专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

41. 发明申请

US20080022388A1 Method and apparatus for multiple inclusion offsets for security protocols 审中-公开
标题翻译：用于安全协议的多重包含偏移的方法和装置
公开(公告)号：US20080022388A1
公开(公告)日：2008-01-24
申请号：US11478986
申请日：2006-06-30
申请人： Karanvir Grewal , David Durham , Hormuzd Khosravi , Men Long , Prashant Dewan
发明人： Karanvir Grewal , David Durham , Hormuzd Khosravi , Men Long , Prashant Dewan
IPC分类号： G06F15/16
CPC分类号： H04L63/105
摘要： A method and apparatus to define multiple zones in a data packet for inclusion in processing by security operations of a security protocol. In one embodiment, each defined zone has an associated list of security operations to which the zone is subjected. In another embodiment, the list of security operations for a zone includes parameters to be passed when performing the security operations on the zone.
摘要翻译：一种在数据分组中定义多个区域以包括在安全协议的安全操作的处理中的方法和装置。在一个实施例中，每个定义的区域具有该区域经受的安全操作的关联列表。在另一个实施例中，区域的安全操作的列表包括在区域上执行安全操作时要传递的参数。

42. 发明申请

US20070005935A1 Method and apparatus for securing and validating paged memory system 审中-公开
标题翻译：用于保护和验证分页存储系统的方法和装置
公开(公告)号：US20070005935A1
公开(公告)日：2007-01-04
申请号：US11173301
申请日：2005-06-30
申请人： Hormuzd Khosravi , David Durham
发明人： Hormuzd Khosravi , David Durham
IPC分类号： G06F12/00
CPC分类号： G06F12/1416 , G06F12/08 , G06F12/145 , G06F21/79
摘要： A service processor monitors the state of a physical memory and a virtual memory support circuit of a host processor. A second memory, accessible only to the service processor, stores information to permit the service processor to detect changes to pages of the physical memory. Other similar apparatus, and methods to use such apparatus, are described and claimed.
摘要翻译：服务处理器监视主机处理器的物理存储器和虚拟存储器支持电路的状态。只能由服务处理器访问的第二存储器存储信息以允许服务处理器检测对物理存储器的页面的改变。描述和要求保护其它类似的装置和使用这种装置的方法。

43. 发明授权

US09239915B2 Synchronizing between host and management co-processor for network access control 有权
公开(公告)号：US09239915B2
公开(公告)日：2016-01-19
申请号：US11904322
申请日：2007-09-26
申请人： Avigdor Eldar , Tal Roth , Hormuzd Khosravi , Tal Shustak , Yael Yanai
发明人： Avigdor Eldar , Tal Roth , Hormuzd Khosravi , Tal Shustak , Yael Yanai
IPC分类号： H04L29/06 , G06F21/33 , G06F21/71 , G06F21/85
CPC分类号： G06F21/33 , G06F21/71 , G06F21/85 , H04L63/0227 , H04L63/08 , H04L63/162
摘要： In network access controlled networks, it is desirable to prevent access to the network by any non-authenticated entities. Access control may be established through a trusted agent that, in some embodiments, may be implemented with a management co-processor. In some cases, active management technology may establish a connection while a host is inactive. Then, after the host becomes active, the host can attempt to use the management co-processor connection without obtaining the necessary authentications. This may be prevented, in some embodiments, by scanning for an active host and, if such an active host is found, blocking the host from using a layer 2 authentication channel unless the host is properly authenticated and has a proper Internet Protocol address.

44. 发明授权

US09178884B2 Enabling access to remote entities in access controlled networks 有权
公开(公告)号：US09178884B2
公开(公告)日：2015-11-03
申请号：US11899991
申请日：2007-09-07
申请人： Hormuzd Khosravi , Venkat R. Gokulrangan , Tal Shustak , Avigdor Eldar
发明人： Hormuzd Khosravi , Venkat R. Gokulrangan , Tal Shustak , Avigdor Eldar
IPC分类号： H04L29/06 , G06F21/30
CPC分类号： H04L63/10 , G06F21/305 , H04L63/162
摘要： In network access control networks, it may be difficult to provide certain remote accesses such as remote boot or remote storage access. An available network connection established through chipset firmware (e.g. active management technology (AMT)) may be utilized to establish a connection and to enable the remote access. Then as soon the completion of the activity is detected, such as remote booting, then the connection may be immediately terminated to prevent access by improper agents.

45. 发明授权

US08752169B2 Botnet spam detection and filtration on the source machine 有权
标题翻译：在源机器上进行僵尸网络垃圾邮件检测和过滤
公开(公告)号：US08752169B2
公开(公告)日：2014-06-10
申请号：US12059877
申请日：2008-03-31
申请人： Men Long , David Durham , Hormuzd Khosravi
发明人： Men Long , David Durham , Hormuzd Khosravi
IPC分类号： H04L29/06 , G06F21/56 , G06F21/50
CPC分类号： G06F21/566 , G06F21/50 , G06F21/56 , H04L51/12 , H04L63/14 , H04L63/1408 , H04L63/1416 , H04L63/1441 , H04L63/145 , H04L2463/144
摘要： A method and device are disclosed. In one embodiment the method includes determining that a packet attempting to be sent from a first computer system has at least a portion of a human communication message that may contain spam. The method then increments a spam counter when the difference in time between a first time value in a time stamp within the packet and a second time value of a most recent activity from a human input device coupled to the first computer system is greater than a threshold difference in time value. The method also disallows the packet to be sent to a remote location if the spam counter exceeds a spam outbound threshold value.
摘要翻译：公开了一种方法和装置。在一个实施例中，该方法包括确定尝试从第一计算机系统发送的分组具有可能包含垃圾邮件的人类通信消息的至少一部分。该方法然后当分组内的时间戳中的第一时间值与耦合到第一计算机系统的人类输入设备的最新活动的第二时间值之间的时间差与阈值时间差值。如果垃圾邮件计数器超出垃圾邮件出站阈值，该方法也不允许将数据包发送到远程位置。

