专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20160099953A1 APPLICATION ATTACK MONITORING 有权
标题翻译：应用攻击监控
公开(公告)号：US20160099953A1
公开(公告)日：2016-04-07
申请号：US14506991
申请日：2014-10-06
申请人： Cedric Hebert , Mohammad Ashiqur Rahaman , Michael Vogel
发明人： Cedric Hebert , Mohammad Ashiqur Rahaman , Michael Vogel
IPC分类号： H04L29/06
CPC分类号： H04L63/1416 , H04L63/1433
摘要： Implementations of the present disclosure include methods, systems, and computer-readable storage mediums for providing application attack monitoring. Actions can include: obtaining a security graph model associated with an attack vulnerability of a distributed application, the security graph model comprising a plurality of rule parts; screening log data obtained by a plurality of connectors to selectively obtain relevant log data corresponding to one or more of the rule parts, each connector being in communication with a respective components of the distributed application; evaluating the relevant log data based on the security graph model to provide an evaluation score; and in response to determining that the evaluation score is greater than a predetermined threshold, providing output indicating an attack on the distributed application.
摘要翻译：本公开的实现包括用于提供应用程序攻击监视的方法，系统和计算机可读存储介质。操作可以包括：获得与分布式应用的攻击脆弱性相关联的安全图模型，所述安全图模型包括多个规则部分; 筛选由多个连接器获得的日志数据，以选择性地获得对应于一个或多个规则部分的相关日志数据，每个连接器与分布式应用的相应部件通信; 基于安全图模型评估相关日志数据以提供评估分数; 并且响应于确定所述评估分数大于预定阈值，提供指示对所述分布式应用的攻击的输出。

2. 发明授权

US09350749B2 Application attack monitoring 有权
标题翻译：应用程序攻击监控
公开(公告)号：US09350749B2
公开(公告)日：2016-05-24
申请号：US14506991
申请日：2014-10-06
申请人： Cedric Hebert , Mohammad Ashiqur Rahaman , Michael Vogel
发明人： Cedric Hebert , Mohammad Ashiqur Rahaman , Michael Vogel
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00 , H04L29/06
CPC分类号： H04L63/1416 , H04L63/1433
摘要： Implementations of the present disclosure include methods, systems, and computer-readable storage mediums for providing application attack monitoring. Actions can include: obtaining a security graph model associated with an attack vulnerability of a distributed application, the security graph model comprising a plurality of rule parts; screening log data obtained by a plurality of connectors to selectively obtain relevant log data corresponding to one or more of the rule parts, each connector being in communication with a respective components of the distributed application; evaluating the relevant log data based on the security graph model to provide an evaluation score; and in response to determining that the evaluation score is greater than a predetermined threshold, providing output indicating an attack on the distributed application.
摘要翻译：本公开的实现包括用于提供应用程序攻击监视的方法，系统和计算机可读存储介质。操作可以包括：获得与分布式应用的攻击脆弱性相关联的安全图模型，所述安全图模型包括多个规则部分; 筛选由多个连接器获得的日志数据，以选择性地获得对应于一个或多个规则部分的相关日志数据，每个连接器与分布式应用的相应部件通信; 基于安全图模型评估相关日志数据以提供评估分数; 并且响应于确定所述评估分数大于预定阈值，提供指示对所述分布式应用的攻击的输出。

