专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20070016675A1 Securing network services using network action control lists 有权
标题翻译：使用网络动作控制列表保护网络服务
公开(公告)号：US20070016675A1
公开(公告)日：2007-01-18
申请号：US11181376
申请日：2005-07-13
申请人： Pradeep Bahl , Ramesh Chinta , Narasimha Nagampalli , Scott Field
发明人： Pradeep Bahl , Ramesh Chinta , Narasimha Nagampalli , Scott Field
IPC分类号： G06F15/173
CPC分类号： H04L63/1441 , H04L63/101
摘要： A computer system having secured network services is presented. The computer system comprises a processor, a memory, and a network action processing module. The network action processing module processes network actions from one or more network services executing on the computer system. The computer system is further configured to execute at least network service performing network actions in conjunction with the network action processing module. Upon receiving a network action from a network service, the network action processing module determines whether the network action is a valid network action according to a network action control list. If the network action is determined to not be a valid network action, the network action is blocked. Alternatively, if the network action is determined to be a valid network action, the network action is permitted to be completed.
摘要翻译：提出了一种具有安全网络服务的计算机系统。计算机系统包括处理器，存储器和网络动作处理模块。网络动作处理模块处理来自在计算机系统上执行的一个或多个网络服务的网络动作。该计算机系统进一步被配置为至少执行网络服务，与网络动作处理模块一起执行网络动作。网络动作处理模块从网络服务接收到网络动作后，根据网络动作控制列表判断网络动作是否为有效的网络动作。如果网络动作被确定为不是有效的网络动作，则网络动作被阻止。或者，如果网络动作被确定为有效的网络动作，则允许网络动作被完成。

2. 发明申请

US20070162909A1 Reserving resources in an operating system 审中-公开
标题翻译：在操作系统中预留资源
公开(公告)号：US20070162909A1
公开(公告)日：2007-07-12
申请号：US11329984
申请日：2006-01-11
申请人： Pradeep Bahl , Narasimha Nagampalli , Ramesh Chinta
发明人： Pradeep Bahl , Narasimha Nagampalli , Ramesh Chinta
IPC分类号： G06F9/46
CPC分类号： G06F21/554 , G06F9/468 , G06F21/6218
摘要： Techniques for reserving resources in an operating system are provided. The techniques include receiving an indication of an authorization setting specifying a directive and identifying at least a resource, an action, and a principal, configuring to apply the specified directive in relation to the identified action and resource when the principal attempts to perform the identified action in relation to the indicated resource, determining that the principal is attempting to perform the identified action on the identified resource, and applying the specified directive. The techniques function whether or not the resources or principals exist when the resources are reserved.
摘要翻译：提供了在操作系统中预留资源的技术。这些技术包括接收指定指令的授权设置的指示，并且至少识别资源，动作和委托人，配置为当主体试图执行所识别的动作时，针对所标识的动作和资源应用所指定的指令相对于所指示的资源，确定主体正在尝试对所标识的资源执行所识别的动作，并应用指定的指令。当资源被保留时，该技术是否存在资源或主体。

3. 发明申请

US20070101335A1 Identifying separate threads executing within a single process 有权
标题翻译：识别单个进程中执行的单独线程
公开(公告)号：US20070101335A1
公开(公告)日：2007-05-03
申请号：US11266506
申请日：2005-11-03
申请人： Narasimha Nagampalli , Pradeep Bahl , Ramesh Chinta
发明人： Narasimha Nagampalli , Pradeep Bahl , Ramesh Chinta
IPC分类号： G06F9/46
CPC分类号： G06F9/4843 , G06F9/5027 , G06F2209/5018
摘要： A computer-readable medium bearing computer-executable instructions which, when executed on a computer, carry out a method for handling a request for an operating system service is presented. The method comprises receiving a request for execution of an operating system service. The corresponding operating system service is then identified. A unique service identifier that corresponds to the requested operating system service is obtained. A service thread is generated, the thread being associated with an executing process. Storage associated with the service thread is initialized with the unique service identifier. Thereafter, the execution of the service thread is initiated.
摘要翻译：一种具有计算机可执行指令的计算机可读介质，其在计算机上执行时执行用于处理对操作系统服务的请求的方法。该方法包括接收执行操作系统服务的请求。然后识别相应的操作系统服务。获得与所请求的操作系统服务相对应的唯一服务标识符。生成服务线程，线程与执行进程相关联。与服务线程相关联的存储将使用唯一的服务标识符初始化。此后，启动服务线程的执行。

