专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20110154472A1 SYSTEMS AND METHODS FOR PREVENTION OF JSON ATTACKS 有权
标题翻译：用于防止JSON攻击的系统和方法
公开(公告)号：US20110154472A1
公开(公告)日：2011-06-23
申请号：US12645913
申请日：2009-12-23
申请人： Craig Anderson , Anoop Reddy , Yariv Keinan
发明人： Craig Anderson , Anoop Reddy , Yariv Keinan
IPC分类号： G06F21/20 , G06F15/16
CPC分类号： H04L63/1408 , H04L63/0272 , H04L63/1441 , H04L63/166
摘要： Described herein is a method and system for prevention of personal computing attacks, such as JavaScript Objection Notation (JSON) attacks. An intermediary device is deployed between a plurality of clients and servers. A firewall executes on the intermediary device. A client sends a request to the server and the server sends a response to the request. The intermediary device intercepts the response and identifies that the response may contain possibly harmful content. The application firewall parses the content of the response and determines whether it contains any harmful content. If it does, the application firewall blocks the response from being sent to its destination. Additionally, the method and system can provide other security checks, such as content hijacking protection and data validation.
摘要翻译：这里描述了一种用于防止个人计算攻击（例如JavaScript异议符号（JSON））攻击的方法和系统。中间设备部署在多个客户端和服务器之间。防火墙在中间设备上执行。客户端向服务器发送请求，服务器向请求发送响应。中间设备拦截响应并识别响应可能包含可能有害的内容。应用程序防火墙解析响应的内容，并确定它是否包含任何有害的内容。如果是这样，应用程序防火墙阻止响应发送到其目的地。此外，该方法和系统可以提供其他安全检查，如内容劫持保护和数据验证。

2. 发明授权

US08640216B2 Systems and methods for cross site forgery protection 有权
标题翻译：跨站点防伪系统和方法
公开(公告)号：US08640216B2
公开(公告)日：2014-01-28
申请号：US12645924
申请日：2009-12-23
申请人： Craig Anderson , Anoop Reddy , Yariv Keinan
发明人： Craig Anderson , Anoop Reddy , Yariv Keinan
IPC分类号： G06F17/00 , H04L29/06
CPC分类号： G06F21/64 , G06F2221/2119 , H04L63/0209 , H04L63/0272 , H04L63/08 , H04L63/1466 , H04L63/1483
摘要： The present solution described herein is directed towards systems and methods to prevent cross-site request forgeries based on web form verification using unique identifiers. The present solution tags each form from a server that is served out in the response with a unique and unpredictable identifier. When the form is posted, the present solution enforces that the identifier being returned is the same as the one that was served out to the user. This prevents malicious unauthorized third party users from submitting a form on a user's behalf since they cannot guess the value of this unique identifier that was inserted.
摘要翻译：本文描述的本解决方案涉及用于使用唯一标识符基于web表单验证来防止跨站点请求伪造的系统和方法。本解决方案从响应中提供的具有唯一且不可预测的标识符的服务器标记每个表单。当表单发布时，本解决方案强制要返回的标识符与向用户提供的标识符相同。这样可以防止恶意的未经授权的第三方用户代表用户提交表单，因为他们无法猜测插入的唯一标识符的值。

3. 发明授权

US08413225B2 Systems and methods for management of common application firewall session data in a multiple core system 有权
标题翻译：在多核系统中管理通用应用防火墙会话数据的系统和方法
公开(公告)号：US08413225B2
公开(公告)日：2013-04-02
申请号：US12976678
申请日：2010-12-22
申请人： Craig Anderson , Anoop Reddy , Rajiv Mirani , Abhishek Chauhan
发明人： Craig Anderson , Anoop Reddy , Rajiv Mirani , Abhishek Chauhan
IPC分类号： H04L29/02
CPC分类号： H04L63/0227 , H04L63/168
摘要： The present invention is directed towards systems and methods for efficiently an intermediary device processing strings in web pages across a plurality of user sessions. A device intermediary to a plurality of clients and a server identifies a plurality of strings in forms and uniform resource locators (URLs) of web pages traversing the device across a plurality of user sessions. The device stores each string of the plurality of strings to one or more allocation arenas shared among a plurality of user session. Each string is indexed using a hash key generated from the string. The device recognizes that a received string transmitted from a webpage of a session of a user is eligible to be shared among the plurality of user sessions. The device determines that a copy of the received string is stored in an allocation arena using a hash generated from the received string. The device uses the copy of the received string stored in the allocation arena in place of the string in the web page of the session of the user to process the web page.
摘要翻译：本发明涉及用于在多个用户会话中有效地中间设备处理网页中的字符串的系统和方法。多个客户端的设备中介和服务器通过多个用户会话跨越该设备的网页的形式和统一的资源定位符（URL）来识别多个字符串。该设备将多个字符串的每个字符串存储在多个用户会话之间共享的一个或多个分配区域中。每个字符串都使用从字符串生成的哈希密钥进行索引。该设备识别出从用户的会话的网页发送的接收到的字符串有资格在多个用户会话之间共享。设备确定使用从接收到的字符串生成的散列来将所接收的字符串的副本存储在分配竞技场中。该设备使用存储在分配竞技场中的接收到的字符串的副本来代替用户的会话的网页中的字符串来处理网页。