3. 发明申请

US20140372927A1 Providing Visualization of System Architecture 审中-公开
标题翻译：提供系统架构的可视化
公开(公告)号：US20140372927A1
公开(公告)日：2014-12-18
申请号：US13918101
申请日：2013-06-14
申请人： Cedric Hebert , Wihem Arsac , Gilles Montagnon , Jakub Sendor , Elton Mathias
发明人： Cedric Hebert , Wihem Arsac , Gilles Montagnon , Jakub Sendor , Elton Mathias
IPC分类号： G06F3/0484
CPC分类号： G06F3/0484 , G06F9/451 , H04L41/22 , H04L43/0817
摘要： Techniques for managing a display of a system architecture include displaying a first visual representation of the system architecture that includes respective virtual representations of at least two components of the system architecture at a first level of detail; displaying a first virtual representation of a semantically relevant connector that extends between the two components of the system architecture at the first level of detail; receiving a request from a user to display a second visual representation of the system architecture; and generating a second visual representation of the system architecture for display, that includes respective virtual representations of the at least two components of the system architecture at a second level of detail different than the first level of detail, and a second virtual representation of the semantically relevant connector that extends between the at least two components of the system architecture at the second level of detail.
摘要翻译：用于管理系统架构的显示器的技术包括以第一级详细显示包括系统架构的至少两个组件的相应虚拟表示的系统体系结构的第一视觉表示; 显示在第一级细节上在系统架构的两个组件之间延伸的语义相关连接器的第一虚拟表示; 接收来自用户的请求以显示所述系统架构的第二视觉表示; 以及生成用于显示的系统架构的第二视觉表示，其包括不同于第一细节级别的第二细节级别的系统架构的至少两个组件的相应虚拟表示，以及语义的第二虚拟表示相关连接器，其在第二级细节上在系统架构的至少两个部件之间延伸。

4. 发明授权

US07673141B2 Client authentication using a challenge provider 有权
标题翻译：使用挑战提供商进行客户端身份验证
公开(公告)号：US07673141B2
公开(公告)日：2010-03-02
申请号：US10959102
申请日：2004-10-07
申请人： Roger Kilian-Kehr , Jochen Haller , Laurent Gomez , Cedric Hebert
发明人： Roger Kilian-Kehr , Jochen Haller , Laurent Gomez , Cedric Hebert
IPC分类号： H04L9/32
CPC分类号： H04L63/0869
摘要： A system for providing secured access to an application service includes a challenge provider that uses a first cryptographic technique to provide a challenge to a client seeking access to an application service. The client uses a second cryptographic technique to generate a response, and provides the response to an authentication service. The authentication service grants the client access to the application service only if the challenge and response are authenticated using a first authentication technique complementary to the first cryptographic technique and a second authentication technique complementary to the second cryptographic technique, respectively.
摘要翻译：用于提供对应用服务的安全访问的系统包括使用第一密码技术向寻求对应用服务的访问的客户端提供挑战的挑战提供商。客户端使用第二密码技术生成响应，并向认证服务提供响应。认证服务只有在使用与第一密码技术互补的第一认证技术和补充第二密码技术的第二认证技术来认证质询和响应时，授予客户端对应用服务器的访问。

5. 发明申请

US20070143403A1 Method and system for automatically controlling forum posting 审中-公开
标题翻译：自动控制论坛发帖的方法和系统
公开(公告)号：US20070143403A1
公开(公告)日：2007-06-21
申请号：US11639989
申请日：2006-12-15
申请人： Cedric Ulmer , Laurent Gomez , Cedric Hebert , Pascal Spadone
发明人： Cedric Ulmer , Laurent Gomez , Cedric Hebert , Pascal Spadone
IPC分类号： G06F15/16
CPC分类号： G06F17/277 , H04L12/1822 , H04L63/0227
摘要： A method, for automatically controlling a data submission in a forum, the control being based on the respective data content, comprises: the data content submitted by a user for the forum is automatically parsed with respect to specifically selected characters, the selected characters being provided together with respective selection ancillary information, if any selected character is found within the data content, the respective selection ancillary information is analyzed, the data is handled conformable with the analyzed respective selection ancillary information, an answer for the user is elaborated, the answer including the respective found character together with an appropriate analysis of its selection ancillary information and informing the user about the manner the data is handled, and the elaborated answer is communicated to the user.
摘要翻译：一种用于在论坛中自动控制数据提交的方法，所述控件基于相应的数据内容，包括：由用户为论坛提交的数据内容相对于特定选择的字符被自动解析，所提供的所选字符以及相应的选择辅助信息，如果在数据内容中找到任何所选择的字符，则分析各个选择辅助信息，处理数据与所分析的各个选择辅助信息一致，详细说明用户的答案，答案包括各自发现的字符以及其选择辅助信息的适当分析，并向用户通知数据的处理方式，并将详细的答案传达给用户。

