专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09208321B2 Method for administration of computer security threat countermeasures to a computer system 有权
标题翻译：计算机系统的计算机安全威胁对策管理方法
公开(公告)号：US09208321B2
公开(公告)日：2015-12-08
申请号：US12116256
申请日：2008-05-07
申请人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
发明人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
IPC分类号： G06F11/00 , G06F21/57 , G06F21/55
CPC分类号： G06F21/577 , G06F21/552
摘要： A countermeasure for a computer security threat to a computer system is administered by establishing a baseline identification of an operating or application system type and an operating or application system release level for the computer system that is compatible with a Threat Management Vector (TMV). A TMV is then received, including therein a first field that provides identification of at least one operating system type that is affected by a computer security threat, a second field that provides identification of an operating system release level for the operating system type, and a third field that provides identification of a set of possible countermeasures for an operating system type and an operating system release level. Countermeasures that are identified in the TMV are processed if the TMV identifies the operating system type and operating system release level for the computer system as being affected by the computer security threat. The received TMV may be mutated to a format for processing of the countermeasure.
摘要翻译：通过建立与威胁管理向量（TMV）兼容的计算机系统的操作或应用程序系统类型以及操作或应用程序系统发布级别来管理对计算机系统的计算机安全威胁的对策。然后接收TMV，其中包括提供受计算机安全威胁影响的至少一个操作系统类型的标识的第一字段，提供操作系统类型的操作系统释放级别的标识的第二字段，以及第三字段，其提供对操作系统类型和操作系统释放级别的一组可能的对策的标识。如果TMV将计算机系统的操作系统类型和操作系统发行级别识别为受计算机安全威胁影响，则会处理TMV中识别的对策。所接收的TMV可以被突变成用于处理对策的格式。

2. 发明申请

US20090328206A1 Method for Adminstration of Computer Security Threat Countermeasures to a Computer System 有权
标题翻译：计算机系统的计算机安全威胁对策管理方法
公开(公告)号：US20090328206A1
公开(公告)日：2009-12-31
申请号：US12116256
申请日：2008-05-07
申请人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
发明人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
IPC分类号： G06F11/00
CPC分类号： G06F21/577 , G06F21/552
摘要： A countermeasure for a computer security threat to a computer system is administered by establishing a baseline identification of an operating or application system type and an operating or application system release level for the computer system that is compatible with a Threat Management Vector (TMV). A TMV is then received, including therein a first field that provides identification of at least one operating system type that is affected by a computer security threat, a second field that provides identification of an operating system release level for the operating system type, and a third field that provides identification of a set of possible countermeasures for an operating system type and an operating system release level. Countermeasures that are identified in the TMV are processed if the TMV identifies the operating system type and operating system release level for the computer system as being affected by the computer security threat. The received TMV may be mutated to a format for processing of the countermeasure.
摘要翻译：通过建立与威胁管理向量（TMV）兼容的计算机系统的操作或应用程序系统类型以及操作或应用程序系统发布级别来管理对计算机系统的计算机安全威胁的对策。然后接收TMV，其中包括提供受计算机安全威胁影响的至少一个操作系统类型的标识的第一字段，提供操作系统类型的操作系统释放级别的标识的第二字段，以及第三字段，其提供对操作系统类型和操作系统释放级别的一组可能的对策的标识。如果TMV将计算机系统的操作系统类型和操作系统发行级别识别为受计算机安全威胁影响，则会处理TMV中识别的对策。所接收的TMV可以被突变成用于处理对策的格式。

