专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100088668A1 Crawling of object model using transformation graph 失效
标题翻译：使用变换图来爬行对象模型
公开(公告)号：US20100088668A1
公开(公告)日：2010-04-08
申请号：US12246065
申请日：2008-10-06
申请人： Sachiko Yoshihama , Shinya Kawanaka , Takaaki Tateishi , Ory Segal , Adi Sharabani , Marco Pistoia , Guy Podjarny
发明人： Sachiko Yoshihama , Shinya Kawanaka , Takaaki Tateishi , Ory Segal , Adi Sharabani , Marco Pistoia , Guy Podjarny
IPC分类号： G06F9/44
CPC分类号： G06F8/10
摘要： A transformation tree for an object model (OM) is defined. The transformation tree has nodes interconnected by edges, where each node is connected to at most one other tree node. Each node corresponds to a state of the OM; each edge corresponds to an event causing the OM to transition from the state of one node to the state of another node. A transformation graph for the OM is constructed by simulating the transformation tree. The transformation graph has nodes interconnected by edges, and is a directed graph in which each node is connected to one or more other nodes. Each node corresponds to a state of the OM; each edge corresponds to an event causing the OM to transition from the state of one node to the state of another node. Crawling-oriented actions are performed in relation to the OM by being performed in relation to the transformation graph.
摘要翻译：定义了对象模型（OM）的转换树。转换树具有通过边缘互连的节点，其中每个节点连接到最多一个其他树节点。每个节点对应于OM的状态; 每个边缘对应于导致OM从一个节点的状态转变到另一个节点的状态的事件。通过模拟转换树构建OM的变换图。转换图具有通过边缘互连的节点，并且是有向图，其中每个节点连接到一个或多个其他节点。每个节点对应于OM的状态; 每个边缘对应于导致OM从一个节点的状态转变到另一个节点的状态的事件。通过相对于变换图执行针对OM执行针对爬行的动作。

2. 发明授权

US08296722B2 Crawling of object model using transformation graph 失效
标题翻译：使用变换图来爬行对象模型
公开(公告)号：US08296722B2
公开(公告)日：2012-10-23
申请号：US12246065
申请日：2008-10-06
申请人： Sachiko Yoshihama , Shinya Kawanaka , Takaaki Tateishi , Ory Segal , Adi Sharabani , Marco Pistoia , Guy Podjarny
发明人： Sachiko Yoshihama , Shinya Kawanaka , Takaaki Tateishi , Ory Segal , Adi Sharabani , Marco Pistoia , Guy Podjarny
IPC分类号： G06F9/44
CPC分类号： G06F8/10
摘要： A transformation tree for an object model (OM) is defined. The transformation tree has nodes interconnected by edges, where each node is connected to at most one other tree node. Each node corresponds to a state of the OM; each edge corresponds to an event causing the OM to transition from the state of one node to the state of another node. A transformation graph for the OM is constructed by simulating the transformation tree. The transformation graph has nodes interconnected by edges, and is a directed graph in which each node is connected to one or more other nodes. Each node corresponds to a state of the OM; each edge corresponds to an event causing the OM to transition from the state of one node to the state of another node. Crawling-oriented actions are performed in relation to the OM by being performed in relation to the transformation graph.
摘要翻译：定义了对象模型（OM）的转换树。转换树具有通过边缘互连的节点，其中每个节点连接到最多一个其他树节点。每个节点都对应于OM的状态; 每个边缘对应于导致OM从一个节点的状态转变到另一个节点的状态的事件。通过模拟转换树构建OM的变换图。转换图具有通过边缘互连的节点，并且是有向图，其中每个节点连接到一个或多个其他节点。每个节点对应于OM的状态; 每个边缘对应于导致OM从一个节点的状态转变到另一个节点的状态的事件。通过相对于变换图执行针对OM执行针对爬行的动作。

