专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US10116580B2 Seamless location aware network connectivity 有权
公开(公告)号：US10116580B2
公开(公告)日：2018-10-30
申请号：US12163046
申请日：2008-06-27
申请人： Ehud Mordechai Itshaki , Nir Nice , Eugene John Neystadt , Noam Gershon Ben-Yochanan
发明人： Ehud Mordechai Itshaki , Nir Nice , Eugene John Neystadt , Noam Gershon Ben-Yochanan
IPC分类号： G06F15/16 , H04L12/911 , H04W76/10
摘要： Described is a technology by which a seamless automatic connection to an (e.g., corporate) network is made for a client device. Upon detecting a need for a connection to a network, such as by intercepting a communication directed towards a network destination, a list of available connection methods is automatically obtained based on the device's current location data (e.g., LAN or remote) and policy information. An available connection method from the list is selected, e.g., in order, and an attempt is made to establish a connection via that connection method. If the attempt fails, another attempt is made with a different connection method, and so on, until a connection method succeeds. Additional seamlessness from the user's perspective is provided via a credentials vault, by which stored credentials may be retrieved and used in association with the access method being attempted.

2. 发明申请

US20090327497A1 SEAMLESS LOCATION AWARE NETWORK CONNECTIVITY 审中-公开
标题翻译：无缝位置识别网络连接
公开(公告)号：US20090327497A1
公开(公告)日：2009-12-31
申请号：US12163046
申请日：2008-06-27
申请人： Ehud Mordechai Itshaki , Nir Nice , Eugene John Neystadt , Noam Gershon Ben-Yochanan
发明人： Ehud Mordechai Itshaki , Nir Nice , Eugene John Neystadt , Noam Gershon Ben-Yochanan
IPC分类号： G06F15/16
CPC分类号： H04L47/70 , H04W76/10
摘要： Described is a technology by which a seamless automatic connection to an (e.g., corporate) network is made for a client device. Upon detecting a need for a connection to a network, such as by intercepting a communication directed towards a network destination, a list of available connection methods is automatically obtained based on the device's current location data (e.g., LAN or remote) and policy information. An available connection method from the list is selected, e.g., in order, and an attempt is made to establish a connection via that connection method. If the attempt fails, another attempt is made with a different connection method, and so on, until a connection method succeeds. Additional seamlessness from the user's perspective is provided via a credentials vault, by which stored credentials may be retrieved and used in association with the access method being attempted.
摘要翻译：描述了一种技术，通过该技术，为客户端设备进行到（例如，公司）网络的无缝自动连接。当检测到需要连接到网络时，例如通过截取针对网络目的地的通信，可以基于设备的当前位置数据（例如，LAN或远程）和策略信息自动获得可用连接方法的列表。从列表中选择可用的连接方法，例如按顺序，并且尝试通过该连接方法建立连接。如果尝试失败，则尝试使用不同的连接方法，等等，直到连接方法成功。通过凭证保险库来提供从用户的角度来看附加的无缝性，通过该证书保管库可以与尝试的访问方法相关联地检索和使用存储的凭证。

3. 发明授权

US10311105B2 Filtering queried data on data stores 有权
公开(公告)号：US10311105B2
公开(公告)日：2019-06-04
申请号：US12979467
申请日：2010-12-28
申请人： Nir Nice , Daniel Sitton , Dror Kremer , Michael Feldman
发明人： Nir Nice , Daniel Sitton , Dror Kremer , Michael Feldman
IPC分类号： G06F17/30 , G06F16/903 , G06F16/2453
摘要： A data set may be distributed over many data stores, and a query may be distributively evaluated by several data stores with the results combined to form a query result (e.g., utilizing a MapReduce framework). However, such architectures may violate security principles by performing sophisticated processing, including the execution of arbitrary code, on the same machines that store the data. Instead of processing queries, a data store may be configured only to receive requests specifying one or more filtering criteria, and to provide the data items satisfying the filtering criteria. A compute node may apply a query by generating a request including one or more filter criteria, providing the request to a data node, and applying the remainder of the query (including sophisticated processing, and potentially the execution of arbitrary code) to the data items provided by the data node, thereby improving the security and efficiency of query processing.

4. 发明授权

US09231964B2 Vulnerability detection based on aggregated primitives 有权
标题翻译：基于聚合原语的漏洞检测
公开(公告)号：US09231964B2
公开(公告)日：2016-01-05
申请号：US12423029
申请日：2009-04-14
申请人： David B. Cross , Nir Nice
发明人： David B. Cross , Nir Nice
IPC分类号： G06F11/00 , H04L29/06 , G06F21/57
CPC分类号： H04L63/1416 , G06F21/577
摘要： Methods, systems, and computer-readable media are disclosed for detecting vulnerabilities based on aggregated primitives. A particular method includes receiving a plurality of data transmissions. At least one of the data transmissions includes a protocol anomaly that is not indicative of a security threat. The method includes identifying a plurality of primitives associated with the data transmissions. The primitives are aggregated, and an attack condition is identified based on the aggregated primitives. A security alert is generated based on the identified attack condition.
摘要翻译：公开了用于基于聚合原语检测漏洞的方法，系统和计算机可读介质。一种特定方法包括接收多个数据传输。数据传输中的至少一个包括不指示安全威胁的协议异常。该方法包括识别与数据传输相关联的多个原语。原语被聚合，并且基于聚合的基元识别攻击条件。基于所识别的攻击条件生成安全警报。

