专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明申请

US20130298246A1 OBFUSCATING ENTRY OF SENSITIVE INFORMATION 有权
标题翻译：对敏感信息的输入
公开(公告)号：US20130298246A1
公开(公告)日：2013-11-07
申请号：US13465116
申请日：2012-05-07
申请人： Brian John Cragun , Marc Kevin Johlic
发明人： Brian John Cragun , Marc Kevin Johlic
IPC分类号： G06F21/24
CPC分类号： G06F21/83 , G06F21/36 , G06F2221/2123
摘要： A method, system, and computer program product for obfuscating entry of information are provided in the illustrative embodiments. A set of additional aspects to be applied to a part of an input is communicated to a provider of the input. The set of additional aspects is distinct from a second set of additional aspects to be applied to another input. An obfuscated input corresponding to the part of the input is received. A subset of the set of additional aspects is present in the obfuscated input. The part of the input from the obfuscated input is recovered by removing, using a processor and a memory, the subset of the set of additional aspects from the obfuscated input. An entry field input corresponding to the input is generated. The entry field input is sent to an application executing in a data processing system.
摘要翻译：在说明性实施例中提供了用于模糊信息输入的方法，系统和计算机程序产品。将要应用于输入的一部分的一组附加方面传达给输入的提供者。该组附加方面与要应用于另一输入的第二组附加方面不同。接收与输入部分对应的混淆输入。该组附加方面的子集存在于混淆输入中。来自混淆输入的输入部分通过从处理器和存储器中除去来自混淆输入的附加方面的集合的子集来恢复。生成与输入对应的输入字段输入。输入字段输入被发送到在数据处理系统中执行的应用程序。

32. 发明授权

US08296577B2 Cryptographic bus architecture for the prevention of differential power analysis 失效
标题翻译：加密总线架构，用于防止差分功率分析
公开(公告)号：US08296577B2
公开(公告)日：2012-10-23
申请号：US10864556
申请日：2004-06-08
申请人： David B. Shu , Lap-Wai Chow , William M. Clark, Jr.
发明人： David B. Shu , Lap-Wai Chow , William M. Clark, Jr.
IPC分类号： H04L9/00
CPC分类号： G06F9/30101 , G06F9/3001 , G06F9/30181 , G06F9/321 , G06F9/3836 , G06F21/72 , G06F21/75 , G06F21/755 , G06F21/85 , G06F2221/2123 , H04L9/003 , H04L9/0625 , H04L2209/08 , H04L2209/12
摘要： An apparatus and method for preventing information leakage attacks through a polarized cryptographic bus architecture. The polarized cryptographic bus architecture randomly changes the polarity of the target bit such that the leaked information cannot be consistently averaged to yield statistical key material. Further, to increase the prevention of information leakage attacks, a set of dual rails is used to write data to a given register bit.
摘要翻译：一种用于通过偏振加密总线架构来防止信息泄漏攻击的装置和方法。偏振加密总线结构随机改变目标位的极性，使得泄露的信息不能被一致地平均以产生统计密钥材料。此外，为了增加信息泄露攻击的防范，使用一组双轨将数据写入给定的寄存器位。

33. 发明授权

US08209755B2 Signaling a security breach of a protected set of files 有权
标题翻译：发出一组受保护的文件的安全漏洞
公开(公告)号：US08209755B2
公开(公告)日：2012-06-26
申请号：US11444963
申请日：2006-05-31
申请人： Alexander J. Cohen , Edward K.Y. Jung , Royce A. Levien , Robert W. Lord , Mark A. Malamud , William Henry Mangione-Smith , John D. Rinaldo, Jr. , Clarence T. Tegreene
发明人： Alexander J. Cohen , Edward K.Y. Jung , Royce A. Levien , Robert W. Lord , Mark A. Malamud , William Henry Mangione-Smith , John D. Rinaldo, Jr. , Clarence T. Tegreene
IPC分类号： G06F11/00
CPC分类号： G07F19/207 , G06F21/554 , G06F2221/2123 , G06Q20/341 , G06Q20/4016 , G06Q20/42 , G07F7/084 , G07F7/1008 , G07G3/003
摘要： Apparatus are provided that include a communication circuit, monitoring circuit, and an alert circuit and a method is provided that includes receiving at least a portion of a protected set of files including a tripwire file and at least one normal file, the at least one normal file including a number of attributes, and the tripwire file lacking an attribute of the at least one normal file; and detecting a sign of an activity related to the tripwire file of the protected set of files, wherein the protected set of files includes a protected database, the protected database including the at least one normal file and the tripwire file; and generating a signal indicating an unauthorized activity related to the protected set of files in response to the detected sign of an activity related to the tripwire file.
摘要翻译：提供了包括通信电路，监控电路和警报电路的装置，并且提供了一种方法，其包括接收包括绊线文件和至少一个正常文件的受保护的一组文件的至少一部分，所述至少一个正常文件，其包括多个属性，并且所述tripwire文件缺少所述至少一个正常文件的属性; 以及检测与所述受保护文件集的所述tripwire文件相关的活动的符号，其中所述受保护文件集合包括受保护的数据库，所述受保护数据库包括所述至少一个正常文件和所述tripwire文件; 以及响应于所检测到的与所述tripwire文件相关的活动的符号，产生指示与所述受保护文件集相关的未授权活动的信号。

