会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 2. 发明申请
    • Hardware-Assisted Integrity Monitor
    • 硬件辅助完整性监视器
    • US20120297057A1
    • 2012-11-22
    • US13296312
    • 2011-11-15
    • Anup K. GhoshKun SunJiang WangAngelos Stavrou
    • Anup K. GhoshKun SunJiang WangAngelos Stavrou
    • G06F15/173
    • H04L63/1441G06F9/45558G06F21/575G06F2009/45587G06F2221/2105
    • A hardware-assisted integrity monitor may include one or more target machines and/or monitor machines. A target machine may include one or more processors, which may include one or more system management modes (SMM). A SMM may include one or more register checking modules, which may be configured to determine one or more current CPU register states. A SMM may include one or more acquiring modules, which may be configured to determine one or more current memory states. A SMM may include one or more network modules, which may be configured to direct one or more communications, for example of one or more current CPU register states and/or current memory states, to a monitor machine. A monitor machine may include one or more network modules and/or analysis modules. An analysis module may be configured to determine memory state differences and/or determine CPU register states differences.
    • 硬件辅助完整性监视器可以包括一个或多个目标机器和/或监视器机器。 目标机器可以包括一个或多个处理器,其可以包括一个或多个系统管理模式(SMM)。 SMM可以包括一个或多个寄存器检查模块,其可以被配置为确定一个或多个当前CPU寄存器状态。 SMM可以包括一个或多个获取模块,其可以被配置为确定一个或多个当前存储器状态。 SMM可以包括一个或多个网络模块,其可以被配置为将一个或多个通信(例如一个或多个当前CPU寄存器状态和/或当前存储器状态)引导到监视器机器。 监视器机器可以包括一个或多个网络模块和/或分析模块。 分析模块可以被配置为确定存储器状态差异和/或确定CPU寄存器状态差异。
    • 3. 发明申请
    • AUTOMATIC CORRECTION OF APPLICATION BASED ON RUNTIME BEHAVIOR
    • 基于运行行为的自动校正
    • US20140289563A1
    • 2014-09-25
    • US13848104
    • 2013-03-21
    • Anup K. Ghosh
    • Anup K. Ghosh
    • G06F11/36
    • G06F11/3688G06F8/70G06F11/0706G06F11/0793G06Q10/00
    • A method and associated system for automatically correcting an application based on runtime behavior of the application. An incident indicates a performance of the application in which a problem object produces an outcome that had not been expected by a user or by a ticketing tool. An incident flow for the problem object is automatically analyzed. Actual run of the application renders a forward data flow and at least one backward data flow is simulated from an expected outcome of the problem object. The forward data flow and the backward data flow(s) are compared to create a candidate fault list for the problem object. A technical specification to correct the candidate fault list and a solution to replace the application are subsequently devised.
    • 一种基于应用程序的运行时行为自动校正应用程序的方法和关联系统。 事件表示应用程序的性能,其中问题对象产生用户或票务工具未预期的结果。 自动分析问题对象的事件流。 应用程序的实际运行呈现转发数据流,并且从问题对象的预期结果模拟至少一个后向数据流。 比较正向数据流和反向数据流以创建问题对象的候选故障列表。 随后设计了用于校正候选故障列表的技术规范和替换应用的解决方案。
    • 4. 发明授权
    • Automatic correction of application based on runtime behavior
    • 基于运行时行为自动更正应用程序
    • US08448139B2
    • 2013-05-21
    • US12573421
    • 2009-10-05
    • Anup K. Ghosh
    • Anup K. Ghosh
    • G06F9/44
    • G06F11/3636
    • A system and associated method for automatically correcting an application based on runtime behavior of the application. An incident indicates a performance of the application in which a problem object produces an outcome that had not been expected by a user or by a ticketing tool. An incident flow for the problem object is automatically analyzed. Actual run of the application renders a forward data flow and at least one backward data flow is simulated from an expected outcome of the problem object. The forward data flow and the backward data flow(s) are compared to create a candidate fault list for the problem object. A technical specification to correct the candidate fault list and a solution to replace the application are subsequently devised.
    • 一种基于应用程序的运行时行为自动校正应用程序的系统和相关方法。 事件表示应用程序的性能,其中问题对象产生用户或票务工具未预期的结果。 自动分析问题对象的事件流。 应用程序的实际运行呈现转发数据流,并且从问题对象的预期结果模拟至少一个后向数据流。 比较正向数据流和反向数据流以创建问题对象的候选故障列表。 随后设计了用于校正候选故障列表的技术规范和替换应用的解决方案。
    • 5. 发明申请
    • Attack Resistant Continuous Network Service Trustworthiness Controller
    • 防攻击连续网络服务可信赖控制器
    • US20090044265A1
    • 2009-02-12
    • US12059454
    • 2008-03-31
    • Anup K. GhoshYih HuangArun Sood
    • Anup K. GhoshYih HuangArun Sood
    • G06F21/00G06F15/173
    • G06F21/552H04L63/0227H04L63/1416H04L2463/141H04L2463/144
    • An attack resistant continuous network service trustworthiness controller comprising: state estimation module(s), response selection module(s), actuation module(s), and client dispatcher communication module(s) for maintaining the availability and integrity of online server(s). The state estimation module(s) are configured to generate state estimate(s) for online server(s) using behavior data obtained using sensor module(s). The response selection module(s) are configured to determine corrective action(s) to maintain the availability and integrity of online server(s) when state estimate(s) indicate that the integrity of an online server(s) is compromised. The actuation module(s) are configured to activate actuator(s) based upon the corrective action(s). Client dispatcher communication module(s) are configured to communicate online server availability information to a client dispatcher.