4. 发明授权

US08438626B2 Systems and methods for processing application firewall session information on owner core in multiple core system 有权
标题翻译：用于处理多核心系统中所有者核心应用程序防火墙会话信息的系统和方法
公开(公告)号：US08438626B2
公开(公告)日：2013-05-07
申请号：US12645845
申请日：2009-12-23
申请人： Craig Anderson , Anoop Reddy , Rajiv Mirani , Abhishek Chauhan
发明人： Craig Anderson , Anoop Reddy , Rajiv Mirani , Abhishek Chauhan
IPC分类号： G06F9/00
CPC分类号： G06F9/54 , G06F21/41 , H04L63/0236 , H04L63/0272
摘要： The present invention is directed towards systems and methods for sharing session data among cores in a multi-core system. A first application firewall module executes on a core of a multi-core intermediary device which establishes a user session. The first application firewall module stores application firewall session data to memory accessible by the first core. A second application firewall module executes on a second core of the multi-core intermediary device. The second application firewall module receives a request from the user via the established user session. The request includes a session identifier identifying that the user session was established by the first core. The second application firewall module determines to perform one or more security checks on the request and communicates a portion of the request the first core. The second application firewall module receives and processes the security check results and instructions from the first core.
摘要翻译：本发明涉及用于在多核系统中的核之间共享会话数据的系统和方法。第一应用防火墙模块在建立用户会话的多核中间设备的核心上执行。第一个应用防火墙模块将应用程序防火墙会话数据存储到第一个内核可访问的存储器中第二应用防火墙模块在多核中间设备的第二核上执行。第二应用防火墙模块经由建立的用户会话从用户接收请求。该请求包括标识用户会话由第一核建立的会话标识符。第二应用防火墙模块确定对请求执行一个或多个安全检查，并将请求的一部分传送给第一核。第二个应用程序防火墙模块接收并处理来自第一个核心的安全检查结果和指令。

5. 发明申请

US20120173870A1 Systems and Methods for Multi-Level Tagging of Encrypted Items for Additional Security and Efficient Encrypted Item Determination 有权
标题翻译：用于附加安全性和高效加密项目确定的加密项目的多级标记的系统和方法
公开(公告)号：US20120173870A1
公开(公告)日：2012-07-05
申请号：US13337735
申请日：2011-12-27
申请人： Anoop Reddy , Craig Anderson
发明人： Anoop Reddy , Craig Anderson
IPC分类号： H04L29/06
CPC分类号： H04L63/0428 , G06F21/51 , G06F2221/2107 , H04L67/02 , H04L67/28
摘要： The present disclosure is directed towards systems and methods for performing multi-level tagging of encrypted items for additional security and efficient encrypted item determination. A device intercepts a message from a server to a client, parses the message and identifies a cookie. The device processes and encrypts the cookie. The device adds a flag to the cookie indicating the device encrypted the cookie. The device re-inserts the modified cookie into the message and transmits the message. The device intercepts a message from a client and determines whether the cookie in the message was encrypted by the device. If the message was not encrypted by the device, the device transmits the message to its destination. If the message was encrypted by the device, the device removes the flag, decrypts the cookie, removes the tag from the cookie, re-inserts the cookie into the message and transmits the message to its final destination.
摘要翻译：本公开涉及用于执行加密项目的多级标签以用于附加安全性和有效加密项目确定的系统和方法。设备拦截从服务器到客户端的消息，解析消息并识别cookie。设备处理和加密cookie。该设备向Cookie添加一个标志，指示设备加密了Cookie。设备将修改的cookie重新插入到消息中并发送消息。设备拦截来自客户端的消息，并确定消息中的cookie是否被设备加密。如果消息未被设备加密，则设备将消息发送到其目的地。如果消息被设备加密，设备将删除该标志，解密cookie，从cookie中删除该标签，将该cookie重新插入到该消息中，并将该消息发送到其最终目的地。