3. 发明申请

US20120215757A1 WEB CRAWLING USING STATIC ANALYSIS 审中-公开
标题翻译：使用静态分析的WEB抓取
公开(公告)号：US20120215757A1
公开(公告)日：2012-08-23
申请号：US13032638
申请日：2011-02-22
申请人： Omri Weisman , Yinnon Avraham Haviv , Adi Sharabani , Omer Tripp , Marco Pistoia , Takaaki Tateishi , Guy Podjarny
发明人： Omri Weisman , Yinnon Avraham Haviv , Adi Sharabani , Omer Tripp , Marco Pistoia , Takaaki Tateishi , Guy Podjarny
IPC分类号： G06F17/30
CPC分类号： G06F16/951
摘要： A crawler including a document retriever configured to retrieve a first computer-based document, a link identifier configured to identify an actual string within the computer-based document as being a hyperlink-type string, and a static analyzer configured to perform static analysis of an operation on a variable within the first computer-based document to identify a possible string value of the variable as being a hyperlink-type string, where any of the strings indicate a location of at least a second computer-based document.
摘要翻译：包括被配置为检索第一基于计算机的文档的文档检索器的爬行器，被配置为将所述基于计算机的文档内的实际字符串标识为超链接字符串的链接标识符和被配置为执行静态分析的静态分析器操作第一基于计算机的文档中的变量，以将变量的可能字符串值标识为超链接类型的字符串，其中任何字符串指示至少第二基于计算机的文档的位置。

4. 发明授权

US09275246B2 System and method for static detection and categorization of information-flow downgraders 有权
标题翻译：信息流降级的静态检测和分类的系统和方法
公开(公告)号：US09275246B2
公开(公告)日：2016-03-01
申请号：US12575647
申请日：2009-10-08
申请人： Yinnon Haviv , Roee Hay , Marco Pistoia , Guy Podjarny , Adi Sharabani , Takaaki Tateishi , Omer Tripp , Omri Weisman
发明人： Yinnon Haviv , Roee Hay , Marco Pistoia , Guy Podjarny , Adi Sharabani , Takaaki Tateishi , Omer Tripp , Omri Weisman
IPC分类号： G06F17/30 , G06F7/00 , G06F21/62 , G06F9/45 , G06F11/36
CPC分类号： H04L63/1416 , G06F8/49 , G06F11/3608 , G06F21/6218
摘要： A system and method for static detection and categorization of information-flow downgraders includes transforming a program stored in a memory device by statically analyzing program variables to yield a single assignment to each variable in an instruction set. The instruction set is translated to production rules with string operations. A context-free grammar is generated from the production rules to identify a finite set of strings. An information-flow downgrader function is identified by checking the finite set of strings against one or more function specifications.
摘要翻译：用于信息流降级器的静态检测和分类的系统和方法包括通过静态分析程序变量来变换存储在存储器件中的程序，以产生对指令集中的每个变量的单个赋值。指令集被转换为具有字符串操作的生产规则。从生产规则生成上下文无关的语法，以识别有限的字符串集。通过根据一个或多个功能规范检查有限的字符串来识别信息流降级功能。