3. 发明授权

US07370345B2 Domain controlling systems, methods and computer program products for administration of computer security threat countermeasures to a domain of target computer systems 有权
标题翻译：域控制系统，方法和计算机程序产品，用于管理计算机安全威胁对策到目标计算机系统的一个领域
公开(公告)号：US07370345B2
公开(公告)日：2008-05-06
申请号：US10791560
申请日：2004-03-02
申请人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
发明人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
IPC分类号： G06F17/30 , G06F17/00
CPC分类号： G06F21/577 , G06F2221/2101 , G06F2221/2149 , G06F2221/2151 , H04L63/1433
摘要： A threat management domain controller is responsive to a computer-actionable threat management vector that includes a first computer-readable field that provides identification of at least one system type that is affected by a computer security threat, a second computer-readable field that provides identification of a release level for the system type and a third computer-readable field that provides identification of a set of possible countermeasures for a system type and release level. The threat management domain controller processes a threat management vector that is received for use by a domain of target computer systems, and transmits the threat management vector that has been processed to at least one of the target computer systems in the domain of target computer systems.
摘要翻译：威胁管理域控制器响应于计算机可执行的威胁管理向量，其包括提供对受计算机安全威胁影响的至少一种系统类型的标识的第一计算机可读字段，提供识别的第二计算机可读域的系统类型的释放级别和第三计算机可读字段，其提供用于系统类型和释放级别的一组可能的对策的标识。威胁管理域控制器处理被接收以供目标计算机系统的域使用的威胁管理向量，并将已处理的威胁管理向量传输到目标计算机系统域中的至少一个目标计算机系统。

4. 发明授权

US07386883B2 Systems, methods and computer program products for administration of computer security threat countermeasures to a computer system 有权
标题翻译：用于管理计算机安全威胁的系统，方法和计算机程序产品对计算机系统的对策
公开(公告)号：US07386883B2
公开(公告)日：2008-06-10
申请号：US10624158
申请日：2003-07-22
申请人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
发明人： Jeffrey S. Bardsley , Ashley A. Brock , Charles K. Davis, III , Nathaniel W. Kim , John J. McKenna , Carlos F. Villegas
IPC分类号： G06F11/00
CPC分类号： G06F21/577 , G06F21/552
摘要： A countermeasure for a computer security threat to a computer system is administered by establishing a baseline identification of an operating or application system type and an operating or application system release level for the computer system that is compatible with a Threat Management Vector (TMV). A TMV is then received, including therein a first field that provides identification of at least one operating system type that is affected by a computer security threat, a second field that provides identification of an operating system release level for the operating system type, and a third field that provides identification of a set of possible countermeasures for an operating system type and an operating system release level. Countermeasures that are identified in the TMV are processed if the TMV identifies the operating system type and operating system release level for the computer system as being affected by the computer security threat. The received TMV may be mutated to a format for processing of the countermeasure.
摘要翻译：通过建立与威胁管理向量（TMV）兼容的计算机系统的操作或应用程序系统类型以及操作或应用程序系统发布级别来管理对计算机系统的计算机安全威胁的对策。然后接收TMV，其中包括提供受计算机安全威胁影响的至少一个操作系统类型的标识的第一字段，提供操作系统类型的操作系统释放级别的标识的第二字段，以及第三字段，其提供对操作系统类型和操作系统释放级别的一组可能的对策的标识。如果TMV将计算机系统的操作系统类型和操作系统发行级别识别为受计算机安全威胁影响，则会处理TMV中识别的对策。所接收的TMV可以被突变成用于处理对策的格式。

5. 发明授权

US08458793B2 Methods, computer program products and data structures for intrusion detection, intrusion response and vulnerability remediation across target computer systems 有权
标题翻译：方法，计算机程序产品和数据结构，用于入侵检测，入侵响应和目标计算机系统中的漏洞补救
公开(公告)号：US08458793B2
公开(公告)日：2013-06-04
申请号：US10890798
申请日：2004-07-13
申请人： John J. McKenna
发明人： John J. McKenna
IPC分类号： G06F11/00
CPC分类号： G06F21/55 , G06F21/577
摘要： Computer security threat management information is generated by receiving a notification of a security threat and/or a notification of a test that detects intrusion of a computer security threat. A computer-actionable TMV is generated from the notification that was received. The TMV includes a computer-readable field that provides identification of at least one system type that is effected by the computer security threat, a computer-readable field that provides identification of a release level for a system type, and a computer-readable field that provides identification of the test that detects intrusion of the computer security threat for a system type and a release level, a computer-readable field that provides identification of a method to reverse the intrusion exploit of the computer security threat for a system type and a release level, and a computer-readable field that provides identification of a method to remediate the vulnerability subject to exploit of the computer security threat for a system type and a release level. The TMV is transmitted to target systems for processing by the target systems.
摘要翻译：计算机安全威胁管理信息是通过接收安全威胁的通知和/或检测入侵计算机安全威胁的测试的通知来生成的。计算机可操作的TMV是从收到的通知生成的。 TMV包括提供由计算机安全威胁影响的至少一种系统类型的识别的计算机可读字段，提供用于系统类型的发布级别的标识的计算机可读字段以及计算机可读字段，该计算机可读字段提供检测对系统类型和发行级别的计算机安全威胁的入侵的测试的识别，计算机可读字段，其提供用于反转用于系统类型和发行版的计算机安全威胁的入侵利用的方法的标识级别和计算机可读字段，其提供用于修复受到系统类型和发布级别的计算机安全威胁的利用的易受攻击的方法的标识。 TMV被传送到目标系统进行目标系统的处理。