    • 一种抗攻击连续网络服务可信赖性控制器,包括:状态估计模块,响应选择模块,致动模块和用于维护在线服务器的可用性和完整性的客户端调度员通信模块, 。 状态估计模块被配置为使用使用传感器模块获得的行为数据来生成在线服务器的状态估计。 响应选择模块被配置为当状态估计指示在线服务器的完整性受到损害时,确定维护在线服务器的可用性和完整性的校正动作。 致动模块被配置成基于校正动作激活致动器。 客户机调度员通信模块被配置为将在线服务器可用性信息传送到客户端调度程序。
    • 6. 发明授权
    • Attack resistant continuous network service trustworthiness controller
    • 防攻击连续网络服务可信赖控制器
    • US08572735B2
    • 2013-10-29
    • US12059454
    • 2008-03-31
    • Anup K. GhoshYih HuangArun Sood
    • Anup K. GhoshYih HuangArun Sood
    • G06F11/00G06F12/16G08B23/00
    • G06F21/552H04L63/0227H04L63/1416H04L2463/141H04L2463/144
    • An attack resistant continuous network service trustworthiness controller comprising: state estimation module(s), response selection module(s), actuation module(s), and client dispatcher communication module(s) for maintaining the availability and integrity of online server(s). The state estimation module(s) are configured to generate state estimate(s) for online server(s) using behavior data obtained using sensor module(s). The response selection module(s) are configured to determine corrective action(s) to maintain the availability and integrity of online server(s) when state estimate(s) indicate that the integrity of an online server(s) is compromised. The actuation module(s) are configured to activate actuator(s) based upon the corrective action(s). Client dispatcher communication module(s) are configured to communicate online server availability information to a client dispatcher.
    • 一种抗攻击连续网络服务可信赖性控制器,包括:状态估计模块,响应选择模块,致动模块和用于维护在线服务器的可用性和完整性的客户端调度员通信模块, 。 状态估计模块被配置为使用使用传感器模块获得的行为数据来生成在线服务器的状态估计。 响应选择模块被配置为当状态估计指示在线服务器的完整性受到损害时,确定维护在线服务器的可用性和完整性的校正动作。 致动模块被配置成基于校正动作激活致动器。 客户机调度员通信模块被配置为将在线服务器可用性信息传送到客户端调度程序。
    • 7. 发明申请
    • Hardware Assisted Operating System Switch
    • 硬件辅助操作系统开关
    • US20120297177A1
    • 2012-11-22
    • US13296303
    • 2011-11-15
    • Anup K. GhoshKun SunJiang WangAngelos Stavrou
    • Anup K. GhoshKun SunJiang WangAngelos Stavrou
    • G06F15/177
    • G06F21/575G06F21/53
    • An interoperable firmware memory containing a Basic Input Output System (BIOS) and a trusted platform module (TPSM). The BIOS includes CPU System Management Mode (SMM) firmware configured as read-only at boot. The SMM firmware configured to control switching subsequent to boot between at least: a first memory and second isolated memory; and a first and second isolated non-volatile storage device. The first memory including a first operating system and the second memory including a second operating system. The first non-volatile storage device configured to be used by the first operating system and the second non-volatile storage device configured to be used by the second operating system. The trusted platform module (TPSM) configured to check the integrity of the CPU system Management Mode (SMM) during the boot process.
    • 包含基本输入输出系统(BIOS)和信任平台模块(TPSM)的可互操作的固件存储器。 BIOS包括在启动时配置为只读的CPU系统管理模式(SMM)固件。 所述SMM固件被配置为在至少第一存储器和第二隔离存储器之间控制在引导之后的切换; 以及第一和第二隔离的非易失性存储装置。 所述第一存储器包括第一操作系统,所述第二存储器包括第二操作系统。 所述第一非易失性存储设备被配置为由所述第一操作系统和所述第二非易失性存储设备使用,所述第二非易失性存储设备被配置为被所述第二操作系统使用 可信平台模块(TPSM)被配置为在引导过程中检查CPU系统管理模式(SMM)的完整性。
    • 9. 发明申请
    • ON-DEMAND DISPOSABLE VIRTUAL WORK SYSTEM
    • 需求可行的虚拟工作系统
    • US20090125902A1
    • 2009-05-14
    • US12037412
    • 2008-02-26
    • Anup K. GhoshSushil JajodiaYih HuangJiang Wang
    • Anup K. GhoshSushil JajodiaYih HuangJiang Wang
    • G06F9/455
    • G06F9/45533G06F9/45558G06F21/53G06F2009/45562G06F2009/45575
    • An on-demand disposable virtual work system that includes: a virtual machine monitor to host virtual machines, a virtual machine pool manager, a host operating system, a host program permissions list, and a request handler module. The virtual machine pool manager manages virtual machine resources. The host operating system interfaces with a user and virtual machines created with an image of a reference operating system. The host program permissions list may be a black list and/or a white list used to indicate allowable programs. The request handler module allows execution of the program if the program is allowable. If the program is not allowable, the host request handler module: denies program execution and urges a virtual machine specified by the virtual machine pool manager to execute the program. The virtual machine is terminated when the program closes.
    • 一种按需一次性虚拟工作系统,其包括:虚拟机监视器以托管虚拟机,虚拟机池管理器,主机操作系统,主机程序许可列表和请求处理程序模块。 虚拟机池管理器管理虚拟机资源。 主机操作系统与用户以及使用参考操作系统映像创建的虚拟机进行接口。 主机程序许可列表可以是用于指示允许的程序的黑名单和/或白名单。 如果程序是允许的,请求处理程序模块允许执行程序。 如果程序不允许,主机请求处理程序模块:拒绝程序执行,并且敦促由虚拟机池管理器指定的虚拟机执行该程序。 虚拟机在程序关闭时终止。