专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明申请

US20090003951A1 Cutting Tool 有权
标题翻译：切割用具
公开(公告)号：US20090003951A1
公开(公告)日：2009-01-01
申请号：US12205213
申请日：2008-09-05
申请人： Michael Steiner
发明人： Michael Steiner
IPC分类号： B23Q11/10 , B23Q41/00
CPC分类号： B23B27/10 , B23B2250/12 , B23Q11/1053 , F25B9/04 , Y10T82/16065 , Y10T407/14 , Y10T409/304032 , Y10T409/304088
摘要： A cutting tool for machining by chip removal has a supply of a cold-gas flow for cooling the immediate machine-cutting region. Accordingly, in this case, the cold-gas flow is supplied internally and is generated by a low-temperature generator, which is integrated into the tool main body and which, via a vortex tube, converts compressed gas from normal temperature into a cold-gas flow and a warm-gas flow.
摘要翻译：用于通过切屑去除加工的切削工具具有用于冷却立即切割区域的冷气流的供应。因此，在这种情况下，冷气流在内部供给，并且由集成在工具主体中的低温发生器产生，并且通过涡流管将压缩气体从常温转换成冷 - 气流和暖气流。

12. 发明申请

US20080263662A1 SYSTEM AND METHOD FOR FUZZY MULTI-LEVEL SECURITY 有权
标题翻译： FUZZY多级安全系统与方法
公开(公告)号：US20080263662A1
公开(公告)日：2008-10-23
申请号：US12131206
申请日：2008-06-02
申请人： Pau-Chen Cheng , Shai Halevi , Trent Ray Jaeger , Paul Ashley Karger , Ronald Perez , Pankaj Rohatgi , Angela Marie Schuett , Michael Steiner , Grant M. Wagner
发明人： Pau-Chen Cheng , Shai Halevi , Trent Ray Jaeger , Paul Ashley Karger , Ronald Perez , Pankaj Rohatgi , Angela Marie Schuett , Michael Steiner , Grant M. Wagner
IPC分类号： G06F21/00
CPC分类号： G06N7/023 , G06F21/577 , G06F21/604 , G06F21/6218 , H04L63/105
摘要： An access control system and method includes a risk index module which computes a risk index for a dimension contributing to risk. A boundary range defined for a parameter representing each risk index such that the parameter above the range is unacceptable, below the range is acceptable and in the range is acceptable with mitigation measures. A mitigation module determines the mitigation measures which reduce the parameter within the range.
摘要翻译：访问控制系统和方法包括风险指数模块，其计算用于风险的维度的风险指数。为表示每个风险指数的参数定义的边界范围，使得高于该范围的参数是不可接受的，低于该范围是可接受的，并且在该范围内可以用缓解措施来接受。缓解模块确定减少该范围内的参数的缓解措施。

13. 发明申请

US20080173257A1 Animal control apparatus and methods 审中-公开
标题翻译：动物控制装置及方法
公开(公告)号：US20080173257A1
公开(公告)日：2008-07-24
申请号：US11655306
申请日：2007-01-18
申请人： Michael Steiner , Pattie Steiner
发明人： Michael Steiner , Pattie Steiner
IPC分类号： A01K27/00
CPC分类号： A01K27/004 , A01K15/029 , A01K27/006 , A01K27/007 , A01K27/008 , A01K27/009
摘要： Apparatus and methods for animal control and restraint. In one embodiment, the apparatus comprises a retractable tether (e.g., leash) having a single-handed grip handle which include a built-in chemical repellent. The handle further includes a mechanism for quickly dispensing chemical repellent directionally by initiating a safety and actuating a trigger mechanism. The repellant can be used to rapidly spray one or more animals (such as during a dogfight) so as to minimize physical trauma to the dogs, and emotional trauma to the owner(s). Also, the handle is optionally equipped with a built in light for effective use of the handle (and repellant) in the dark, as well as a retractable mechanism to manage the dispensing and storage of a leash that can be attached to an animal collar.
摘要翻译：用于动物控制和约束的装置和方法。在一个实施例中，该装置包括具有单手抓握手柄的可伸缩绳索（例如，皮带），其包括内置的化学驱除剂。手柄还包括通过启动安全性并致动触发机构来快速分配化学驱除剂的机构。驱避剂可用于快速喷洒一只或多只动物（例如在狗ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight ight 此外，手柄可选地装备有用于在黑暗中有效使用手柄（和驱避剂）的内置光，以及用于管理可附接到动物衣领的皮带的分配和存储的可伸缩机构。

