专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20130219462A1 GENERATING A DISTRUBITION PACKAGE HAVING AN ACCESS CONTROL EXECUTION PROGRAM FOR IMPLEMENTING AN ACCESS CONTROL MECHANISM AND LOADING UNIT FOR A CLIENT 有权
标题翻译：生成具有访问控制执行程序的分发包，以实现客户机的访问控制机制和加载单元
公开(公告)号：US20130219462A1
公开(公告)日：2013-08-22
申请号：US13821562
申请日：2011-07-01
申请人： Taku Aratsu , Sanehiro Furuichi , Masami Tada
发明人： Taku Aratsu , Sanehiro Furuichi , Masami Tada
IPC分类号： G06F21/10 , G06F21/62
CPC分类号： G06F21/10 , G06F21/556 , G06F21/62 , G06F2221/2119 , H04L63/0428 , H04L63/102 , H04L67/1097
摘要： A data distribution system, method and program for generating a distribution package for distribution data to a client. An environment of a requesting client requesting distribution data is detected. A determination is made of an access control execution program for implementing an access control mechanism and a loading unit on the requesting client. The access control execution program is adapted to the detected environment of the requesting client and control access to a resource from a process in the client. The loading unit loads the distribution data to a protected storage area of the client. A determination is made of a security policy specified for the distribution data. A distribution package is generated including the distribution data, the security policy, the loading unit, and the access control execution program adapted to the environment of the requesting client; and transmitting the generated distribution package to the requesting client.
摘要翻译：一种用于生成用于向客户端分发数据的分发包的数据分发系统，方法和程序。检测请求客户端请求分发数据的环境。确定用于在请求客户端上实现访问控制机构和加载单元的访问控制执行程序。访问控制执行程序适应于所请求的客户端的检测环境，并且控制对客户端中的进程对资源的访问。加载单元将分发数据加载到客户端的受保护存储区域。确定为分发数据指定的安全策略。生成分配包，包括分发数据，安全策略，加载单元和适应请求客户端的环境的访问控制执行程序; 以及将生成的分发包传送到请求客户端。

2. 发明申请

US20120166442A1 CATEGORIZING DATA TO PERFORM ACCESS CONTROL 有权
标题翻译：分类数据以执行访问控制
公开(公告)号：US20120166442A1
公开(公告)日：2012-06-28
申请号：US13335906
申请日：2011-12-22
申请人： Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada , Taku Aratsu
发明人： Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada , Taku Aratsu
IPC分类号： G06F17/30
CPC分类号： G06F17/30707 , G06F21/6227
摘要： Systems and methods categorize data to perform access control. A system receives first data, where the first data comprises at least a portion of data to be categorized. The system analyzes the first data to determine Whether the first data belongs to a first category. If the first data belongs to a first category, the system applies a first access control set to actions on the data to be categorized. Further, if one or more of the actions on the data to be categorized has an access control status of pending after applying the first access control set, the system receives second data, where the second data comprises at least a portion of data to be categorized. The system analyzes the second data to determine whether the second data belongs to a second category. If the second data belongs to a second category, the system applies a second access control set to at least one of the actions having the access control status of pending.
摘要翻译：系统和方法对数据进行分类以执行访问控制。系统接收第一数据，其中第一数据包括要分类的数据的至少一部分。系统分析第一个数据以确定第一个数据是否属于第一个类别。如果第一个数据属于第一个类别，则系统将第一个访问控制集合应用于要分类数据的动作。此外，如果在应用第一访问控制集之后，要分类的数据的一个或多个动作具有未决的访问控制状态，则系统接收第二数据，其中第二数据包括要分类的数据的至少一部分。系统分析第二数据以确定第二数据是否属于第二类别。如果第二数据属于第二类别，则系统将第二访问控制集合应用于具有等待访问控制状态的动作中的至少一个。

