer a relationship between the contextual information and the performance information to obtain the correlation information. In other embodiments, a client can populate a cache with portion(s) of the contextual information to obtain cached information, and send at least a portion of the cached information to a system including one or more aspects of the service component.
摘要翻译：主题公开涉及用于监视用于预先向设备发送更新信息的设备的上下文和性能信息的技术。接口组件可以从客户端接收指示客户端的操作环境的上下文信息和与客户端基于操作环境执行的一个或多个操作相关联的性能信息，并且基于相关信息发送更新信息给客户端。此外，服务组件可以推断上下文信息与性能信息之间的关系，以获得相关信息。在其他实施例中，客户端可以使用上下文信息的一部分来填充高速缓存以获得缓存的信息，并且将缓存的信息的至少一部分发送到包括服务组件的一个或多个方面的系统。

26. 发明申请

US20130160072A1 PERSONAL SPACE (DATA) V. CORPORATE SPACE (DATA) 有权
标题翻译：个人空间（数据）V.公司空间（数据）
公开(公告)号：US20130160072A1
公开(公告)日：2013-06-20
申请号：US13329111
申请日：2011-12-16
申请人： Edward Reus , Scott Field , Michael Joseph Healy , Joseph Dadzie , Srivatsan Parthasarathy
发明人： Edward Reus , Scott Field , Michael Joseph Healy , Joseph Dadzie , Srivatsan Parthasarathy
IPC分类号： G06F21/00 , G06F17/00
CPC分类号： G06F21/604 , H04L63/102 , H04L63/107 , H04L63/20
摘要： Data management techniques are provided for handling information resources. A data management process can account for attributes of information resources by analyzing or interpreting the workspace location, source, channel and device associated with an information resource, and effectuating policies, based on the attributes. Rules govern the attribute determination and policies for access restriction to the information resource. The attributes and policies determined are tagged to the information resource and is dynamically updated based on the attributes related to the information resource within different workspaces, such as a corporate workspace and a personal workspace.
摘要翻译：提供数据管理技术来处理信息资源。数据管理过程可以通过分析或解释与信息资源相关联的工作空间位置，源，通道和设备，以及基于属性来实现策略来说明信息资源的属性。规则管理对信息资源的访问限制的属性确定和策略。确定的属性和策略被标记为信息资源，并且基于与不同工作空间（例如公司工作空间和个人工作空间）内的信息资源相关的属性动态地更新。

27. 发明申请

US20130159500A1 DISCOVERY AND MINING OF PERFORMANCE INFORMATION OF A DEVICE FOR ANTICIPATORILY SENDING UPDATES TO THE DEVICE 有权
标题翻译：发现和挖掘设备的性能信息，用于设备发送更新的设备
公开(公告)号：US20130159500A1
公开(公告)日：2013-06-20
申请号：US13329121
申请日：2011-12-16
申请人： Edward Reus , Mario Goertzel , Scott Field , Michael Joseph Healy , Joseph Dadzie , David Kays , John Douceur , Henricus Johannes Maria Meijer
发明人： Edward Reus , Mario Goertzel , Scott Field , Michael Joseph Healy , Joseph Dadzie , David Kays , John Douceur , Henricus Johannes Maria Meijer
IPC分类号： G06F15/173
CPC分类号： H04L41/0813 , G06F15/17 , H04L41/0823 , H04L43/08 , H04L67/20 , H04L67/22 , H04L67/303 , H04L67/306 , H04L67/34
摘要： The subject disclosure relates to techniques for monitoring contextual and performance information of a device for anticipatorily sending update information to the device. An interface component can receive, from the client, contextual information indicating an operating environment of the client and performance information that is associated with one or more operations being performed by the client based on the operating environment, and send, based on correlation information, update information to the client. Further, a service component can to infer a relationship between the contextual information and the performance information to obtain the correlation information. In other embodiments, a client can populate a cache with portion(s) of the contextual information to obtain cached information, and send at least a portion of the cached information to a system including one or more aspects of the service component.
摘要翻译：主题公开涉及用于监视用于预先向设备发送更新信息的设备的上下文和性能信息的技术。接口组件可以从客户端接收指示客户端的操作环境的上下文信息和与客户端基于操作环境执行的一个或多个操作相关联的性能信息，并且基于相关信息发送更新信息给客户端。此外，服务组件可以推断上下文信息与性能信息之间的关系，以获得相关信息。在其他实施例中，客户端可以使用上下文信息的一部分来填充高速缓存以获得缓存的信息，并且将缓存的信息的至少一部分发送到包括服务组件的一个或多个方面的系统。

