专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

81. 发明授权

US08171256B1 Systems and methods for preventing subversion of address space layout randomization (ASLR) 有权
标题翻译：防止地址空间布局随机化（ASLR）颠覆的系统和方法
公开(公告)号：US08171256B1
公开(公告)日：2012-05-01
申请号：US12340968
申请日：2008-12-22
申请人： Sourabh Satish , William E. Sobel , Bruce McCorkendale
发明人： Sourabh Satish , William E. Sobel , Bruce McCorkendale
IPC分类号： G06F12/00 , G06F11/00 , G06F12/14 , G06F12/16
CPC分类号： G06F21/52
摘要： A method for preventing subversion of address space layout randomization (ASLR) in a computing device is described. An unverified module attempting to load into an address space of memory of the computing device is intercepted. Attributes associated with the unverified module are analyzed. A determination is made, based on the analyzed attributes, whether a probability exists that the unverified module will be loaded into a number of address spaces that exceeds a threshold. The unverified module is prevented from loading into the address space if the probability exists that the unverified module will be loaded into a number of address spaces that exceeds the threshold.
摘要翻译：描述了一种用于防止计算设备中的地址空间布局随机化（ASLR）的颠覆的方法。试图加载到计算设备的存储器的地址空间中的未验证的模块被截取。分析与未验证模块相关联的属性。基于分析的属性确定是否存在将未验证的模块加载到超过阈值的多个地址空间的概率。如果未验证的模块将被加载到超过阈值的多个地址空间的概率存在，则未经验证的模块被阻止加载到地址空间中。

82. 发明授权

US08150991B1 Geolocation-based application streaming systems, apparatus, and methods 有权
标题翻译：基于地理位置的应用流系统，设备和方法
公开(公告)号：US08150991B1
公开(公告)日：2012-04-03
申请号：US12045524
申请日：2008-03-10
申请人： William E. Sobel , Sourabh Satish
发明人： William E. Sobel , Sourabh Satish
IPC分类号： G06F15/16
CPC分类号： H04L67/30 , H04L65/4084 , H04L67/18 , H04L67/34
摘要： The disclosure is directed to systems, apparatus, and methods for geolocation-based application streaming. In one example, a system may include a geolocation service that determines the location of a client, and an application server that streams one or more applications to the client on request. The application server may use the location provided by the geolocation service to select an application streaming profile indicating application modules to be initially streamed to clients for that geolocation. After the initial program modules have been streamed to the client, the application server services requests from the client for additional application modules. The application server may log application module requests to create or modify application streaming profiles that specify the application modules to be initially streamed to clients at a particular geolocation. The client or a web server may also specify the application streaming profile to be used by the application server.
摘要翻译：本公开涉及用于基于地理位置的应用流的系统，装置和方法。在一个示例中，系统可以包括确定客户端的位置的地理位置服务以及根据请求将一个或多个应用流向客户端流出的应用服务器。应用服务器可以使用由地理位置服务提供的位置来选择应用流传输配置文件，该应用流配置文件指示应用模块最初被流传输到该地理位置的客户端。在将初始程序模块流式传输到客户端之后，应用程序服务器将向客户端提供服务请求以获得更多的应用程序模块。应用程序服务器可以记录应用程序模块请求，以创建或修改应用程序流配置文件，该应用程序流配置文件指定要在特定地理位置初始流式传输到客户端的应用客户机或Web服务器还可以指定要由应用服务器使用的应用流配置文件。

83. 发明授权

US08001049B2 Data submission for anti-fraud context evaluation 有权
标题翻译：数据提交反欺诈情境评估
公开(公告)号：US08001049B2
公开(公告)日：2011-08-16
申请号：US11860686
申请日：2007-09-25
申请人： William E. Sobel , Bruce McCorkendale
发明人： William E. Sobel , Bruce McCorkendale
IPC分类号： G06Q40/00
CPC分类号： G06Q20/403 , G06Q20/04 , G06Q20/40 , G06Q40/12
摘要： Contextual data is gathered about a user's known location and/or about a user's expected location and generates contextual indicators based on at least a portion of the gathered contextual data. The contextual indicators are provided to one or more relying parties, such as an anti-fraud system to allow the anti-fraud system to more effectively determine the validity of transactions associated with the user, such as credit card transactions associated with the user's credit card.
摘要翻译：收集关于用户的已知位置和/或关于用户的预期位置的上下文数据，并且基于所收集的上下文数据的至少一部分来生成上下文指示符。上下文指标被提供给一个或多个依赖方，例如反欺诈系统，以允许反欺诈系统更有效地确定与用户相关联的交易的有效性，诸如与用户的信用卡相关联的信用卡交易。