3. 发明授权

US09501628B2 Generating a distrubition package having an access control execution program for implementing an access control mechanism and loading unit for a client 有权
标题翻译：生成具有用于实现用于客户端的访问控制机制和加载单元的访问控制执行程序的分发包
公开(公告)号：US09501628B2
公开(公告)日：2016-11-22
申请号：US13821562
申请日：2011-07-01
申请人： Taku Aratsu , Sanehiro Furuichi , Masami Tada
发明人： Taku Aratsu , Sanehiro Furuichi , Masami Tada
IPC分类号： G06F21/10 , G06F21/55 , G06F21/62 , H04L29/08 , H04L29/06
CPC分类号： G06F21/10 , G06F21/556 , G06F21/62 , G06F2221/2119 , H04L63/0428 , H04L63/102 , H04L67/1097
摘要： A data distribution system, method and program for generating a distribution package for distribution data to a client. An environment of a requesting client requesting distribution data is detected. A determination is made of an access control execution program for implementing an access control mechanism and a loading unit on the requesting client. The access control execution program is adapted to the detected environment of the requesting client and control access to a resource from a process in the client. The loading unit loads the distribution data to a protected storage area of the client. A determination is made of a security policy specified for the distribution data. A distribution package is generated including the distribution data, the security policy, the loading unit, and the access control execution program adapted to the environment of the requesting client; and transmitting the generated distribution package to the requesting client.
摘要翻译：一种用于生成用于向客户端分发数据的分发包的数据分发系统，方法和程序。检测请求客户端请求分发数据的环境。确定用于在请求客户端上实现访问控制机构和加载单元的访问控制执行程序。访问控制执行程序适应于所请求的客户端的检测环境，并且控制对客户端中的进程对资源的访问。加载单元将分发数据加载到客户端的受保护存储区域。确定为分发数据指定的安全策略。生成分配包，包括分发数据，安全策略，加载单元和适应请求客户端的环境的访问控制执行程序; 以及将生成的分发包传送到请求客户端。

4. 发明申请

US20130007469A1 SECURELY MANAGING THE EXECUTION OF SCREEN RENDERING INSTRUCTIONS IN A HOST OPERATING SYSTEM AND VIRTUAL MACHINE 失效
标题翻译：管理在主机操作系统和虚拟机中执行屏幕渲染指令的安全性
公开(公告)号：US20130007469A1
公开(公告)日：2013-01-03
申请号：US13488369
申请日：2012-06-04
申请人： Taku Aratsu , Sanehiro Furuichi , Masami Tada
发明人： Taku Aratsu , Sanehiro Furuichi , Masami Tada
IPC分类号： H04L9/00 , G06F9/455
CPC分类号： G06F9/45558 , G06F21/53 , G06F21/606 , G06F2009/45587 , G06F2221/2141
摘要： Provided are a computer readable storage medium, computer apparatus, and method for securely managing the execution of screen rendering instructions in a host operating system and virtual machine. A first rendering instruction hooking section is set to a first mode to hook a screen rendering instruction issued by a virtual machine application in a virtual machine. A second rendering instruction hooking section is set to a second mode to hook instructions issued by the virtual machine application. The hooked screen rendering instruction issued by the virtual machine application are encrypted in response to the setting of the first mode to produce illegible output. The hooked screen rendering instruction issued by the virtual machine application are encrypted in response to the setting of the second mode. The encrypted hooked screen rendering instruction encrypted in the second mode are issued to a host operating system to decrypt.
摘要翻译：提供了一种用于在主机操作系统和虚拟机中安全地管理屏幕呈现指令的执行的计算机可读存储介质，计算机装置和方法。将第一渲染指令挂钩部分设置为第一模式以将由虚拟机应用发出的屏幕渲染指令挂接在虚拟机中。将第二渲染指令挂钩部分设置为第二模式以钩住由虚拟机应用发出的指令。响应于第一模式的设置，由虚拟机应用发出的挂接画面呈现指令被加密以产生难以辨认的输出。响应于第二模式的设置，由虚拟机应用发出的挂接画面呈现指令被加密。以第二模式加密的加密的挂接屏幕呈现指令被发布到主机操作系统以进行解密。

5. 发明授权

US08930368B2 Categorizing data to perform access control 有权
标题翻译：对数据进行分类以执行访问控制
公开(公告)号：US08930368B2
公开(公告)日：2015-01-06
申请号：US13335906
申请日：2011-12-22
申请人： Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada , Taku Aratsu
发明人： Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada , Taku Aratsu
IPC分类号： G06F7/00 , G06F17/30 , G06F21/62
CPC分类号： G06F17/30707 , G06F21/6227
摘要： At least one of data, an indication of the data, and metadata associated with the data is received at a first computing system, wherein the data is to be categorized. It is determined that at least part of the data is not to be categorized by the first computing system. In response to a determination that at least part of the data is not to be categorized by the first computing system, it is determined that a second computing system is indicated for categorization of the data and at least one of the data, an indication of the data, and the metadata associated with the data is transmitted from the first computing system to the second computing system.
摘要翻译：在第一计算系统处接收数据中的至少一个，数据的指示和与数据相关联的元数据，其中数据被分类。确定至少部分数据不被第一计算系统分类。响应于确定至少部分数据不被第一计算系统分类，确定指示第二计算系统用于分类数据和数据中的至少一个，指示数据和与数据相关联的元数据从第一计算系统发送到第二计算系统。