4. 发明授权

US07979865B2 Identifying separate threads executing within a single process 有权
标题翻译：识别单个进程中执行的单独线程
公开(公告)号：US07979865B2
公开(公告)日：2011-07-12
申请号：US11266506
申请日：2005-11-03
申请人： Narasimha Rao S. S. Nagampalli , Pradeep Bahl , Ramesh Chinta
发明人： Narasimha Rao S. S. Nagampalli , Pradeep Bahl , Ramesh Chinta
IPC分类号： G06F9/46
CPC分类号： G06F9/4843 , G06F9/5027 , G06F2209/5018
摘要： A computer-readable medium bearing computer-executable instructions which, when executed on a computer, carry out a method for handling a request for an operating system service is presented. The method comprises receiving a request for execution of an operating system service. The corresponding operating system service is then identified. A unique service identifier that corresponds to the requested operating system service is obtained. A service thread is generated, the thread being associated with an executing process. Storage associated with the service thread is initialized with the unique service identifier. Thereafter, the execution of the service thread is initiated.
摘要翻译：一种具有计算机可执行指令的计算机可读介质，其在计算机上执行时执行用于处理对操作系统服务的请求的方法。该方法包括接收执行操作系统服务的请求。然后识别相应的操作系统服务。获得与所请求的操作系统服务相对应的唯一服务标识符。生成服务线程，线程与执行进程相关联。与服务线程相关联的存储将使用唯一的服务标识符初始化。此后，启动服务线程的执行。

5. 发明申请

US20070294699A1 CONDITIONALLY RESERVING RESOURCES IN AN OPERATING SYSTEM 审中-公开
标题翻译：在运行系统中有条件地保留资源
公开(公告)号：US20070294699A1
公开(公告)日：2007-12-20
申请号：US11424681
申请日：2006-06-16
申请人： Pradeep Bahl , Narasimha Rao S. S. Nagampalli , Ramesh Chinta
发明人： Pradeep Bahl , Narasimha Rao S. S. Nagampalli , Ramesh Chinta
IPC分类号： G06F9/46
CPC分类号： G06F9/5027 , G06F21/52 , G06F21/62 , G06F2209/5014
摘要： A facility is provided for conditionally reserving resources in an operating system. In various embodiments, the facility receives an indication of a conditional reservation declarator that identifies at least a resource, an action, a condition, and a principal. The conditional reservation declarator can specify a directive that corresponds to the identified resource, action, condition, and principal. The facility configures itself to apply the specified directive in relation to the identified action and resource when the principal attempts to perform the identified action in relation to the identified resource and the condition is met. The facility can apply the specified directive when it determines that the principal is attempting to perform the identified action on the identified resource when the condition is met.
摘要翻译：提供了一种在操作系统中有条件地保留资源的设施。在各种实施例中，设施接收标识至少资源，动作，条件和委托人的条件保留声明符的指示。条件保留声明符可以指定与所标识的资源，动作，条件和主体相对应的指令。当主体尝试执行与识别的资源相关的已识别动作并满足条件时，该工具将自身配置为应用与所识别的动作和资源有关的指定指令。当该条件确定主体正在尝试在满足条件时对所标识的资源执行已识别的操作时，该工具可以应用指定的指令。