84. 发明授权

US07904573B1 Temporal access control for computer virus prevention 有权
标题翻译：计算机病毒预防的时间访问控制
公开(公告)号：US07904573B1
公开(公告)日：2011-03-08
申请号：US12249737
申请日：2008-10-10
申请人： Carey S. Nachenberg , William E. Sobel
发明人： Carey S. Nachenberg , William E. Sobel
IPC分类号： G06F15/16 , G06F12/14
CPC分类号： H04L63/0227 , G06F21/56 , H04L63/145
摘要： An access control system (200) enables a computer network (1) to prevent execution of computer code that may contain computer viruses. An access control console (201) generates an access control message (260) including control parameters such as a time limit (255). Said time limit (255) is disseminated to computers (2, 3) on the network (1). Said computers (2, 3) use the time limit (255) to determine the executability of computer code. Access control system (200) also enables blocking data communications with suspicious or susceptible programs in network (1) during virus outbreaks.
摘要翻译：访问控制系统（200）使得计算机网络（1）能够防止可能包含计算机病毒的计算机代码的执行。访问控制台（201）生成包括诸如时间限制（255）的控制参数的访问控制消息（260）。所述时间限制（255）被传播到网络（1）上的计算机（2,3）。所述计算机（2,3）使用时间限制（255）来确定计算机代码的可执行性。访问控制系统（200）还可以在病毒爆发期间阻止与网络（1）中的可疑或易感程序的数据通信。

85. 发明授权

US07895650B1 File system based risk profile transfer 有权
标题翻译：基于文件系统的风险简档传输
公开(公告)号：US07895650B1
公开(公告)日：2011-02-22
申请号：US11014679
申请日：2004-12-15
申请人： William E. Sobel
发明人： William E. Sobel
IPC分类号： G06F11/00 , G06F11/30 , H04L29/06
CPC分类号： G06F21/554
摘要： File system based risk profile transfer is disclosed. A request to access an object stored in memory is received from a requesting service, application, or other process. An object risk profile associated with the object, which profile comprises data indicating a level of risk associated with a prior service, application, or other process that previously created or modified the stored object, is accessed. The level of risk reflected in the object risk profile is factored into a process risk profile associated with the requesting service, application, or other process. A security measure to protect the requesting service, application, or other process is deployed based at least in part on the process risk profile.
摘要翻译：披露了基于文件系统的风险简档转移。从请求服务，应用程序或其他进程接收访问存储在存储器中的对象的请求。与对象相关联的对象风险简档，该简档包括指示与先前创建或修改存储对象的先前服务，应用程序或其他进程相关联的风险级别的数据。在对象风险简档中反映的风险级别被考虑到与请求服务，应用程序或其他过程相关联的过程风险简档中。至少部分地基于过程风险简档部署用于保护请求服务，应用程序或其他进程的安全措施。

86. 发明授权

US07831412B1 Systems and methods for providing guidance by category on the potential impact of an application on the health of a computing system 有权
标题翻译：通过类别提供关于应用程序对计算系统健康的潜在影响的指导的系统和方法
公开(公告)号：US07831412B1
公开(公告)日：2010-11-09
申请号：US12059769
申请日：2008-03-31
申请人： William E. Sobel , Sourabh Satish
发明人： William E. Sobel , Sourabh Satish
IPC分类号： G06F13/00 , G06F11/00
CPC分类号： G06F11/3409 , G06F8/61 , G06F11/3476
摘要： Embodiments of the instant disclosure may provide users with access to information that details, by application category, the potential impact an application may have on the health of a user's computing device. A method for determining the impact of a new application on the health of a computing system by category is also disclosed. Corresponding systems and computer-readable media are also disclosed.
摘要翻译：本公开的实施例可以向用户提供对按照应用类别详细描述应用可能对用户的计算设备的健康状况产生的潜在影响的信息的访问。还公开了一种用于根据类别确定新应用对计算系统的健康的影响的方法。还公开了相应的系统和计算机可读介质。