34. 发明申请

US20120151588A1 Malware Detection for SMS/MMS Based Attacks 有权
标题翻译：基于SMS / MMS的攻击的恶意软件检测
公开(公告)号：US20120151588A1
公开(公告)日：2012-06-14
申请号：US12964015
申请日：2010-12-09
申请人： Wei Wang , Gang Xu
发明人： Wei Wang , Gang Xu
IPC分类号： G06F21/00
CPC分类号： G06F21/56 , G06F21/554 , G06F2221/2123 , H04L51/12 , H04L51/38 , H04L63/1491 , H04W12/12
摘要： Devices, systems, and methods are disclosed which utilize lightweight agents on a mobile device to detect message-based attacks. In exemplary configurations, the lightweight agents are included as contacts on the mobile device addressed to an agent server on a network. A malware onboard the mobile device, intending to propagate, unknowingly addresses the lightweight agents, sending messages to the agent server. The agent server analyzes the messages received from the mobile device of the deployed lightweight agents. The agent server then generates attack signatures for the malware. Using malware propagation models, the system estimates how many active mobile devices are infected as well as the total number of infected mobile devices in the network. By understanding the malware propagation, the service provider can decide how to deploy a mitigation plan on crucial locations. In further configurations, the mechanism may be used to detect message and email attacks on other devices.
摘要翻译：公开了在移动设备上利用轻量级代理来检测基于消息的攻击的设备，系统和方法。在示例性配置中，轻量级代理作为联系人被包括在寻址到网络上的代理服务器的移动设备上。移动设备上的恶意软件，意图传播，不知不觉地解决轻量级代理，向代理服务器发送消息。代理服务器分析从部署的轻量级代理的移动设备接收的消息。代理服务器然后生成恶意软件的攻击签名。使用恶意软件传播模型，系统估计有多少活跃的移动设备被感染，以及网络中受感染的移动设备的总数。通过了解恶意软件传播，服务提供商可以决定如何在关键位置部署缓解计划。在进一步的配置中，该机制可以用于检测对其他设备的消息和电子邮件攻击。

35. 发明申请

US20120084557A1 TAMPERING MONITORING SYSTEM, CONTROL DEVICE, AND TAMPERING CONTROL METHOD 有权
标题翻译：篡改监测系统，控制装置和篡改控制方法
公开(公告)号：US20120084557A1
公开(公告)日：2012-04-05
申请号：US13375912
申请日：2011-04-15
申请人： Yuichi Futa , Yuji Unagami , Natsume Matsuzaki , Hiroki Shizuya , Masao Sakai , Shuji Isobe , Eisuke Koizumi , Shingo Hasegawa
发明人： Yuichi Futa , Yuji Unagami , Natsume Matsuzaki , Hiroki Shizuya , Masao Sakai , Shuji Isobe , Eisuke Koizumi , Shingo Hasegawa
IPC分类号： G06F21/22 , H04L9/00
CPC分类号： G06F21/55 , G06F21/57 , G06F2221/2123 , G06F2221/2143
摘要： Provided is a tampering monitoring system that can identify a monitoring module that has been tampered with among a plurality of monitoring modules. A management apparatus is provided with an acquisition unit that acquires a new monitoring module that has not been tampered with, a generation unit that generates a decoy monitoring module by modifying the acquired monitoring module, a transmission unit that transmits the decoy monitoring module to the information security device and causes the information security device to install the decoy monitoring module therein, a reception unit that receives from the information security device, after the decoy monitoring module has been installed, monitoring results generated by the monitoring modules monitoring other monitoring modules, and a determination unit that identifies, by referring to the received monitoring results, a monitoring module that determines the decoy monitoring module to be valid and determines the identified monitoring module to be invalid.
摘要翻译：提供了可以识别在多个监视模块中被篡改的监视模块的篡改监视系统。一种管理装置，具备获取单元，其获取未被篡改的新的监视模块;生成单元，其通过修改获取的监视模块来生成诱饵监视模块;发送单元，将所述诱饵监视模块发送到所述信息安全装置，使信息安全装置安装诱饵监视模块，在安装了诱饵监视模块之后从信息安全装置接收监视其他监视模块的监视模块生成的监视结果的接收部，以及确定单元，其通过参考所接收的监视结果来识别监视模块，其将所述诱饵监视模块确定为有效并且将所识别的监视模块确定为无效。