6. 发明申请

US20050154741A1 Methods and computer systems for workflow management 审中-公开
标题翻译：用于工作流管理的方法和计算机系统
公开(公告)号：US20050154741A1
公开(公告)日：2005-07-14
申请号：US10980273
申请日：2004-11-04
申请人： Cedric Hebert , Roger Kilian-Kehr
发明人： Cedric Hebert , Roger Kilian-Kehr
IPC分类号： G06Q10/00 , G06F7/00
CPC分类号： G06Q10/06
摘要： Methods and computer systems are provided for workflow management. A workflow engine may be provided that creates workflow items. Each workflow item may include a self descriptive part that specifies details for generating a device independent representations of a corresponding workflow item. Further, a workflow manager may be provided that generates the device independent representation based on the self descriptive part.
摘要翻译：提供方法和计算机系统用于工作流管理。可以提供创建工作流项目的工作流引擎。每个工作流项目可以包括自描述部分，其指定用于生成对应工作流项目的设备独立表示的细节。此外，可以提供基于自描述部分生成设备独立表示的工作流管理器。

7. 发明授权

US09047490B2 Method and a system for secure execution of workflow tasks in a distributed workflow management system within a decentralized network system 有权
公开(公告)号：US09047490B2
公开(公告)日：2015-06-02
申请号：US12098012
申请日：2008-04-04
申请人： Frederic Montagut , Laurent Gomez , Cedric Hebert , Cedric Ulmer
发明人： Frederic Montagut , Laurent Gomez , Cedric Hebert , Cedric Ulmer
IPC分类号： G06F15/16 , G06F21/64 , G06F21/62
CPC分类号： G06F21/64 , G06F21/62 , G06F21/6209
摘要： There are provided a method, a system and an initiator server for a secure execution of workflow tasks of a workflow to be executed according to a given execution pattern in a distributed workflow management system within a decentralized network system with a plurality of servers (b0, b1, . . . , bn) including at least an initiator server and at least a number of groups of servers of the plurality of servers. Each group satisfies a policy (poli) of a vertex, and thus, knows a corresponding policy key pair including a policy private key (SKpoli) and a policy public key (PKpoli), respectively. Each vertex denotes a set of workflow tasks to be executed in accord with the execution pattern and is assigned a vertex key pair including a vertex private key and a vertex public key. The vertex private keys and the policy public keys are jointly encrypted within a first onion structure, the first onion structure being built up of a number of onion layers representing the execution pattern which defines a succession of vertices such that each layer is decryptable by using the policy private key of exactly one vertex thus revealing the corresponding vertex private key.

8. 发明申请

US20130262397A1 SECURE AND RELIABLE REMOTE DATA PROTECTION 审中-公开
标题翻译：安全可靠的远程数据保护
公开(公告)号：US20130262397A1
公开(公告)日：2013-10-03
申请号：US13431579
申请日：2012-03-27
申请人： Cedric Hebert
发明人： Cedric Hebert
IPC分类号： G06F17/30
CPC分类号： G06F21/6272 , G06F11/1076 , G06F16/188 , G06F21/6236
摘要： A virtual file system may be used to determine a data file, and a splitter may then split the data file into at least a first portion and a second portion, and may provide a parity file using the first portion and the second portion. Any two of the first portion, the second portion, and the parity file include sufficient information to reconstruct the data file. A dispatcher may then distribute the first portion, the second portion, and the parity file for individual storage thereof using at least three separate storage locations.
摘要翻译：可以使用虚拟文件系统来确定数据文件，并且分割器然后可以将数据文件分割成至少第一部分和第二部分，并且可以使用第一部分和第二部分提供奇偶校验文件。第一部分，第二部分和奇偶校验文件中的任何两个包括足以重建数据文件的信息。然后，调度员可以使用至少三个单独的存储位置来分配第一部分，第二部分和奇偶校验文件以进行其个体存储。

