专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明专利

GB2608738A Automated actions in a security platform 未知
公开(公告)号：GB2608738A
公开(公告)日：2023-01-11
申请号：GB202214032
申请日：2021-02-23
申请人： STRIKEREADY
发明人： ANURAG GURTU , YASIR KHALID
IPC分类号： H04L9/40 , G06N3/04 , G06N3/08
摘要： Systems and methods for providing automated actions in handling security threats are disclosed. The method includes receiving one or more tickets, where each ticket includes event information associated with a security threat. For each ticket, the method further includes extracting one or more entities from the event information, determining at least one actionable entity from the extracted entities, and presenting artifacts found in the ticket, where the artifacts include the actionable entit(ies).

2. 发明专利

GB2608662A An isolation unit 未知
公开(公告)号：GB2608662A
公开(公告)日：2023-01-11
申请号：GB202200936
申请日：2022-01-25
申请人： CIRCUITS AND SOFTWARE LTD
发明人： STUART PENNY , SIMON GRAVE
IPC分类号： H04L9/40 , G06F21/56
摘要： An isolation unit 100 for preventing access to one or more computer devices or network segments 102 by malicious software (e.g. ransomware). The isolation unit has first 104 and second 108 connection interfaces, at least one of which is configured to connect the isolation unit to a data carrying input 106, and the other being at least for outputting data to the computer devices/network segments. Connection circuitry 110 connects the first and second interfaces, and has at least one switchable connection path 112 with a layer 1 switch 114 (i.e. a switch operable at the OSI physical layer). A controller 116 is configured to switch the switch between a closed state, in which the first and second interfaces are connected by the switchable connection path, and an open state, in which the switchable connection path is disconnected between the first and second interfaces. The isolation unit may be used to isolate a data storage back-up device.

3. 发明专利

GB2608592A Network security 未知
公开(公告)号：GB2608592A
公开(公告)日：2023-01-11
申请号：GB202109365
申请日：2021-06-29
申请人： BRITISH TELECOMM
发明人： DANIEL BASTOS , FADI EL-MOUSSA
IPC分类号： H04L9/40
摘要： A processor-controlled device 104 and remote system 114 for identifying malicious behaviour in a network. The processor-controlled device (e.g. a gateway, router or home hub) identifies (e.g. using a machine learning system) a first portion of a data transmission 107 indicative of an anomaly and a second portion of the data transmission comprising personal data. The processor-controlled device generates a modified data transmission 112, the modification of the data transmission comprising anonymising at least the second portion of the data transmission, and sends the modified data transmission to the remote system for identification of whether the first portion of the data is indicative of malicious behaviour. If the first portion is indicative of malicious behaviour, then the remote system may send a response (118, Figure 2) indicative of this to the processor-controlled device. The response may include a policy to be implemented by the processor-controlled device. The modification of the data transmission may include encrypting the first portion and the encryption may be attribute-based. By providing anonymised data to the remote system the privacy of users is ensured.

4. 发明专利

GB2608341A Intrusion detection with honeypot keys 未知
公开(公告)号：GB2608341A
公开(公告)日：2022-12-28
申请号：GB202214041
申请日：2019-09-25
申请人： SOPHOS LTD
发明人： ANDREAS BERGER , HARALD SCHUTZ , RUSSELL HUMPHRIES , MARK DAVID HARRIS , KENNETH D RAY
IPC分类号： H04L9/40 , G06F21/55 , H04W12/121 , H04W12/122
摘要： A method for detecting malicious users in an enterprise network and initiating remedial actions. A honeypot file accessible to the enterprise network is cryptographically secured 506 (e.g. by encrypting or signing the file using key material) to provide a tagged file 512. Key material 516 for decrypting the tagged file is then stored 510 in a central keystore 518 for the enterprise network. If a retrieval of the stored key material from the central key store is detected 520 then a remedial/security action is initiated 522 in response to this. The remedial/security action may include issuing an alert or identifying a malicious intruder, and then blacklisting them, redirecting them to a honeypot, or monitoring their activities. The honeypot file may be provided by selecting a non-confidential file available on a data store in the enterprise network and may include a modified access control list.

5. 发明专利

DE102022114380A1 SICHERHEITSDIENSTE IN EINEM SOFTWAREDEFINIERTEN STEUERUNGSSYSTEM 未知
公开(公告)号：DE102022114380A1
公开(公告)日：2022-12-22
申请号：DE102022114380
申请日：2022-06-08
申请人： FISHER ROSEMOUNT SYSTEMS INC
发明人： AMARO ANTHONY JR , NIXON MARK J
IPC分类号： G06F21/30 , H04L9/40
摘要： Ein Software-definiertes (SD) Prozesssteuerungssystem (SDCS) beinhaltet einen Steuerungscontainer mit Inhalten, die während der Laufzeit der Prozessanlage ausführbar sind, um mindestens einen Bereich eines industriellen Prozesses zu steuern. Das SDCS beinhaltet auch einen Sicherheitsdienst, der mit dem Steuerungscontainer verbunden ist und Inhalte beinhaltet, die eine oder mehrere Sicherheitsbedingungen definieren. Der Sicherheitsdienst wird über einen Container auf einem Rechenknoten des SDCS ausgeführt, um den Zugriff auf und/oder den Datenfluss von dem Steuerungscontainer auf der Grundlage des Inhalts des Sicherheitscontainers zu steuern.