14. 发明授权

US08087090B2 Fuzzy multi-level security 有权
标题翻译：模糊多级安全
公开(公告)号：US08087090B2
公开(公告)日：2011-12-27
申请号：US12131206
申请日：2008-06-02
申请人： Pau-Chen Cheng , Shai Halevi , Trent Ray Jaeger , Paul Ashley Karger , Ronald Perez , Pankaj Rohatgi , Angela Marie Schuett , Michael Steiner , Grant M. Wagner
发明人： Pau-Chen Cheng , Shai Halevi , Trent Ray Jaeger , Paul Ashley Karger , Ronald Perez , Pankaj Rohatgi , Angela Marie Schuett , Michael Steiner , Grant M. Wagner
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G06F7/04 , G08B23/00
CPC分类号： G06N7/023 , G06F21/577 , G06F21/604 , G06F21/6218 , H04L63/105
摘要： An access control system and method includes a risk index module which computes a risk index for a dimension contributing to risk. A boundary range defined for a parameter representing each risk index such that the parameter above the range is unacceptable, below the range is acceptable and in the range is acceptable with mitigation measures. A mitigation module determines the mitigation measures which reduce the parameter within the range by mapping the effectiveness of performing the mitigation measures to determine a residual risk after a mitigation measure has been implemented.
摘要翻译：访问控制系统和方法包括风险指数模块，其计算用于风险的维度的风险指数。为表示每个风险指数的参数定义的边界范围，使得高于该范围的参数是不可接受的，低于该范围是可接受的，并且在该范围内可以用缓解措施来接受。缓解模块通过绘制执行缓解措施的有效性来确定缓解措施实施后的剩余风险，确定减少范围内的参数的缓解措施。

15. 发明授权

US08020193B2 Systems and methods for protecting web based applications from cross site request forgery attacks 失效
标题翻译：用于保护基于Web的应用程序免受跨站点请求伪造攻击的系统和方法
公开(公告)号：US08020193B2
公开(公告)日：2011-09-13
申请号：US12254494
申请日：2008-10-20
申请人： Sumeer K. Bhola , Todd E. Kaplinger , Michael Steiner
发明人： Sumeer K. Bhola , Todd E. Kaplinger , Michael Steiner
IPC分类号： G06F17/00 , G06F7/04 , G06F15/16 , G06F17/30 , H04L29/06 , H04N7/16
CPC分类号： H04L63/1441 , G06F21/335 , G06F21/6218 , H04L67/02
摘要： Computer implemented methods (200) for protecting web based applications (110, 114) from Cross Site Request Forgery (CSRF) attacks. The methods involve (204) classifying each resource offered by a web server application as a CSRF-protected resource or a not-CSRF-protected resource. The methods also involve (214, . . . , 222) performing a user authentication, (224) initializing an authentication-token, and (226) initializing a CSRF protection secret that is used to validate CSRF protection parameters contained in resource identifiers for the resources. The methods further involve (228) performing a server-side rewriting process (300) to add the CSRF protection parameter to the resource identifiers for the resources and/or (230) performing a client-side rewriting process to add the CSRF protection parameter to a resource identifier for a second resource (e.g., a resource created at a client computer (102)).
摘要翻译：用于保护基于Web的应用程序（110,114）免受跨站点请求伪造（CSRF）攻击的计算机实现的方法（200）。这些方法涉及（204）将由Web服务器应用提供的每个资源分类为受CSRF保护的资源或不受CSRF保护的资源。这些方法还涉及执行用户认证的（214，...，222），（224）初始化认证令牌，以及（226）初始化用于验证包含在资源标识符中的CSRF保护参数的CSRF保护机密资源。所述方法还包括（228）执行服务器侧重写处理（300）以将CSRF保护参数添加到资源的资源标识符和/或（230）执行客户端重写处理以将CSRF保护参数添加到用于第二资源的资源标识符（例如，在客户端计算机（102）处创建的资源）。