5. 发明授权

US08874693B2 Service access using a service address 有权
标题翻译：使用服务地址进行服务访问
公开(公告)号：US08874693B2
公开(公告)日：2014-10-28
申请号：US12389402
申请日：2009-02-20
申请人： Nir Nice , Jeromy S. Statia , Samer J. Karim
发明人： Nir Nice , Jeromy S. Statia , Samer J. Karim
IPC分类号： G06F15/16 , H04L29/06 , H04W12/00 , H04L29/12
CPC分类号： H04W12/00 , H04L61/2046 , H04L61/2084 , H04L61/6059 , H04L63/10 , H04L63/164 , H04L63/20 , H04L69/167
摘要： A method is disclosed that includes assigning a service address to a service of a private network. The service of the private network is accessible, via a gateway, by a client computer. The method also includes turning off duplicate address detection at the gateway. The gateway is associated with a public network address that is different from the service address.
摘要翻译：公开了一种方法，其包括将服务地址分配给专用网络的服务。私有网络的服务可以通过网关由客户端计算机访问。该方法还包括关闭网关上的重复地址检测。网关与不同于服务地址的公共网络地址相关联。

6. 发明授权

US08839390B2 Grouping personal accounts to tailor a web service 有权
标题翻译：分组个人帐户以定制Web服务
公开(公告)号：US08839390B2
公开(公告)日：2014-09-16
申请号：US13042817
申请日：2011-03-08
申请人： Joshua C. Zana , David R. Reed , Matthew J. Pope , Shyam S. Habarakada , Boyd Cannon Multerer , Nir Nice , Todd R. Manion , Melissa W. Dunn
发明人： Joshua C. Zana , David R. Reed , Matthew J. Pope , Shyam S. Habarakada , Boyd Cannon Multerer , Nir Nice , Todd R. Manion , Melissa W. Dunn
IPC分类号： G06F7/04 , H04L29/08
CPC分类号： H04L67/306 , G06Q30/0269 , G06Q30/0631 , H04L67/02
摘要： Grouping personal accounts to tailor a web service may be accomplished by grouping information from two or more personal accounts. In some embodiments, a personal account may include a set of persons. By grouping personal accounts, a service provider may tailor a web service to multiple people based on information about those people.
摘要翻译：将个人帐户分组以定制Web服务可以通过分组来自两个或更多个人帐户的信息来实现。在一些实施例中，个人帐户可以包括一组人。通过分组个人帐户，服务提供商可以根据关于这些人的信息为多个人定制web服务。

7. 发明授权

US08433064B2 Secret encryption with public or delegated comparison 有权
标题翻译：秘密加密与公开或委托比较
公开(公告)号：US08433064B2
公开(公告)日：2013-04-30
申请号：US12637811
申请日：2009-12-15
申请人： Nir Nice , Yacov Yacobi
发明人： Nir Nice , Yacov Yacobi
IPC分类号： H04L29/06
CPC分类号： H04L9/002 , H04L9/3066 , H04L2209/08
摘要： Described is a technology comprising a system in which two distrusting parties can submit sets of encrypted keywords using two independent secret keys to a third party who can decide, using only public keys, if the underlying cleartext message of a cryptogram produced by one distrusting party matches that of a cryptogram produced by the other. The third party (e.g., a server) uses generator information corresponding to a generator of an elliptic curve group to determine whether the sets of encrypted keywords match each other. Various ways to provide the generator information based upon the generator are described. Also described is the use of one-ray randomization and two-way randomization as part of the system to protect against dictionary attacks.
摘要翻译：描述了一种技术，其包括一种系统，其中两个不信任方可以使用两个独立的秘密密钥向第三方提交一组加密的关键字，该第三方可以仅使用公钥来决定如果由一个不信任方产生的密码的底层明文消息匹配另一个密码产生的密码。第三方（例如，服务器）使用与椭圆曲线组的生成器相对应的生成器信息来确定加密关键字的集合是否彼此匹配。描述了基于发电机提供发电机信息的各种方式。还描述了使用单线随机化和双向随机化作为系统的一部分来防止字典攻击。