5. 发明申请

US20110088023A1 SYSTEM AND METHOD FOR STATIC DETECTION AND CATEGORIZATION OF INFORMATION-FLOW DOWNGRADERS 有权
标题翻译：用于静态检测和分类信息流下载器的系统和方法
公开(公告)号：US20110088023A1
公开(公告)日：2011-04-14
申请号：US12575647
申请日：2009-10-08
申请人： YINNON HAVIV , Roee Hay , Marco Pistoia , Guy Podjarny , Adi Sharabani , Takaaki Tateishi , Omer Tripp , Omri Weisman
发明人： YINNON HAVIV , Roee Hay , Marco Pistoia , Guy Podjarny , Adi Sharabani , Takaaki Tateishi , Omer Tripp , Omri Weisman
IPC分类号： G06F9/45
CPC分类号： H04L63/1416 , G06F8/49 , G06F11/3608 , G06F21/6218
摘要： A system and method for static detection and categorization of information-flow downgraders includes transforming a program stored in a memory device by statically analyzing program variables to yield a single assignment to each variable in an instruction set. The instruction set is translated to production rules with string operations. A context-free grammar is generated from the production rules to identify a finite set of strings. An information-flow downgrader function is identified by checking the finite set of strings against one or more function specifications.
摘要翻译：用于信息流降级器的静态检测和分类的系统和方法包括通过静态分析程序变量来变换存储在存储器件中的程序，以产生对指令集中的每个变量的单个赋值。指令集被转换为具有字符串操作的生产规则。从生产规则生成上下文无关的语法，以识别有限的字符串集。通过根据一个或多个功能规范检查有限的字符串来识别信息流降级功能。

6. 发明授权

US08387017B2 Black box testing optimization using information from white box testing 失效
标题翻译：黑箱测试优化使用白盒测试中的信息
公开(公告)号：US08387017B2
公开(公告)日：2013-02-26
申请号：US12553417
申请日：2009-09-03
申请人： Rob Calendino , Craig Robert Earl Conboy , Guy Podjarny , Ory Segal , Adi Sharabani , Omer Tripp , Omri Weisman
发明人： Rob Calendino , Craig Robert Earl Conboy , Guy Podjarny , Ory Segal , Adi Sharabani , Omer Tripp , Omri Weisman
IPC分类号： G06F9/44 , G06F9/45 , G06F9/00
CPC分类号： G06F11/3672
摘要： Testing a computer software application by identifying a sink in the computer software application, identifying a source associated with the sink in the application, identifying an entry point associated with the source in the application, where the source is configured to receive input provided externally to the application via the entry point, determining a sink type represented by the sink, and providing to a testing application information identifying the entry point and in association with the sink type.
摘要翻译：通过识别计算机软件应用程序中的接收器来测试计算机软件应用程序，识别与应用程序中的接收器相关联的源，识别与应用程序中的源相关联的入口点，其中源被配置为接收从外部提供的输入通过入口点应用，确定由汇点表示的汇点类型，以及向测试应用程序提供标识入口点并与汇点类型相关联的信息。

7. 发明申请

US20110055813A1 Black Box Testing Optimization Using Information from White Box Testing 失效
标题翻译：黑盒测试优化使用白盒测试中的信息
公开(公告)号：US20110055813A1
公开(公告)日：2011-03-03
申请号：US12553417
申请日：2009-09-03
申请人： Rob Calendino , Craig Robert Earl Conboy , Guy Podjarny , Ory Segal , Adi Sharabani , Omer Tripp , Omri Weisman
发明人： Rob Calendino , Craig Robert Earl Conboy , Guy Podjarny , Ory Segal , Adi Sharabani , Omer Tripp , Omri Weisman
IPC分类号： G06F9/44
CPC分类号： G06F11/3672
摘要： Testing a computer software application by identifying a sink in the computer software application, identifying a source associated with the sink in the application, identifying an entry point associated with the source in the application, where the source is configured to receive input provided externally to the application via the entry point, determining a sink type represented by the sink, and providing to a testing application information identifying the entry point and in association with the sink type.
摘要翻译：通过识别计算机软件应用程序中的接收器来测试计算机软件应用程序，识别与应用程序中的接收器相关联的源，识别与应用程序中的源相关联的入口点，其中源被配置为接收从外部提供的输入通过入口点应用，确定由汇点表示的汇点类型，以及向测试应用程序提供标识入口点并与汇点类型相关联的信息。