6. 发明授权

US07603708B2 Securing network services using network action control lists 有权
标题翻译：使用网络动作控制列表保护网络服务
公开(公告)号：US07603708B2
公开(公告)日：2009-10-13
申请号：US11181376
申请日：2005-07-13
申请人： Pradeep Bahl , Ramesh Chinta , Narasimha Rao S. S. Nagampalli , Scott A Field
发明人： Pradeep Bahl , Ramesh Chinta , Narasimha Rao S. S. Nagampalli , Scott A Field
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00
CPC分类号： H04L63/1441 , H04L63/101
摘要： A computer system having secured network services is presented. The computer system comprises a processor, a memory, and a network action processing module. The network action processing module processes network actions from one or more network services executing on the computer system. The computer system is further configured to execute at least network service performing network actions in conjunction with the network action processing module. Upon receiving a network action from a network service, the network action processing module determines whether the network action is a valid network action according to a network action control list. If the network action is determined to not be a valid network action, the network action is blocked. Alternatively, if the network action is determined to be a valid network action, the network action is permitted to be completed.
摘要翻译：提出了一种具有安全网络服务的计算机系统。计算机系统包括处理器，存储器和网络动作处理模块。网络动作处理模块处理来自在计算机系统上执行的一个或多个网络服务的网络动作。该计算机系统进一步被配置为至少执行网络服务，与网络动作处理模块一起执行网络动作。网络动作处理模块从网络服务接收到网络动作后，根据网络动作控制列表判断网络动作是否为有效的网络动作。如果网络动作被确定为不是有效的网络动作，则网络动作被阻止。或者，如果网络动作被确定为有效的网络动作，则允许网络动作被完成。

7. 发明申请

US20060174318A1 Method and system for troubleshooting when a program is adversely impacted by a security policy 有权
标题翻译：用于在程序受到安全策略的不利影响时进行故障排除的方法和系统
公开(公告)号：US20060174318A1
公开(公告)日：2006-08-03
申请号：US11045733
申请日：2005-01-28
申请人： Art Shelest , Pradeep Bahl , Scott Field
发明人： Art Shelest , Pradeep Bahl , Scott Field
IPC分类号： H04L9/00 , G06F17/00 , H04K1/00 , G06F12/14 , G06F11/00 , G06F11/22 , G06F11/30 , G06F11/32 , G06F11/34 , G06F11/36 , G06F12/16 , G06F15/18 , G08B23/00
CPC分类号： H04L63/10 , G06F11/079 , G06F21/53 , G06F21/554
摘要： A method and system for selectively excluding a program from a security policy is provided. The security system receives from a user an indication of a program with a problem that is to be excluded from the security policy. When the program executes and a security enforcement event occurs, the security system does not apply the security policy. If the problem appears to be resolved as a result of excluding the program from the security policy, then the user may assume that the security policy is the cause of the problem.
摘要翻译：提供了一种用于从安全策略中选择性地排除程序的方法和系统。安全系统从用户接收到具有要从安全策略中排除的问题的程序的指示。当程序执行并发生安全执行事件时，安全系统不应用安全策略。如果由于从安全策略中排除程序，问题似乎得到解决，那么用户可能认为安全策略是问题的原因。

8. 发明授权

US08909743B2 Dynamic session maintenance for mobile computing devices 有权
标题翻译：移动计算设备的动态会话维护
公开(公告)号：US08909743B2
公开(公告)日：2014-12-09
申请号：US13157089
申请日：2011-06-09
申请人： Pradeep Bahl
发明人： Pradeep Bahl
IPC分类号： G06F15/177 , H04L29/12
CPC分类号： H04L61/1511 , H04L29/12066 , H04L29/12301 , H04L61/2015 , H04L61/2076
摘要： A framework and method are disclosed for supporting changed addresses by mobile network nodes. Such support is provided through enhancements to the mobile network nodes and utilizes DNS servers, Dynamic Host Configuration Protocol (DHCP), and virtual private network (VPN) servers—or their functional equivalents—to dynamically assign a current network address to a mobile node, provide the current network address to an authoritative name server, and thereafter have correspondent nodes update their addresses for the mobile node based upon an address provided by the authoritative name server. A mobile node registers all of its name-to-address mappings with its authoritative DNS server using a time to live of zero. Furthermore, when a mobile node moves outside its home security domain, the mobile node initiates a virtual private network connection to a virtual private server for a security domain.
摘要翻译：公开了用于支持移动网络节点改变的地址的框架和方法。通过对移动网络节点的增强来提供这样的支持，并且利用DNS服务器，动态主机配置协议（DHCP）和虚拟专用网络（VPN）服务器或其功能等效物来动态地为移动节点分配当前网络地址，将当前网络地址提供给权威的名称服务器，然后基于由权威名称服务器提供的地址，对应节点更新其移动节点的地址。移动节点通过其权威DNS服务器将所有名称与地址映射注册为零。此外，当移动节点移动到其家庭安全域之外时，移动节点发起到用于安全域的虚拟专用服务器的虚拟专用网络连接。