8. 发明申请

US20090254984A1 HARDWARE INTERFACE FOR ENABLING DIRECT ACCESS AND SECURITY ASSESSMENT SHARING 有权
标题翻译：实现直接访问和安全评估共享的硬件接口
公开(公告)号：US20090254984A1
公开(公告)日：2009-10-08
申请号：US12144863
申请日：2008-06-24
申请人： Nir Nice , Lee F. Walker
发明人： Nir Nice , Lee F. Walker
IPC分类号： H04L9/00 , G06F15/16
CPC分类号： H04L63/0485
摘要： Native IPv6 capabilities are provided to an IPv4 network node, device, or endpoint using a hardware interface that supports network communication under a Direct Access model. The Direct Access model supports IPv6 communication with IPsec and enforces Network Access Protection (“NAP”) health requirement policies for endpoints that are network clients. A Direct Access-ready server is enabled using a hardware interface that implements IPv4 to IPv6 translation and optionally IPsec termination capability. A Direct Access-ready client is enabled using a hardware interface that implements IPv4 to IPv6 translation, IPsec termination capability, and which optionally provides NAP (Network Access Protection) capabilities for Direct Access-ready clients that are configured as mobile information appliances. The hardware interface may be implemented as a network interface card (“NIC”) or as a chipset.
摘要翻译：本地IPv6功能使用支持直接访问模式下的网络通信的硬件接口提供给IPv4网络节点，设备或端点。直接访问模式支持与IPsec的IPv6通信，并对作为网络客户端的端点实施网络访问保护（“NAP”）健康要求策略。使用实现IPv4到IPv6转换和可选的IPsec终止功能的硬件接口启用直接访问就绪服务器。使用实现IPv4到IPv6转换，IPsec终止功能的硬件接口启用直接访问就绪客户端，并且可选地为配置为移动信息设备的直接访问就绪客户端提供NAP（网络访问保护）功能。硬件接口可以实现为网络接口卡（“NIC”）或芯片组。

9. 发明申请

US20090178131A1 GLOBALLY DISTRIBUTED INFRASTRUCTURE FOR SECURE CONTENT MANAGEMENT 审中-公开
标题翻译：全球分布式基础设施，用于安全内容管理
公开(公告)号：US20090178131A1
公开(公告)日：2009-07-09
申请号：US12164078
申请日：2008-06-29
申请人： Efim Hudis , Yigal Edery , Oleg Ananiev , Nir Nice , John F. Wohlfert
发明人： Efim Hudis , Yigal Edery , Oleg Ananiev , Nir Nice , John F. Wohlfert
IPC分类号： G06F21/00
CPC分类号： G06F21/56 , G06F16/9535 , G06F21/55 , G06F21/629 , G06F2221/2115 , G06F2221/2141 , G06F2221/2149 , G06F2221/2151 , G06Q30/0204 , G06Q30/0215 , H04L63/0281 , H04L63/14 , H04L63/20
摘要： Secure content management is enabled as a cloud-based service through which security protection and policy enforcement may be implemented for both on-premise network users and roaming users. The global SCM service integrates the security functionalities—such as anti-virus, spyware and phishing protection, firewall, intrusion detection, centralized management, and the like—that are typically provided by enterprise network SCM appliance hardware or servers into a cloud-based service that users reach via Internet-based points-of-presence (“POPs”). The POPs are configured with forward proxy servers, and in some implementations, caching and network acceleration components, and coupled to hubs which provide configuration management and identity management services such as active directory services.
摘要翻译：启用安全内容管理作为基于云的服务，通过该服务可以为内部部署的网络用户和漫游用户实施安全保护和策略强制。全球SCM服务将通常由企业网络SCM设备硬件或服务器提供的安全功能（如防病毒，间谍软件和网络钓鱼保护，防火墙，入侵检测，集中管理等）集成到基于云的服务中用户通过基于互联网的在线点（“POPs”）进行访问。 POP被配置有转发代理服务器，并且在一些实现中，缓存和网络加速组件，并且耦合到提供诸如主动目录服务的配置管理和身份管理服务的集线器。

10. 发明申请

US20090094263A1 ENHANCED UTILIZATION OF NETWORK BANDWIDTH FOR TRANSMISSION OF STRUCTURED DATA 审中-公开
标题翻译：用于传输结构化数据的网络带宽的增强利用
公开(公告)号：US20090094263A1
公开(公告)日：2009-04-09
申请号：US11867100
申请日：2007-10-04
申请人： Tomer Shiran , Nir Nice , Itai Almog , Adar Greenshpon
发明人： Tomer Shiran , Nir Nice , Itai Almog , Adar Greenshpon
IPC分类号： G06F17/30
CPC分类号： H04L69/04 , H04L67/02 , H04L67/28 , H04L67/2828
摘要： Systems and methods are described that improve the efficiency of byte caching mechanisms when transmitting or receiving structured data. Some of these techniques may normalize the structured data before transmission over the network. Other techniques may use templates or semantic differences.
摘要翻译：描述了系统和方法，用于在发送或接收结构化数据时提高字节缓存机制的效率。这些技术中的一些可以在通过网络传输之前规范化结构化数据。其他技术可能使用模板或语义差异。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式