36. 发明申请

US20120072988A1 DETECTION OF GLOBAL METAMORPHIC MALWARE VARIANTS USING CONTROL AND DATA FLOW ANALYSIS 审中-公开
标题翻译：使用控制和数据流分析检测全球元素恶意软件变量
公开(公告)号：US20120072988A1
公开(公告)日：2012-03-22
申请号：US13072114
申请日：2011-03-25
申请人： Hira Agrawal
发明人： Hira Agrawal
IPC分类号： G06F12/14
CPC分类号： G06F21/563 , G06F21/561 , G06F2221/033 , G06F2221/2123
摘要： Malware feature extraction derives semantic summaries of executable malware using global, inter-procedural program analysis techniques. A combination of global, inter-procedural program analysis techniques constructs semantic summaries of malware which automatically detect and discard any noise introduced by transformations and capture the essence of the underlying computations in a succinct form. This is achieved in two ways. First, global control flow analysis techniques are used to derive a high level representation of malware code that, for instance, removes the effects of subroutine calls. Second, global data flow analysis techniques are employed to detect and remove all spurious elements of malware that do not contribute towards its underlying computation, thereby preventing the resulting summaries from being “corrupted” with unnecessary, extraneous elements.
摘要翻译：恶意软件特征提取使用全局，程序间程序分析技术来导出可执行文件恶意软件的语义摘要。全局，程序间程序分析技术的组合构建了恶意软件的语义摘要，可自动检测和丢弃由转换引入的任何噪声，并以简洁的形式捕获底层计算的实质。这是通过两种方式实现的。首先，使用全局控制流分析技术来导出恶意软件代码的高级表示，例如，消除子程序调用的影响。第二，使用全局数据流分析技术来检测和删除恶意软件的所有虚假元素，这些元素对其底层计算没有贡献，从而防止所得到的摘要与不必要的外部元素“损坏”。

37. 发明授权

US07950060B1 Method and apparatus for suppressing e-mail security artifacts 有权
标题翻译：用于抑制电子邮件安全伪像的方法和装置
公开(公告)号：US07950060B1
公开(公告)日：2011-05-24
申请号：US11864867
申请日：2007-09-28
申请人： Mark Kennedy , Bruce McCorkendale
发明人： Mark Kennedy , Bruce McCorkendale
IPC分类号： G06F12/14
CPC分类号： G06F21/56 , G06F2221/2123 , G06Q10/107
摘要： Method and apparatus for suppressing e-mail security artifacts is described. An aspect of the invention relates to processing e-mail addresses stored in an address book repository on a computer. A request for one or more e-mail addresses is received from a source. Authenticity of the source is verified. The one or more e-mail addresses is (are) obtained from the address book repository. The one or more e-mail addresses is (are) filtered to remove one or more honeypot e-mail addresses. The one or more e-mail addresses is (are) forwarded as filtered to the source if the source is authentic. The one or more e-mail addresses is (are) forwarded as obtained to the source if the source is not authentic. Accordingly, the honeypot addresses are not filtered if the source is not authentic.
摘要翻译：描述了用于抑制电子邮件安全伪像的方法和装置。本发明的一个方面涉及处理存储在计算机上的地址簿存储库中的电子邮件地址。从源接收到一个或多个电子邮件地址的请求。验证来源的真实性。一个或多个电子邮件地址从地址簿存储库获得。一个或多个电子邮件地址被过滤以去除一个或多个蜜罐电子邮件地址。如果源是可信的，那么一个或多个电子邮件地址被转发为源。如果源不是真实的，那么一个或多个电子邮件地址被转发到源。因此，如果源不可信，则蜜罐地址不被过滤。