6. 发明授权

US08661502B2 Determining a sensitivity label of document information in real time 有权
标题翻译：实时确定文件信息的灵敏度标签
公开(公告)号：US08661502B2
公开(公告)日：2014-02-25
申请号：US13226457
申请日：2011-09-06
申请人： Taku Aratsu , Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada
发明人： Taku Aratsu , Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada
IPC分类号： G06F17/00
CPC分类号： G06F21/6218 , G06F21/604 , G06F21/6245 , H04L63/105 , H04L63/107
摘要： A sensitivity label for document information in a document may be determined in real time, according to one embodiment, by flexibly and dynamically determining a sensitivity label for the document based on content included in information within the document. Information within a document varies from day to day, for example, document information may decrease in importance with time, increase in importance due to an event, etc. Therefore, the sensitivity label of the document, according to embodiments described herein, may also change dynamically in accordance with document content, information, etc.
摘要翻译：根据一个实施例，文档中的文档信息的灵敏度标签可以通过根据文档中的信息中包含的内容灵活地和动态地确定文档的灵敏度标签来实时确定。文档中的信息每天都不同，例如，随着时间的推移，文档信息的重要性可能会降低，由于事件的重要性的增加等等。因此，根据本文所述的实施例的文档的灵敏度标签也可以改变动态地根据文件内容，信息等

7. 发明申请

US20120072969A1 DETERMINING A SENSITIVITY LABEL OF DOCUMENT INFORMATION IN REAL TIME 有权
标题翻译：实时确定文件信息的灵敏度标签
公开(公告)号：US20120072969A1
公开(公告)日：2012-03-22
申请号：US13226457
申请日：2011-09-06
申请人： Taku Aratsu , Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada
发明人： Taku Aratsu , Sanehiro Furuichi , Hideo Ichinomiya , Hayato Kiriyama , Masami Tada
IPC分类号： G06F21/24
CPC分类号： G06F21/6218 , G06F21/604 , G06F21/6245 , H04L63/105 , H04L63/107
摘要： A sensitivity label for document information in a document may be determined in real time, according to one embodiment, by flexibly and dynamically determining a sensitivity label for the document based on content included in information within the document. Information within a document varies from day to day, for example, document information may decrease in importance with time, increase in importance due to an event, etc. Therefore, the sensitivity label of the document, according to embodiments described herein, may also change dynamically in accordance with document content, information, etc.
摘要翻译：根据一个实施例，文档中的文档信息的灵敏度标签可以通过根据文档中的信息中包含的内容灵活地和动态地确定文档的灵敏度标签来实时确定。文档中的信息每天都不同，例如，随着时间的推移，文档信息的重要性可能会降低，由于事件的重要性的增加等等。因此，根据本文所述的实施例的文档的灵敏度标签也可以改变动态地根据文件内容，信息等

8. 发明授权

US08595511B2 Securely managing the execution of screen rendering instructions in a host operating system and virtual machine 失效
标题翻译：在主机操作系统和虚拟机中安全地管理屏幕渲染指令的执行
公开(公告)号：US08595511B2
公开(公告)日：2013-11-26
申请号：US13488369
申请日：2012-06-04
申请人： Taku Aratsu , Sanehiro Furuichi , Tada Masami
发明人： Taku Aratsu , Sanehiro Furuichi , Tada Masami
IPC分类号： H04L9/00 , G06F9/455
CPC分类号： G06F9/45558 , G06F21/53 , G06F21/606 , G06F2009/45587 , G06F2221/2141
摘要： Provided are a computer readable storage medium, computer apparatus, and method for securely managing the execution of screen rendering instructions in a host operating system and virtual machine. A first rendering instruction hooking section is set to a first mode to hook a screen rendering instruction issued by a virtual machine application in a virtual machine. A second rendering instruction hooking section is set to a second mode to hook instructions issued by the virtual machine application. The hooked screen rendering instruction issued by the virtual machine application are encrypted in response to the setting of the first mode to produce illegible output. The hooked screen rendering instruction issued by the virtual machine application are encrypted in response to the setting of the second mode. The encrypted hooked screen rendering instruction encrypted in the second mode are issued to a host operating system to decrypt.
摘要翻译：提供了一种用于在主机操作系统和虚拟机中安全地管理屏幕呈现指令的执行的计算机可读存储介质，计算机装置和方法。将第一渲染指令挂钩部分设置为第一模式以将由虚拟机应用发出的屏幕渲染指令挂接在虚拟机中。将第二渲染指令挂钩部分设置为第二模式以钩住由虚拟机应用发出的指令。响应于第一模式的设置，由虚拟机应用发出的挂接画面呈现指令被加密以产生难以辨认的输出。响应于第二模式的设置，由虚拟机应用发出的挂接画面呈现指令被加密。以第二模式加密的加密的挂接屏幕呈现指令被发布到主机操作系统以进行解密。