9. 发明授权

US08676969B2 Network classification 有权
标题翻译：网络分类
公开(公告)号：US08676969B2
公开(公告)日：2014-03-18
申请号：US13300743
申请日：2011-11-21
申请人： Pradeep Bahl , Christopher J. Corbett , Mohamed Jawad Khaki
发明人： Pradeep Bahl , Christopher J. Corbett , Mohamed Jawad Khaki
IPC分类号： G06F15/173
CPC分类号： H04L43/08 , H04L41/00 , H04L41/0233 , H04L41/0803 , H04L41/0853 , H04L41/12 , H04L41/14 , H04L41/145 , H04L41/28 , H04L63/20
摘要： Network DNA may be determined for a computer network that taxonomically classifies the computer network. Network DNA may include derived network DNA components and raw network DNA components. Raw network DNA components may be acquired from local or remote sources. Derived network DNA components may be generated according to derived network DNA component specifications. Derived network DNA component specifications may reference raw network DNA components. Network DNA determined for the computer network may include a network species component capable of indicating network species classifications for computer networks. Network species classifications may include enterprise network, home network and public place network. Network species classifications may be determined as a function of network security, network management and network addressing. One or more network DNA stores may be configured to store network DNA for computer networks. Network DNA stores may store network DNA history as well as current network DNA.
摘要翻译：可以为对计算机网络进行分类分类的计算机网络确定网络DNA。网络DNA可以包括衍生的网络DNA组分和原始网络DNA组分。原始网络DNA组件可以从本地或远程来源获取。衍生网络DNA组分可以根据衍生网络DNA组分规格生成。衍生网络DNA组件规范可以参考原始网络DNA组件。为计算机网络确定的网络DNA可以包括能够指示计算机网络的网络物种分类的网络物种组件。网络物种分类可能包括企业网络，家庭网络和公共场所网络。网络物种分类可以根据网络安全，网络管理和网络寻址来确定。一个或多个网络DNA存储可以被配置为存储用于计算机网络的网络DNA。网络DNA存储可以存储网络DNA历史以及当前的网络DNA。

10. 发明申请

US20110131658A1 DYNAMIC RISK MANAGEMENT 有权
标题翻译：动态风险管理
公开(公告)号：US20110131658A1
公开(公告)日：2011-06-02
申请号：US13023518
申请日：2011-02-08
申请人： Pradeep Bahl
发明人： Pradeep Bahl
IPC分类号： G06F21/00
CPC分类号： G06F21/577 , H04L41/28 , H04L63/1416
摘要： A dynamic risk management system for operating systems that provides monitoring, detection, assessment, and follow-up action to reduce the risk whenever it rises. The system enables an operating system to protect itself automatically in dynamic environments. The risk management system monitors a diverse set of attributes of the system which determines the security state of the system and is indicative of the risk the system is under. Based on a specification of risk levels for the various attributes and for their combinations, the risk management system determines whether one or more actions are required to alleviate the overall risk to the system.
摘要翻译：操作系统的动态风险管理系统，提供监控，检测，评估和后续行动，以便在风险上升时降低风险。该系统使操作系统能够在动态环境中自动保护自身。风险管理系统监视系统的各种属性集，该属性决定系统的安全状态，并指示系统所处的风险。基于各种属性及其组合的风险级别规范，风险管理系统确定是否需要一个或多个动作来减轻系统的整体风险。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式