28. 发明申请

US20130145027A1 REGULATORY COMPLIANCE ACROSS DIVERSE ENTITIES 审中-公开
标题翻译：跨越多元化实体的法规遵从
公开(公告)号：US20130145027A1
公开(公告)日：2013-06-06
申请号：US13309510
申请日：2011-12-01
申请人： Srivatsan Parthasarathy , Scott Field , Mario Goertzel , David Kays , Joseph Dadzie , Edward Reus
发明人： Srivatsan Parthasarathy , Scott Field , Mario Goertzel , David Kays , Joseph Dadzie , Edward Reus
IPC分类号： G06F15/16
CPC分类号： G06F21/6218 , G06F21/604 , H04L63/107 , H04W12/08
摘要： Regulatory compliance techniques are provided for dynamically modifying access to data based on the jurisdiction a user seeking access to the data is located within. Dynamically modifying access to data provides for a more efficient and accurate solution to regulatory compliance issues faced when hosting data in a central repository. Users can be notified when their access to data is modified due to a compliance issue. In addition, an audit history can be associated with data packets that allow an administrator or the like to view the history of data packet access. Finally, signatures associated with a data packet can be used to search data store(s) to track access to information within the data packet that may have been subsequently modified.
摘要翻译：提供监管合规性技术，用于根据用户寻求对数据访问权限的管辖区动态修改对数据的访问。动态地修改对数据的访问，为在中央存储库中托管数据时面临的法规遵从性问题提供了更有效和准确的解决方案。由于合规性问题，用户可以通知他们对数据的访问权限。此外，审计历史可以与允许管理员等查看数据分组访问历史的数据分组相关联。最后，可以使用与数据分组相关联的签名来搜索数据存储以跟踪对可能随后被修改的数据分组内的信息的访问。

29. 发明授权

US08117441B2 Integrating security protection tools with computer device integrity and privacy policy 有权
标题翻译：将安全保护工具与计算机设备完整性和隐私政策集成
公开(公告)号：US08117441B2
公开(公告)日：2012-02-14
申请号：US11472052
申请日：2006-06-20
申请人： Thekkthalackal Varugis Kurien , Jeffrey B Hamblin , Narasimha Rao Nagampalli , Peter T Brundrett , Scott Field
发明人： Thekkthalackal Varugis Kurien , Jeffrey B Hamblin , Narasimha Rao Nagampalli , Peter T Brundrett , Scott Field
IPC分类号： H04L29/00 , H04L29/06
CPC分类号： G06F21/50 , G06F21/51 , G06F21/53
摘要： At computer device power on, the operating system of the computer device initiates a monitor. The monitor assigns a monitoring program to each program and object (collectively, “program”) running on the computer device to monitor the activities of the program. When the monitoring program is assigned to a program, the monitoring program is assigned an integrity and/or privacy label (collectively, “integrity label”) based on predetermined criteria applied to the monitored program. The monitoring program, in turn, assigns an integrity label to the program monitored by the monitoring program. The integrity label assigned to the monitored program is less than or equal to the integrity label of the monitoring program. The monitor enforces an integrity policy of the computer device based on the integrity label assigned to monitored programs and the integrity label associated with data, another program, or a remote network resource that the monitored program is seeking to access.
摘要翻译：在计算机设备上电时，计算机设备的操作系统启动监视器。监视器为在计算机设备上运行的每个程序和对象（统称为“程序”）分配监视程序，以监视程序的活动。当监视程序被分配给程序时，基于应用于监视程序的预定标准，向监视程序分配完整性和/或隐私标签（统称为“完整性标签”）。监控程序又向监控程序监控的程序分配一个完整性标签。分配给被监视程序的完整性标签小于或等于监视程序的完整性标签。监视器基于分配给被监视程序的完整性标签和与监视程序正在寻求访问的数据，另一程序或远程网络资源相关联的完整性标签来强制执行计算机设备的完整性策略。

30. 发明申请

US20100107218A1 SECURED COMPARTMENT FOR TRANSACTIONS 有权
标题翻译：安全交易舱
公开(公告)号：US20100107218A1
公开(公告)日：2010-04-29
申请号：US12257765
申请日：2008-10-24
申请人： Thekkthalackal Varugis Kurien , Cormac E. Herley , Alice Jane Bernheim Brush , Daniel C. Robbins , Arindam Chatterjee , Scott Field
发明人： Thekkthalackal Varugis Kurien , Cormac E. Herley , Alice Jane Bernheim Brush , Daniel C. Robbins , Arindam Chatterjee , Scott Field
IPC分类号： H04L9/32
CPC分类号： H04L9/3263 , G06F13/24 , G06F2221/2149 , G07F7/0826 , G07F7/1008 , H04L2209/56
摘要： Systems and methods that establish a secured compartment that manages sensitive user transactions/information on a user's machine. The secured compartment qualifies user interaction with the machine, and separates such qualified interaction from other user activity on the machine. A user is switched to such secured compartment upon occurrence of a predetermined event, such as in form of: an explicit request (e.g., a secure attention sequence); an implicit request (e.g., inference of user activities); and presence of a peripheral device that is bound to the secured compartment (e.g., a USB)—wherein such actions typically cannot be generated by an application running outside the secured compartment.
摘要翻译：建立安全隔间的系统和方法，用于管理用户机器上的敏感用户事务/信息。安全隔间限定用户与机器的交互，并将这种合格的交互与机器上的其他用户活动分开。在发生预定事件时，例如以明确的请求（例如，安全注意序列）的形式，用户切换到这样的安全隔间; 隐式请求（例如，推断用户活动）; 以及绑定到固定隔间（例如，USB）的外围设备的存在，其中这样的动作通常不能由在安全隔间外部运行的应用程序产生。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式