9. 发明申请

US20120167198A1 Resource Protection from Unauthorized Access Using State Transition Histories 有权
标题翻译：资源保护免受未经授权的访问使用状态转换历史
公开(公告)号：US20120167198A1
公开(公告)日：2012-06-28
申请号：US13338054
申请日：2011-12-27
申请人： Yasutaka Nishimura , Taku Aratsu , Sanehiro Furuichi
发明人： Yasutaka Nishimura , Taku Aratsu , Sanehiro Furuichi
IPC分类号： G06F21/00
CPC分类号： G06F21/6218 , G06F2221/2133
摘要： A resource protection program, apparatus, and method for protecting resources to be processed on a computer. The resource protection program causes a computer to implement: a preparatory function as a function for preparing multiple defined state transition histories and multiple defined actions, both of which are associated with each other, wherein each of the defined state transition histories defines a state transition history of the computer upon execution of predetermined access to a predetermined resource, and each of the defined actions defined to be executable when a transition is made from a defined state to the next defined state; and an action execution function for selecting, upon execution of the real access to the real resource, a defined action associated with a marched defined state transition history from among one or more defined actions to execute die defined action selected.
摘要翻译：一种用于保护在计算机上要处理的资源的资源保护程序，装置和方法。资源保护程序使计算机实现：作为准备多个定义的状态转换历史和多个定义的动作的功能的准备功能，两者都彼此相关联，其中每个定义的状态转换历史定义状态转换历史执行对预定资源的预定访问的计算机的每一个，以及当从定义的状态到下一个定义的状态进行转换时，所定义的动作被定义为可执行的; 以及动作执行功能，用于在执行对真实资源的真实访问之后，从一个或多个所定义的动作中选择与行进的定义的状态转移历史相关联的定义动作，以执行所选定义的定义动作。

10. 发明授权

US08806642B2 Resource protection from unauthorized access using state transition histories 有权
标题翻译：资源保护免受未经授权的访问使用状态转换历史
公开(公告)号：US08806642B2
公开(公告)日：2014-08-12
申请号：US13338054
申请日：2011-12-27
申请人： Taku Aratsu , Sanehiro Furuichi , Yasutaka Nishimura
发明人： Taku Aratsu , Sanehiro Furuichi , Yasutaka Nishimura
IPC分类号： G06F11/00
CPC分类号： G06F21/6218 , G06F2221/2133
摘要： A resource protection program, apparatus, and method for protecting resources to be processed on a computer. The resource protection program causes a computer to implement: a preparatory function as a function for preparing multiple defined state transition histories and multiple defined actions, both of which are associated with each other, wherein each of the defined state transition histories defines a state transition history of the computer upon execution of predetermined access to a predetermined resource, and each of the defined actions defined to be executable when a transition is made from a defined state to the next defined state; and an action execution function for selecting, upon execution of the real access to the real resource, a defined action associated with a marched defined state transition history from among one or more defined actions to execute die defined action selected.
摘要翻译：一种用于保护在计算机上要处理的资源的资源保护程序，装置和方法。资源保护程序使计算机实现：作为准备多个定义的状态转换历史和多个定义的动作的功能的准备功能，两者都彼此相关联，其中每个定义的状态转换历史定义状态转换历史执行对预定资源的预定访问的计算机的每一个，以及当从定义的状态到下一个定义的状态进行转换时，所定义的动作被定义为可执行的; 以及动作执行功能，用于在执行对真实资源的真实访问之后，从一个或多个所定义的动作中选择与行进的定义的状态转移历史相关联的定义动作，以执行所选定义的定义动作。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式