16. 发明申请

US20100100927A1 SYSTEMS AND METHODS FOR PROTECTING WEB BASED APPLICATIONS FROM CROSS SITE REQUEST FORGERY ATTACKS 失效
标题翻译：保护基于网站的应用程序的系统和方法从交叉点请求伪造攻击
公开(公告)号：US20100100927A1
公开(公告)日：2010-04-22
申请号：US12254494
申请日：2008-10-20
申请人： Sumeer K. Bhola , Todd E. Kaplinger , Michael Steiner
发明人： Sumeer K. Bhola , Todd E. Kaplinger , Michael Steiner
IPC分类号： G06F21/20 , H04L9/32
CPC分类号： H04L63/1441 , G06F21/335 , G06F21/6218 , H04L67/02
摘要： Computer implemented methods (200) for protecting web based applications (110, 114) from Cross Site Request Forgery (CSRF) attacks. The methods involve (204) classifying each resource offered by a web server application as a CSRF-protected resource or a not-CSRF-protected resource. The methods also involve (214, . . . , 222) performing a user authentication, (224) initializing an authentication-token, and (226) initializing a CSRF protection secret that is used to validate CSRF protection parameters contained in resource identifiers for the resources. The methods further involve (228) performing a server-side rewriting process (300) to add the CSRF protection parameter to the resource identifiers for the resources and/or (230) performing a client-side rewriting process to add the CSRF protection parameter to a resource identifier for a second resource (e.g., a resource created at a client computer (102)).
摘要翻译：用于保护基于Web的应用程序（110,114）免受跨站点请求伪造（CSRF）攻击的计算机实现的方法（200）。这些方法涉及（204）将由Web服务器应用提供的每个资源分类为受CSRF保护的资源或不受CSRF保护的资源。这些方法还涉及执行用户认证的（214，...，222），（224）初始化认证令牌，以及（226）初始化用于验证包含在资源标识符中的CSRF保护参数的CSRF保护机密资源。所述方法还包括（228）执行服务器侧重写处理（300）以将CSRF保护参数添加到资源的资源标识符和/或（230）执行客户端重写处理以将CSRF保护参数添加到用于第二资源的资源标识符（例如，在客户端计算机（102）处创建的资源）。

17. 发明授权

US07496616B2 Method, apparatus and system for resistance to side channel attacks on random number generators 失效
标题翻译：对随机数发生器进行侧向通道攻击的方法，装置和系统
公开(公告)号：US07496616B2
公开(公告)日：2009-02-24
申请号：US10987640
申请日：2004-11-12
申请人： Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
发明人： Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
IPC分类号： G06F1/02
CPC分类号： G06F7/582 , H04L9/003 , H04L9/0662
摘要： A random number generator (RNG) resistant to side channel attacks includes an activation pseudo random number generator (APRNG) having an activation output connected to an activation seed input to provide a next seed to the activation seed input. A second random number generator includes a second seed input, which receives the next seed and a random data output, which outputs random data in accordance with the next seed. An input seed memory is connected to the activation seed input and a feedback connection from the activation output so that the next seed is stored in the input seed memory to be used by the APRNG as the activation seed input at a next startup cycle.
摘要翻译：具有抗侧向信道攻击的随机数发生器（RNG）包括具有连接到激活种子输入的激活输出的激活伪随机数生成器（APRNG），以向激活种子输入提供下一种子。第二随机数生成器包括第二种子输入，其接收下一个种子和随机数据输出，其根据下一种子输出随机数据。输入种子存储器连接到激活种子输入和来自激活输出的反馈连接，使得下一种子存储在输入种子存储器中，以供APRNG使用，作为下一个启动周期的激活种子输入。