9. 发明申请

US20120042364A1 PASSWORD PROTECTION TECHNIQUES USING FALSE PASSWORDS 有权
标题翻译：使用虚假密码的密码保护技术
公开(公告)号：US20120042364A1
公开(公告)日：2012-02-16
申请号：US12857066
申请日：2010-08-16
申请人： Cedric Hebert
发明人： Cedric Hebert
IPC分类号： G06F21/20
CPC分类号： G06F21/554 , G06F21/46
摘要： A password manager may receive a password, and a false password generator may generate at least one false password, based on the password. A false password selector may store the at least one false password together with the password. A password handler may receive a login attempt that includes the at least one false password, and an attack detector may determine that the login attempt is potentially unauthorized, based on the receipt of the at least one false password.
摘要翻译：密码管理器可以接收密码，并且虚假密码生成器可以基于密码生成至少一个虚假密码。虚假密码选择器可以与密码一起存储至少一个假密码。密码处理程序可以接收包括至少一个假密码的登录尝试，并且攻击检测器可以基于接收到至少一个虚假密码来确定登录尝试是潜在的未授权的。

10. 发明申请

US20090077376A1 Method and a system for secure execution of workflow tasks in a distributed workflow management system within a decentralized network system 有权
标题翻译：用于在分散式网络系统内的分布式工作流管理系统中安全执行工作流任务的方法和系统
公开(公告)号：US20090077376A1
公开(公告)日：2009-03-19
申请号：US12098012
申请日：2008-04-04
申请人： Frederic Montagut , Laurent Gomez , Cedric Hebert , Cedric Ulmer
发明人： Frederic Montagut , Laurent Gomez , Cedric Hebert , Cedric Ulmer
IPC分类号： H04L9/30 , H04L9/08 , H04L9/32
CPC分类号： G06F21/64 , G06F21/62 , G06F21/6209
摘要： There are provided a method, a system and an initiator server for a secure execution of workflow tasks of a workflow to be executed according to a given execution pattern in a distributed workflow management system within a decentralized network system with a plurality of servers (b0, b1, . . . , bn) including at least an initiator server and at least a number of groups of servers of the plurality of servers. Each group satisfies a policy (poli) of a vertex, and thus, knows a corresponding policy key pair including a policy private key (SKpoli) and a policy public key (PKpoli), respectively. Each vertex denotes a set of workflow tasks to be executed in accord with the execution pattern and is assigned a vertex key pair including a vertex private key and a vertex public key. The vertex private keys and the policy public keys are jointly encrypted within a first onion structure, the first onion structure being built up of a number of onion layers representing the execution pattern which defines a succession of vertices such that each layer is decryptable by using the policy private key of exactly one vertex thus revealing the corresponding vertex private key.
摘要翻译：提供了一种方法，系统和发起者服务器，用于在具有多个服务器的分散式网络系统内的分布式工作流管理系统中根据给定的执行模式执行要执行的工作流的工作流任务的安全执行（b0， b1，...，bn）至少包括发起者服务器和所述多个服务器中的至少多个服务器组。每个组满足顶点的策略（poli），并且因此分别知道包括策略私钥（SKpoli）和策略公钥（PKpoli）的相应策略密钥对。每个顶点表示要根据执行模式执行的一组工作流任务，并分配一个包括顶点私钥和顶点公钥的顶点密钥对。顶点私钥和策略公钥在第一洋葱结构内共同加密，第一洋葱结构由多个洋葱层构成，表示执行模式，其定义了一系列顶点，使得每个层可通过使用恰好一个顶点的策略私钥因此显示相应的顶点私钥。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式