6. 发明申请

US20110154473A1 SYSTEMS AND METHODS FOR CROSS SITE FORGERY PROTECTION 有权
标题翻译：跨站保护的系统和方法
公开(公告)号：US20110154473A1
公开(公告)日：2011-06-23
申请号：US12645924
申请日：2009-12-23
申请人： Craig Anderson , Anoop Reddy , Yariv Keinan
发明人： Craig Anderson , Anoop Reddy , Yariv Keinan
IPC分类号： G06F21/20 , G06F15/16
CPC分类号： G06F21/64 , G06F2221/2119 , H04L63/0209 , H04L63/0272 , H04L63/08 , H04L63/1466 , H04L63/1483
摘要： The present solution described herein is directed towards systems and methods to prevent cross-site request forgeries based on web form verification using unique identifiers. The present solution tags each form from a server that is served out in the response with a unique and unpredictable identifier. When the form is posted, the present solution enforces that the identifier being returned is the same as the one that was served out to the user. This prevents malicious unauthorized third party users from submitting a form on a user's behalf since they cannot guess the value of this unique identifier that was inserted.
摘要翻译：本文描述的本解决方案涉及用于使用唯一标识符基于web表单验证来防止跨站点请求伪造的系统和方法。本解决方案从响应中提供的具有唯一且不可预测的标识符的服务器标记每个表单。当表单发布时，本解决方案强制要返回的标识符与向用户提供的标识符相同。这样可以防止恶意的未经授权的第三方用户代表用户提交表单，因为他们无法猜测插入的唯一标识符的值。

7. 发明授权

US09094435B2 Systems and methods for prevention of JSON attacks 有权
标题翻译：防止JSON攻击的系统和方法
公开(公告)号：US09094435B2
公开(公告)日：2015-07-28
申请号：US12645913
申请日：2009-12-23
申请人： Craig Anderson , Anoop Reddy , Yariv Keinan
发明人： Craig Anderson , Anoop Reddy , Yariv Keinan
IPC分类号： G06F12/14 , H04L29/06
CPC分类号： H04L63/1408 , H04L63/0272 , H04L63/1441 , H04L63/166
摘要： Described herein is a method and system for prevention of personal computing attacks, such as JavaScript Objection Notation (JSON) attacks. An intermediary device is deployed between a plurality of clients and servers. A firewall executes on the intermediary device. A client sends a request to the server and the server sends a response to the request. The intermediary device intercepts the response and identifies that the response may contain possibly harmful content. The application firewall parses the content of the response and determines whether it contains any harmful content. If it does, the application firewall blocks the response from being sent to its destination. Additionally, the method and system can provide other security checks, such as content hijacking protection and data validation.
摘要翻译：这里描述了一种用于防止个人计算攻击（例如JavaScript异议符号（JSON））攻击的方法和系统。中间设备部署在多个客户端和服务器之间。防火墙在中间设备上执行。客户端向服务器发送请求，服务器向请求发送响应。中间设备拦截响应并识别响应可能包含可能有害的内容。应用程序防火墙解析响应的内容，并确定它是否包含任何有害的内容。如果是这样，应用程序防火墙阻止响应发送到其目的地。此外，该方法和系统可以提供其他安全检查，如内容劫持保护和数据验证。

8. 发明授权

US08862870B2 Systems and methods for multi-level tagging of encrypted items for additional security and efficient encrypted item determination 有权
标题翻译：用于加密项目的多级标记的系统和方法，用于额外的安全性和高效的加密项目确定
公开(公告)号：US08862870B2
公开(公告)日：2014-10-14
申请号：US13337735
申请日：2011-12-27
申请人： Anoop Reddy , Craig Anderson
发明人： Anoop Reddy , Craig Anderson
IPC分类号： H04L9/32 , H04L21/00 , H04L29/06 , H04L29/08 , G06F21/51
CPC分类号： H04L63/0428 , G06F21/51 , G06F2221/2107 , H04L67/02 , H04L67/28
摘要： The present disclosure is directed towards systems and methods for performing multi-level tagging of encrypted items for additional security and efficient encrypted item determination. A device intercepts a message from a server to a client, parses the message and identifies a cookie. The device processes and encrypts the cookie. The device adds a flag to the cookie indicating the device encrypted the cookie. The device re-inserts the modified cookie into the message and transmits the message. The device intercepts a message from a client and determines whether the cookie in the message was encrypted by the device. If the message was not encrypted by the device, the device transmits the message to its destination. If the message was encrypted by the device, the device removes the flag, decrypts the cookie, removes the tag from the cookie, re-inserts the cookie into the message and transmits the message to its final destination.
摘要翻译：本公开涉及用于执行加密项目的多级标签以用于附加安全性和有效加密项目确定的系统和方法。设备拦截从服务器到客户端的消息，解析消息并识别cookie。设备处理和加密cookie。该设备向Cookie添加一个标志，指示设备加密了Cookie。设备将修改的cookie重新插入到消息中并发送消息。设备拦截来自客户端的消息，并确定消息中的cookie是否被设备加密。如果消息未被设备加密，则设备将消息发送到其目的地。如果消息被设备加密，设备将删除该标志，解密cookie，从cookie中删除该标签，将该cookie重新插入到该消息中，并将该消息发送到其最终目的地。