18. 发明申请

US20060161982A1 Intrusion detection system 审中-公开
标题翻译：入侵检测系统
公开(公告)号：US20060161982A1
公开(公告)日：2006-07-20
申请号：US11037695
申请日：2005-01-18
申请人： Suresh Chari , Pau-Chen Cheng , Josyula Rao , Pankaj Rohatgi , Michael Steiner
发明人： Suresh Chari , Pau-Chen Cheng , Josyula Rao , Pankaj Rohatgi , Michael Steiner
IPC分类号： G06F12/14
CPC分类号： G06F21/554 , G06F21/53
摘要： An intrusion detection system (IDS), method of protecting computers against intrusions and program product therefor. The IDS determines which applications are to run in native environment (NE) and places the remaining applications in a sandbox. Some of the applications in sandboxes may be placed in a personalized virtual environment (PVE) in the sandbox. Upon detecting an attempted attack, a dynamic honeypot may be started for an application in a sandbox and not in a PVE. A virtualized copy of system resources may be created for each application in a sandbox and provided to the corresponding application in the respective sandbox.
摘要翻译：入侵检测系统（IDS），防止计算机入侵的方法和程序产品。 IDS确定在本地环境（NE）中运行哪些应用程序，并将剩余的应用程序放在沙箱中。砂箱中的一些应用程序可能会放置在沙箱中的个性化虚拟环境（PVE）中。在检测到尝试的攻击时，可以为沙箱而不是PVE中的应用启动动态蜜罐。可以为沙箱中的每个应用程序创建系统资源的虚拟副本，并提供给相应沙箱中的相应应用程序。

19. 发明申请

US20060104443A1 Method, apparatus and system for resistance to side channel attacks on random number generators 失效
公开(公告)号：US20060104443A1
公开(公告)日：2006-05-18
申请号：US10987640
申请日：2004-11-12
申请人： Suresh Chari , Vincenzo Diluoffo , Paul Karger , Elaine Palmer , Tal Rabin , Josyula Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Toll
发明人： Suresh Chari , Vincenzo Diluoffo , Paul Karger , Elaine Palmer , Tal Rabin , Josyula Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Toll
IPC分类号： H04L9/00
CPC分类号： G06F7/582 , H04L9/003 , H04L9/0662
摘要： A random number generator (RNG) resistant to side channel attacks includes an activation pseudo random number generator (APRNG) having an activation output connected to an activation seed input to provide a next seed to the activation seed input. A second random number generator includes a second seed input, which receives the next seed and a random data output, which outputs random data in accordance with the next seed. An input seed memory is connected to the activation seed input and a feedback connection from the activation output so that the next seed is stored in the input seed memory to be used by the APRNG as the activation seed input at a next startup cycle.

20. 发明授权

US06694431B1 Piggy-backed key exchange protocol for providing secure, low-overhead browser connections when a server will not use a message encoding scheme proposed by a client 有权
标题翻译：捎带支持的密钥交换协议，用于在服务器不使用客户端提出的消息编码方案时提供安全，低开销的浏览器连接
公开(公告)号：US06694431B1
公开(公告)日：2004-02-17
申请号：US09416100
申请日：1999-10-12
申请人： Carl Binding , Stefan Georg Hild , Yen-Min Huang , Luke James O'Connor , Sandeep K. Singhal , Victor John Shoup , Michael Steiner
发明人： Carl Binding , Stefan Georg Hild , Yen-Min Huang , Luke James O'Connor , Sandeep K. Singhal , Victor John Shoup , Michael Steiner
IPC分类号： H04L900
CPC分类号： H04L63/0428 , H04L63/061
摘要： A method, system, and computer program product for establishing security parameters that are used to exchange data on a secure connection. A piggy-backed key exchange protocol is defined, with which these security parameters are advantageously exchanged. By piggy-backing the key exchange onto other already-required messages (such as a client's HTTP GET request, or the server's response thereto), the overhead associated with setting up a secure browser-to-server connection is minimized. This technique is defined for a number of different scenarios, where the client and server may or may not share an encoding scheme, and is designed to maintain the integrity of application layer communication protocols. In one scenario, a client proposes a message encoding scheme, but the server will not use this proposed scheme. The server proposes a different scheme, after which the client re-issues its request for secure content.
摘要翻译：一种用于建立用于在安全连接上交换数据的安全参数的方法，系统和计算机程序产品。定义了一种捎带的密钥交换协议，利用这些协议有利地交换这些安全参数。通过将密钥交换捎带到其他已经需要的消息（例如客户端的HTTP GET请求或服务器的响应）上，与设置安全浏览器到服务器连接相关联的开销最小化。该技术针对多种不同的场景进行定义，其中客户端和服务器可能共享或不共享编码方案，并且被设计为维护应用层通信协议的完整性。在一种情况下，客户端提出了一种消息编码方案，但是服务器不会使用这个提出的方案。服务器提出了一种不同的方案，之后客户端重新发布其对安全内容的请求。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式