38. 发明申请

US20100189262A1 SECURE KEY ACCESS WITH ONE-TIME PROGRAMMABLE MEMORY AND APPLICATIONS THEREOF 有权
标题翻译：具有一次性可编程存储器的安全密钥访问及其应用
公开(公告)号：US20100189262A1
公开(公告)日：2010-07-29
申请号：US12651996
申请日：2010-01-04
申请人： Paul D. Ducharme , Wendy Wai Yin Cheung , Albert Yunsang Wong , Shijun Huang , Norman V.D. Stewart
发明人： Paul D. Ducharme , Wendy Wai Yin Cheung , Albert Yunsang Wong , Shijun Huang , Norman V.D. Stewart
IPC分类号： H04L9/06 , G06N5/02
CPC分类号： G06F12/1408 , G06F21/602 , G06F21/6209 , G06F21/72 , G06F21/79 , G06F2221/2123 , G06F2221/2127 , H04L9/0822 , H04L9/088 , H04L9/0894 , H04L9/3247 , H04L2209/12 , H04L2209/60 , H04N21/4181 , H04N21/4183 , H04N21/42623 , H04N21/42692 , H04N21/4431 , H04N21/4435
摘要： A device includes a key store memory that stores one or more cryptographic keys. A rule set memory stores a set of rules for accessing the cryptographic keys. A key store arbitration module grants access to the cryptographic keys in accordance with the set of rules. The device can be used in conjunction with a key ladder. The device can include a one-time programmable memory and a load module that transfers the cryptographic keys from the one one-time programmable memory to the key store memory and the set of rules to the rule set memory. A validation module can validate the cryptographic keys and the set of rules stored in the key store and rule set memories, based on a signature defined by a signature rule.
摘要翻译：设备包括存储一个或多个加密密钥的密钥存储存储器。规则集存储器存储用于访问加密密钥的一组规则。密钥存储仲裁模块根据该组规则授予访问加密密钥的权限。该装置可以与一个梯子一起使用。该设备可以包括一次性可编程存储器和将密码密钥从一个一次性可编程存储器传送到密钥存储存储器的一个加载模块以及一组规则到规则集存储器。验证模块可以基于由签名规则定义的签名来验证存储在密钥存储器和规则集存储器中的加密密钥和规则集合。

39. 发明申请

US20090282062A1 DATA PROTECTION AND MANAGEMENT 审中-公开
标题翻译：数据保护与管理
公开(公告)号：US20090282062A1
公开(公告)日：2009-11-12
申请号：US12426079
申请日：2009-04-17
申请人： Aleksandar Husic
发明人： Aleksandar Husic
IPC分类号： G06F3/01 , G06F17/30
CPC分类号： H04L63/168 , G06F21/62 , G06F2221/2119 , G06F2221/2123 , H04L63/0227 , H04L63/1441
摘要： A network apparatus comprises a processor connectable to at least one client device via a network, wherein data sent from the processor to the client device may be subject to a pattern recognition process and the system further comprises a data modification module configured to receive data intended for the client device and to insert extraneous characters into the data so as to affect the pattern recognition process.
摘要翻译：网络装置包括经由网络可连接到至少一个客户端设备的处理器，其中从处理器发送到客户端设备的数据可能经历模式识别过程，并且系统还包括数据修改模块，其被配置为接收用于客户端设备，并将无关的字符插入到数据中，以影响模式识别过程。

40. 发明授权

US07610407B2 Method for exchanging information between at least two participants via at least one intermediary to limit disclosure between the participants 失效
标题翻译：用于经由至少一个中间人在至少两个参与者之间交换信息以限制参与者之间的公开的方法
公开(公告)号：US07610407B2
公开(公告)日：2009-10-27
申请号：US10733502
申请日：2003-12-11
申请人： Alan H. Karp
发明人： Alan H. Karp
IPC分类号： G06F15/16 , G06F21/00 , G06Q10/00
CPC分类号： G06F21/62 , G06F2221/2115 , G06F2221/2123
摘要： The disclosed embodiments relate to a method of exchanging information between at least one party and a plurality of intermediaries, the plurality of intermediaries including a selected intermediary. The method may comprise providing correct information to the selected intermediary, providing incorrect information to each of the plurality of intermediaries who are not the selected intermediary, receiving modified information based on the correct information from the selected intermediary, receiving modified information based on the incorrect information from each of the plurality of intermediaries who are not the selected intermediaries, and wherein the plurality of intermediaries do not know the identity of the selected intermediary.
摘要翻译：所公开的实施例涉及在至少一方和多个中介之间交换信息的方法，所述多个中介包括所选择的中介。该方法可以包括向所选择的中间件提供正确的信息，向不是所选择的中间人的多个中介者中的每一个提供不正确的信息，基于来自所选中介的正确信息接收修改的信息，基于不正确的信息接收修改的信息来自不是所选择的中间体的多个中间体中的每一个，并且其中所述多个中间体不知道所选择的中间体的身份。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式