9. 发明申请

US20110154471A1 SYSTEMS AND METHODS FOR PROCESSING APPLICATION FIREWALL SESSION INFORMATION ON OWNER CORE IN MULTIPLE CORE SYSTEM 有权
标题翻译：用于处理多核心系统中所有者核心的应用程序防火墙会话信息的系统和方法
公开(公告)号：US20110154471A1
公开(公告)日：2011-06-23
申请号：US12645845
申请日：2009-12-23
申请人： Craig Anderson , Anoop Reddy , Rajiv Mirani , Abhishek Chauhan
发明人： Craig Anderson , Anoop Reddy , Rajiv Mirani , Abhishek Chauhan
IPC分类号： G06F17/00 , G06F9/00
CPC分类号： G06F9/54 , G06F21/41 , H04L63/0236 , H04L63/0272
摘要： The present invention is directed towards systems and methods for sharing session data among cores in a multi-core system. A first application firewall module executes on a core of a multi-core intermediary device which establishes a user session. The first application firewall module stores application firewall session data to memory accessible by the first core. A second application firewall module executes on a second core of the multi-core intermediary device. The second application firewall module receives a request from the user via the established user session. The request includes a session identifier identifying that the user session was established by the first core. The second application firewall module determines to perform one or more security checks on the request and communicates a portion of the request the first core. The second application firewall module receives and processes the security check results and instructions from the first core.
摘要翻译：本发明涉及用于在多核系统中的核之间共享会话数据的系统和方法。第一应用防火墙模块在建立用户会话的多核中间设备的核心上执行。第一个应用程序防火墙模块将应用程序防火墙会话数据存储到第一个内核可访问的存储器中。第二应用防火墙模块在多核中间设备的第二核上执行。第二应用防火墙模块经由建立的用户会话从用户接收请求。该请求包括标识用户会话由第一核建立的会话标识符。第二应用防火墙模块确定对请求执行一个或多个安全检查，并将请求的一部分传送给第一核。第二个应用程序防火墙模块接收并处理来自第一个核心的安全检查结果和指令。

10. 发明授权

US08473024B2 Flexible headset for sensing brain electrical activity 有权
标题翻译：灵敏的耳机，用于感应脑电活动
公开(公告)号：US08473024B2
公开(公告)日：2013-06-25
申请号：US12190232
申请日：2008-08-12
申请人： Elvir Causevic , Richard Comrie Watt , Craig Anderson , Martin Rathgeber
发明人： Elvir Causevic , Richard Comrie Watt , Craig Anderson , Martin Rathgeber
IPC分类号： A61B5/0478 , A61B5/0484
CPC分类号： A61B5/0484 , A61B5/0006 , A61B5/0478 , A61B5/6814 , A61B2562/164
摘要： A headset for detecting brain electrical activity is disclosed. The headset may have a flexible band having a first end and a second end. The flexible band may have at least one expansible region permitting a distance between the first end and the second end to selectably vary. The headset may also have flexible circuitry in the flexible band. The flexible circuitry may be operatively connected to at least one sensor configured to sense brain electrical activity. The headset may further have a stimulus emitter coupled to the flexible band.
摘要翻译：公开了一种用于检测脑电活动的耳机。耳机可以具有带有第一端和第二端的柔性带。柔性带可以具有允许第一端和第二端之间的距离可选择地变化的至少一个可扩张区域。头戴式耳机还可以在柔性带中具有灵活的电路。柔性电路可以可操作地连接到被配置为感测脑电活动的至少一个传感器。耳机还可以具有耦合到柔性带的刺激发射器。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式