6. 发明申请

US20080263664A1 METHOD OF INTEGRATING A SECURITY OPERATIONS POLICY INTO A THREAT MANAGEMENT VECTOR 有权
标题翻译：将安全运行政策纳入威胁管理向量的方法
公开(公告)号：US20080263664A1
公开(公告)日：2008-10-23
申请号：US11736068
申请日：2007-04-17
申请人： John J. McKenna
发明人： John J. McKenna
IPC分类号： G06F12/14
CPC分类号： H04L63/1408 , G06F21/577 , G06F2221/2101 , H04L63/20
摘要： The invention relates to the integration of a security operations policy into a threat management vector. In one embodiment, a method according to the invention includes receiving at least one threat management vector (TMV) from a TMV generator, the TMV including a root vulnerability vector, at least one system vector, at least one system level vector, and a countermeasures payload including intrusion detection countermeasures (IDC), intrusion response countermeasures (IRC), and vulnerability remediation countermeasures (VRC); forwarding to the TMDC a TMV including only the root vulnerability vector, the at least one system vector, and the at least one system level vector; propagating the TMV through a hierarchy of policy mediation regions (PMRs), each PMR being operable to refine at least one of the IDC, the IRC, and the VRC; refining at least one of the IDC, the IRC, and the VRC to conform to a security operations policy of the PMR; forwarding the refined TMV to a threat management domain controller (TMDC); recording refinements made by each PMR to each of the IDC, the IRC, and the VRC; transferring the recorded refinements to a threat management control book (TMCB); and marking the refined TMV as having been refined by each PMR making a refinement.
摘要翻译：本发明涉及将安全操作策略集成到威胁管理向量中。在一个实施例中，根据本发明的方法包括从TMV生成器接收至少一个威胁管理向量（TMV），所述TMV包括根漏洞向量，至少一个系统向量，至少一个系统级向量和对策有效载荷包括入侵检测对策（IDC），入侵响应对策（IRC）和脆弱性补救对策（VRC）; 向TMDC转发仅包括根漏洞向量，至少一个系统向量和至少一个系统级向量的TMV; 通过策略中介区域（PMR）的层次来传播TMV，每个PMR可操作以精化IDC，IRC和VRC中的至少一个; 完善IDC，IRC和VRC中的至少一个，以符合PMR的安全操作策略; 将精简的TMV转发到威胁管理域控制器（TMDC）; 记录由每个PMR对IDC，IRC和VRC进行的改进; 将记录的优化转移到威胁管理控制簿（TMCB）; 并且将精细的TMV标记为由每个PMR进行改进以进行细化。