6. 发明专利

PL3817314T3 Sposób i urządzenia komunikacyjne do rozszerzania logowania na wiele urządzeń komunikacyjnych 未知
公开(公告)号：PL3817314T3
公开(公告)日：2022-12-19
申请号：PL19188835
申请日：2015-12-21
申请人： ERICSSON TELEFON AB L M
发明人： ARAÚJO JOSÉ , ZHANG GUOQIANG , ANDERSSON LARS
IPC分类号： H04L9/40 , H04W12/04 , H04W12/06 , H04W12/33

7. 发明专利

NL2031466A System and method for active detection of malicious network resources 未知
公开(公告)号：NL2031466A
公开(公告)日：2022-12-19
申请号：NL2031466
申请日：2022-03-31
申请人： GROUP IB TDS LTD
发明人： DMITRY VOLKOV , NIKOLAY PRUDKOVSKIY
IPC分类号： H04L9/40
摘要： The technique relates to the ﬁeld of information security. A computer-implementable method for active detection of malicious network resources, the method being executable by a distributed computer system, the method comprising receiving an outbound infrastructure trafﬁc, detecting at least one suspicious external IP address in the outbound trafﬁc, scanning at least one suspicious device located on detected at least one suspicious IP address, and obtaining a list of services running on the suspicious device, sending detected at least one suspicious IP address and the obtained list of services to an external computing device, comparing the obtained list of services with a data on known malicious services, and in response to a coincidence of at least one service from the obtained service list with the data on known malicious services considering the suspicious device, located on at least one suspicious IP address, to be malicious and generating at least one report on detection of malicious activity in the infrastructure. In response to absence of coincidences of services from the obtained service list with the data on known malicious services, computing an interval of ownership of at least one suspicious IP address, and in response to the fact that the computed duration of the ownership interval is less than a threshold value, considering the suspicious device, located on at least one suspicious IP address, to be malicious and generating at least one report on detection of malicious activity in the infrastructure.

8. 发明专利

ES2930468T3 Procedimiento de asignación dinámica de recursos de una red IP para la comunicación entre aplicaciones ejecutadas en dominios seguros; sistema para la implementación del procedimiento 未知
公开(公告)号：ES2930468T3
公开(公告)日：2022-12-14
申请号：ES20216577
申请日：2020-12-22
申请人： THALES SA
发明人： MONTENOT JEAN-MARC , SCHOLLER FRANCK , DELATTRE MICHEL
IPC分类号： H04L9/40 , G01S5/00

9. 发明专利

CA2988457C CONTROLLING USER ACCESS TO COMMAND EXECUTION 未知
公开(公告)号：CA2988457C
公开(公告)日：2022-12-13
申请号：CA2988457
申请日：2016-06-23
申请人： AMAZON TECH INC
发明人： HASHMI OMER , CHUNG KATHERINE YICHEN
IPC分类号： H04L9/40 , G06F9/44 , G06F9/455 , H04L67/10 , H04L67/306
摘要： Techniques are described for providing users with access to perform commands on network-accessible computing resources. In some situations, permissions are established for user(s) to execute command(s) on computing node(s) provided by an online service, such as by maintaining various permission information externally to those provided computing nodes for use in controlling users' ability to access, use, and/or modify the provided computing nodes. An interface component may use such external permissions information to determine if a particular user is authorized to execute one or more particular commands on one or more particular computing nodes, and to initiate simultaneous and independent execution of the command(s) on the computing node(s) when authorized. The interface component may further aggregate results from each computing node that executed the command(s), prior to providing the results to the user.

10. 发明专利

DE102016208435B4 Fahrzeuginternes Netzwerksystem 未知
公开(公告)号：DE102016208435B4
公开(公告)日：2022-11-24
申请号：DE102016208435
申请日：2016-05-17
申请人： DENSO CORP
发明人： HASEGAWA TAKAO , KOMORI SYOTA
IPC分类号： H04L65/00 , G06F13/42 , H04L9/40 , H04L12/407 , H04L43/0876 , H04L47/36 , H04L47/765 , H04L67/00 , H04L67/12 , H04L69/00
摘要： Fahrzeuginternes Netzwerksystem, das System umfassend:fahrzeuginterne Vorrichtungen (501-504) in einem Fahrzeug; undeinen Netzwerkbus (100), welcher mehrere Knoten (200, 300, 401-404) kommunizierbar verbindet, welche die fahrzeuginternen Vorrichtungen steuern, wobei die mehreren Knoten miteinander unter Verwendung eines Steuerprotokolls kommunizieren und umfasseneinen Senderknoten (200), welcher mit dem Netzwerkbus verbunden ist und einen ersten Rahmen sendet, und einen Empfängerknoten (300), welcher mit dem Netzwerkbus verbunden ist und einen Flusssteuerrahmen (FC) nach Empfangen des ersten Rahmens sendet, wobeider Empfängerknoten den Flusssteuerrahmen (FC) nach Hinzufügen von Nutzdatenlängeninformation (24, 34) an den Flusssteuerrahmen (FC) gemäß dem Steuerprotokoll an den Senderknoten sendet,der Senderknoten eine Nutzdatenlänge eines zu übertragenden nachfolgenden Rahmens (CF) nach Empfangen des Flusssteuerrahmens basierend auf der Nutzdatenlängeninformation festlegt,der Flusssteuerrahmen ferner einen Kopfbereich umfasst,der Empfängerknoten fähig ist, einen Datenlängencode (24) in dem Kopfbereich des Flusssteuerrahmens zu ändern,der Senderknoten die Nutzdatenlänge des nachfolgenden Rahmens basierend auf dem Datenlängencode festlegt, undder Empfängerknoten die Nutzdatenlängeninformation bildet, um eine kürzere Nutzdatenlänge des nachfolgenden Rahmens festzulegen, wenn eine Kommunikationslast des Netzwerkbusses zunimmt.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式