专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20090328185A1 Detecting exploit code in network flows 审中-公开
标题翻译：检测网络流中的漏洞利用代码
公开(公告)号：US20090328185A1
公开(公告)日：2009-12-31
申请号：US11260914
申请日：2005-10-28
申请人： Eric Van den Berg , Ramkumar Chinchani
发明人： Eric Van den Berg , Ramkumar Chinchani
IPC分类号： G06F11/30 , G06F17/00 , G06F15/173
CPC分类号： H04L63/0245 , H04L63/1416 , H04L63/145
摘要： Disclosed is a method and apparatus for detecting exploit code in network flows. Network data packets are intercepted by a flow monitor which generates data flows from the intercepted data packets. A content filter filters out legitimate programs from the data flows, and the unfiltered portions are provided to a code recognizer which detects executable code. Any embedded executable code in the unfiltered data flow portions is identified as a suspected exploit in the network flow. The executable code recognizer recognizes executable code by performing convergent binary disassembly on the unfiltered portions of the data flows. The executable code recognizer then constructs a control flow graph and performs control flow analysis, data flow analysis, and constraint enforcement in order to detect executable code. In addition to identifying detected executable code as a potential exploit, the detected executable code may then be used in order to generate a signature of the potential exploit, for use by other systems in detecting the exploit.
摘要翻译：公开了一种用于检测网络流中的利用代码的方法和装置。网络数据包被流量监视器拦截，流量监视器从拦截的数据包生成数据流。内容过滤器从数据流过滤掉合法程序，并且将未过滤的部分提供给检测可执行代码的代码识别器。未过滤的数据流部分中的任何嵌入的可执行代码被识别为网络流中的可疑漏洞。可执行代码识别器通过对数据流的未过滤部分执行收敛二进制拆卸来识别可执行代码。然后，可执行代码识别器构建控制流程图，并执行控制流分析，数据流分析和约束执行，以便检测可执行代码。除了将检测到的可执行代码识别为潜在利用之外，然后可以使用检测到的可执行代码，以便生成潜在利用的签名，供其他系统用于检测利用。

2. 发明授权

US08464074B1 Storage media encryption with write acceleration 有权
标题翻译：存储介质加密与写入加速
公开(公告)号：US08464074B1
公开(公告)日：2013-06-11
申请号：US12434477
申请日：2009-05-01
申请人： Anand Parthasarathy , Chandra Sekhar Kondamuri , Ramkumar Chinchani , Gian Carlo Boffa , Maurilio Cometto
发明人： Anand Parthasarathy , Chandra Sekhar Kondamuri , Ramkumar Chinchani , Gian Carlo Boffa , Maurilio Cometto
IPC分类号： G06F11/30 , H04L12/50 , H04K1/00 , G06F15/167
CPC分类号： G06F11/3006 , G06F11/3055 , G06F11/3082 , G06F21/6209
摘要： Methods and apparatus for performing Storage Media Encryption (SME) are disclosed. In one embodiment, an apparatus includes a memory and a plurality of processors. The apparatus receives a write command from a network device. The apparatus sends a transfer ready to the network device in response to the write command. The apparatus receives data from the network device. The apparatus composes a status and sends the status the network device. The status is sent to the network device after the data has been received from the network device and prior to both compressing and encrypting the data. The apparatus compresses the data to generate compressed data. One of the plurality of processors encrypts the compressed data to generate modified data. The apparatus then sends the modified data to a target indicated by the write command.
摘要翻译：公开了用于执行存储介质加密（SME）的方法和装置。在一个实施例中，装置包括存储器和多个处理器。该设备从网络设备接收写命令。该装置响应写入命令向网络设备发送准备就绪。该设备从网络设备接收数据。该设备组成状态并发送网络设备的状态。在从网络设备接收到数据并且在压缩和加密数据之前，将状态发送到网络设备。该装置压缩数据以生成压缩数据。多个处理器中的一个处理器对压缩数据进行加密以生成修改的数据。然后，该装置将修改的数据发送到由写入命令指示的目标。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式