7. 发明授权

US4507752A In-place index compression 失效
标题翻译：就地索引压缩
公开(公告)号：US4507752A
公开(公告)日：1985-03-26
申请号：US468815
申请日：1983-02-22
申请人： John J. McKenna , John M. Thompson
发明人： John J. McKenna , John M. Thompson
IPC分类号： G06F17/30 , G06F1/00
CPC分类号： G06F17/30958 , Y10S707/99942
摘要： The present invention provides in a data processing system storing a plurality of discrete entities, each identified by a single parameter within a monotonic parameter spectrum, resident at an addressable location and locatable by searching a system maintained hierarchical index mapping parameters onto location addresses, a method of compressing the index by the system, which method is interruptable to permit valid searching of the index and executes in a variable length ordered sequence of processing cycles, each comprising a variable length sequence of two part iterations, each iteration comprising the selective performance of each of an ordered fixed sequence of basic operations, wherein each full cycle initially operates on successive index levels in the direction opposite to that in which the index is searched while performing the first part of each iteration and thereafter operates on successive levels in the reverse direction performing the second part of each iteration, parameter relocation at a level being performed by duplicating a parameter at its target location in a first part of the iteration at that level and deleting the original presence of the parameter in the second part of that iteration.
摘要翻译：本发明提供一种数据处理系统，其存储多个离散实体，每个离散实体各自由单调参数在单调参数频谱内识别，驻留在可寻址位置，并且可通过将维护的分层索引映射参数的系统搜索到位置地址来定位;方法通过系统压缩索引，该方法是可中断的，以允许索引的有效搜索并以可变长度有序的处理周期序列执行，每个序列包括两部分迭代的可变长度序列，每个迭代包括每个基本操作的有序固定序列，其中每个完整循环首先在执行每次迭代的第一部分时在与索引搜索的方向相反的方向上的连续索引级上进行操作，然后在反向执行的连续级上进行操作每次迭代的第二部分，参数通过在该级别的迭代的第一部分中在其目标位置处复制参数来执行该级别的重定位，并且在该迭代的第二部分中删除参数的原始存在。

8. 发明授权

US07770203B2 Method of integrating a security operations policy into a threat management vector 有权
标题翻译：将安全操作策略集成到威胁管理向量中的方法
公开(公告)号：US07770203B2
公开(公告)日：2010-08-03
申请号：US11736068
申请日：2007-04-17
申请人： John J. McKenna
发明人： John J. McKenna
IPC分类号： H04L29/06 , G06F21/00
CPC分类号： H04L63/1408 , G06F21/577 , G06F2221/2101 , H04L63/20
摘要： The invention relates to the integration of a security operations policy into a threat management vector. In one embodiment, a method according to the invention includes receiving at least one threat management vector (TMV) from a TMV generator, the TMV including a root vulnerability vector, at least one system vector, at least one system level vector, and a countermeasures payload including intrusion detection countermeasures (IDC), intrusion response countermeasures (IRC), and vulnerability remediation countermeasures (VRC); forwarding to the TMDC a TMV including only the root vulnerability vector, the at least one system vector, and the at least one system level vector; propagating the TMV through a hierarchy of policy mediation regions (PMRs), each PMR being operable to refine at least one of the IDC, the IRC, and the VRC; refining at least one of the IDC, the IRC, and the VRC to conform to a security operations policy of the PMR; forwarding the refined TMV to a threat management domain controller (TMDC); recording refinements made by each PMR to each of the IDC, the IRC, and the VRC; transferring the recorded refinements to a threat management control book (TMCB); and marking the refined TMV as having been refined by each PMR making a refinement.
摘要翻译：本发明涉及将安全操作策略集成到威胁管理向量中。在一个实施例中，根据本发明的方法包括从TMV生成器接收至少一个威胁管理向量（TMV），所述TMV包括根漏洞向量，至少一个系统向量，至少一个系统级向量和对策有效载荷包括入侵检测对策（IDC），入侵响应对策（IRC）和脆弱性补救对策（VRC）; 向TMDC转发仅包括根漏洞向量，至少一个系统向量和至少一个系统级向量的TMV; 通过策略中介区域（PMR）的层次来传播TMV，每个PMR可操作以精化IDC，IRC和VRC中的至少一个; 完善IDC，IRC和VRC中的至少一个，以符合PMR的安全操作策略; 将精简的TMV转发到威胁管理域控制器（TMDC）; 记录由每个PMR对IDC，IRC和VRC进行的改进; 将记录的优化转移到威胁管理控制簿（TMCB）; 并且将精细的TMV标记为由每个PMR进行改进以进行细化。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式