8. 发明申请

US20090320043A1 APPLICATION STATE DETECTOR AND INDUCER 有权
标题翻译：应用状态检测器和电感器
公开(公告)号：US20090320043A1
公开(公告)日：2009-12-24
申请号：US12145200
申请日：2008-06-24
申请人： Guy Podjarny , Ariel Sakin , Ory Segal , Shlomi Shamir , Adi Sharabani
发明人： Guy Podjarny , Ariel Sakin , Ory Segal , Shlomi Shamir , Adi Sharabani
IPC分类号： G06F9/54
CPC分类号： G06F11/3688
摘要： A method for controlling a computer-implemented application, the method including determining a current state of a computer-implemented application, inducing the application into a predefined state associated with a target action of the application if the current state does not match the predefined state in accordance with predefined match criteria, and causing the target action to be performed.
摘要翻译：一种用于控制计算机实现的应用的方法，所述方法包括确定计算机实现的应用的当前状态，如果当前状态与所述应用的目标动作不匹配，则将所述应用引导到与所述应用的目标动作相关联的预定状态根据预定义的匹配标准，并且使得执行目标动作。

9. 发明授权

US09396099B2 Application state detector and inducer 有权
标题翻译：应用状态检测器和诱导器
公开(公告)号：US09396099B2
公开(公告)日：2016-07-19
申请号：US12145200
申请日：2008-06-24
申请人： Guy Podjarny , Ariel Sakin , Ory Segal , Shlomi Shamir , Adi Sharabani
发明人： Guy Podjarny , Ariel Sakin , Ory Segal , Shlomi Shamir , Adi Sharabani
IPC分类号： G06F9/54 , G06F11/36
CPC分类号： G06F11/3688
摘要： A method for controlling a computer-implemented application, the method including determining a current state of a computer-implemented application, inducing the application into a predefined state associated with a target action of the application if the current state does not match the predefined state in accordance with predefined match criteria, and causing the target action to be performed.
摘要翻译：一种用于控制计算机实现的应用的方法，所述方法包括确定计算机实现的应用的当前状态，如果当前状态与所述应用的目标动作不匹配，则将所述应用引导到与所述应用的目标动作相关联的预定状态根据预定义的匹配标准，并且使得执行目标动作。

10. 发明授权

US09009821B2 Injection attack mitigation using context sensitive encoding of injected input 有权
标题翻译：注入攻击减轻使用注入输入的上下文敏感编码
公开(公告)号：US09009821B2
公开(公告)日：2015-04-14
申请号：US13574011
申请日：2011-06-08
申请人： Guy Podjarny , Adi Sharabani
发明人： Guy Podjarny , Adi Sharabani
IPC分类号： G06F21/00 , H04L29/06 , G06F21/56 , H04L29/08
CPC分类号： G06F21/563 , H04L63/1441 , H04L67/02
摘要： A method for preventing malicious code being embedded within a scripting language of a web application accessed by a web browser (308), the method comprising: monitoring all incoming traffic (310), generated by the web browser, and outgoing traffic (326) generated by a server (318) to form monitored traffic; determining whether a unique element, defined in a configuration file, is matched with an input value of the monitored traffic to form a matched input value; responsive to a determination that the unique element is matched with an input value of the monitored traffic, saving the matched input value, determining whether an output contains the matched input value in an expected location; responsive to a determination that the output contains the matched input value in an expected location, encoding the matched input value using a respective definition from the configuration file; and returning the output (330) to the requester.
摘要翻译：一种用于防止恶意代码嵌入由web浏览器（308）访问的web应用程序的脚本语言中的方法，所述方法包括：监视由web浏览器生成的所有传入流量（310）和产生的输出流量（326）由服务器（318）形成监视的业务; 确定在配置文件中定义的唯一元素是否与所监视的流量的输入值匹配以形成匹配的输入值; 响应于所述唯一元素与所监视的业务的输入值匹配的确定，保存所匹配的输入值，确定输出是否包含预期位置中的匹配输入值; 响应于所述输出在预期位置中包含匹配的输入值的确定，使用来自所述配置文件的相应定义对所匹配的输入值进行编码; 并将输出（330）返回给请求者。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式