87. 发明授权

US07827607B2 Enhanced client compliancy using database of security sensor data 有权
标题翻译：使用安全传感器数据的数据库增强客户端符合性
公开(公告)号：US07827607B2
公开(公告)日：2010-11-02
申请号：US11271656
申请日：2005-11-09
申请人： William E. Sobel , Bruce McCorkendale
发明人： William E. Sobel , Bruce McCorkendale
IPC分类号： G06F21/00
CPC分类号： H04L63/20 , H04L63/105 , H04L63/1433 , H04L63/1441
摘要： Security sensor data from intrusion detection system (IDS) sensors, vulnerability assessment (VA) sensors, and/or other security sensors is used to enhance the compliancy determination in a client compliancy system. A database is used to store the security sensor data. In one particular embodiment, a list of device compliance statuses indexed by corresponding identifiers (e.g., IP/MAC addresses) combined from IDS, VA, and/or other security sensing technologies is made available as a non-compliance database for query, so that clients and other compliancy authentication elements can tell that a particular client appears to be out of compliance. A client-side self-policing compliance system is enabled, and can be used in conjunction with automated endpoint compliance policy configuration to reduce system administrator burden.
摘要翻译：来自入侵检测系统（IDS）传感器，脆弱性评估（VA）传感器和/或其他安全传感器的安全传感器数据用于增强客户端符合性系统中的合规性确定。数据库用于存储安全传感器数据。在一个特定实施例中，由IDS，VA和/或其他安全感测技术组合的对应标识符（例如，IP / MAC地址）索引的设备合规性状态列表可用作用于查询的不合规数据库，使得客户端和其他合规认证元素可以告诉某个客户端似乎不合规。启用了客户端自我监管合规性系统，并且可以与自动化端点合规策略配置结合使用，以减少系统管理员的负担。

88. 发明申请

US20100268644A1 DATA SUBMISSION FOR ANTI-FRAUD CONTEXT EVALUATION 有权
标题翻译：数据提交反欺诈上下文评估
公开(公告)号：US20100268644A1
公开(公告)日：2010-10-21
申请号：US11860686
申请日：2007-09-25
申请人： William E. Sobel , Bruce McCorkendale
发明人： William E. Sobel , Bruce McCorkendale
IPC分类号： G06Q40/00
CPC分类号： G06Q20/403 , G06Q20/04 , G06Q20/40 , G06Q40/12
摘要： Contextual data is gathered about a user's known location and/or about a user's expected location and generates contextual indicators based on at least a portion of the gathered contextual data. The contextual indicators are provided to one or more relying parties, such as an anti-fraud system to allow the anti-fraud system to more effectively determine the validity of transactions associated with the user, such as credit card transactions associated with the user's credit card.
摘要翻译：收集关于用户的已知位置和/或关于用户的预期位置的上下文数据，并且基于所收集的上下文数据的至少一部分来生成上下文指示符。上下文指标被提供给一个或多个依赖方，例如反欺诈系统，以允许反欺诈系统更有效地确定与用户相关联的交易的有效性，诸如与用户的信用卡相关联的信用卡交易。

89. 发明授权

US07730215B1 Detecting entry-portal-only network connections 有权
标题翻译：检测进入门户网络连接
公开(公告)号：US07730215B1
公开(公告)日：2010-06-01
申请号：US11102517
申请日：2005-04-08
申请人： Bruce McCorkendale , William E. Sobel
发明人： Bruce McCorkendale , William E. Sobel
IPC分类号： G06F15/16
CPC分类号： H04L63/10 , H04L67/2814 , H04L67/327
摘要： A network connection manager detects entry-portal-only network connections. The network connection manager requests content from at least one remote location through a network connection. The network connection manager examines the received content, and determines whether the network connection is an entry-portal-only network connection. In response to detecting an entry-portal-only condition, the network connection manager prompts the user to logon through the entry portal and establish a general purpose network connection.
摘要翻译：网络连接管理器检测入站门户网络连接。网络连接管理器通过网络连接从至少一个远程位置请求内容。网络连接管理器检查接收到的内容，并确定网络连接是否是仅入门户网络连接。响应于检测入口仅门槛的条件，网络连接管理器提示用户登录入口门户并建立通用网络连接。

90. 发明授权

US07694343B2 Client compliancy in a NAT environment 有权
标题翻译：客户端在NAT环境中的兼容性
公开(公告)号：US07694343B2
公开(公告)日：2010-04-06
申请号：US11271610
申请日：2005-11-09
申请人： William E. Sobel , Bruce McCorkendale
发明人： William E. Sobel , Bruce McCorkendale
IPC分类号： G06F21/00
CPC分类号： H04L63/20 , H04L61/2015 , H04L61/2514 , H04L63/105
摘要： Techniques for implementing client compliancy in a network address translation (NAT) environment are disclosed. Network appliances (e.g., NAT hubs, routers, switches, and other NAT devices) actively cooperate with client compliance strategies by engaging in the compliance evaluation of the hosts connected to it, and interact with the up-stream compliance mechanism. As such, devices normally hidden behind a NAT device from the upstream network can participate in the compliance scheme in a more meaningful way.
摘要翻译：公开了在网络地址转换（NAT）环境中实现客户端符合性的技术。网络设备（例如，NAT集线器，路由器，交换机和其他NAT设备）通过参与与其连接的主机的合规性评估并与上游遵从机制进行交互来积极地与客户端合规策略配合。因此，通常隐藏在来自上游网络的NAT设备之后的设备可以以更有意义的方式参与合规性方案。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式