46. 发明授权

US08332510B2 Proxy detection by service processor 有权
标题翻译：服务处理器的代理检测
公开(公告)号：US08332510B2
公开(公告)日：2012-12-11
申请号：US12753427
申请日：2010-04-02
申请人： Hormuzd Khosravi , Dominic Fulginiti , Avigdor Eldar , Michael Navon
发明人： Hormuzd Khosravi , Dominic Fulginiti , Avigdor Eldar , Michael Navon
IPC分类号： G06F15/16
CPC分类号： H04L67/2819 , H04L67/28 , H04L69/14
摘要： Embodiments provide methods, apparatus, and systems that enable an embedded processor to detect and configure one or more network access settings. The network access settings may enable the embedded processor to communicate over a network, via out-of-band messages, with a management server or service. Other embodiments may be disclosed or claimed.
摘要翻译：实施例提供使得嵌入式处理器能够检测和配置一个或多个网络访问设置的方法，装置和系统。网络访问设置可以使嵌入式处理器能够通过带外消息通过网络与管理服务器或服务进行通信。可以公开或要求保护其他实施例。

47. 发明授权

US08205238B2 Platform posture and policy information exchange method and apparatus 有权
标题翻译：平台姿势和政策信息交换方法和装置
公开(公告)号：US08205238B2
公开(公告)日：2012-06-19
申请号：US11393486
申请日：2006-03-30
申请人： Uri Blumenthal , Hormuzd Khosravi , Karanvir Grewal
发明人： Uri Blumenthal , Hormuzd Khosravi , Karanvir Grewal
IPC分类号： H04L29/06
CPC分类号： H04L63/0227 , H04L63/101
摘要： Transport agnostic, secure communication protocol for transmitting host platform posture information to the Network Access Control Server or PDP (Policy Decision Point) and for receiving policy information to be enforced on the trusted host platform and respective applications for data processing and communication are described herein.
摘要翻译：这里描述了用于将主机平台姿势信息发送到网络访问控制服务器或PDP（策略决策点）并且用于接收在可信主机平台上执行的策略信息和用于数据处理和通信的相应应用的传输不可知的安全通信协议。

48. 发明授权

US07703126B2 Hierarchical trust based posture reporting and policy enforcement 有权
标题翻译：基于层次信任的姿势报告和策略执行
公开(公告)号：US07703126B2
公开(公告)日：2010-04-20
申请号：US11395504
申请日：2006-03-31
申请人： Hormuzd Khosravi , David Durham , Karanvir Grewal
发明人： Hormuzd Khosravi , David Durham , Karanvir Grewal
IPC分类号： G06F17/30
CPC分类号： H04L63/0227
摘要： A method that includes initiating a network access request from an access requester on a platform that couples to a network, the network access request made to a policy decision point for the network. The method also includes establishing a secure communication channel over a communication link between the policy decision point and a policy enforcement point on the platform. Another secure communication channel is established over another communication link. The other communication link is between at least the policy enforcement point and a manageability engine resident on the platform. The manageability engine forwards posture information associated with the access requester via the other secure communication channel. The posture information is then forwarded to the policy decision point via the secure communication channel between the policy enforcement point and the policy decision point. The policy decision point indicates what access the access requester can obtain to the network based on a comparison of the posture information to one or more network administrative policies.
摘要翻译：一种方法，其包括从耦合到网络的平台上的访问请求者发起网络访问请求，所述网络访问请求发送到网络的策略决策点。该方法还包括在策略决策点和平台上的策略执行点之间的通信链路上建立安全通信信道。通过另一个通信链路建立另一个安全通信信道。另一个通信链路至少在平台上驻留的策略执行点和可管理引擎之间。可管理性引擎经由另一个安全通信信道转发与访问请求者相关联的姿势信息。然后，姿势信息经由策略执行点和策略决策点之间的安全通信信道被转发到策略决策点。策略决策点基于姿势信息与一个或多个网络管理策略的比较来指示访问请求者可以获得哪些访问到网络。

49. 发明申请

US20090328164A1 Method and system for a platform-based trust verifying service for multi-party verification 有权
标题翻译：用于多方验证的基于平台的信任验证服务的方法和系统
公开(公告)号：US20090328164A1
公开(公告)日：2009-12-31
申请号：US12215907
申请日：2008-06-30
申请人： Divya Naidu Sunder , Hormuzd Khosravi , David Durham , Dan Dahle , Prashant Dewan
发明人： Divya Naidu Sunder , Hormuzd Khosravi , David Durham , Dan Dahle , Prashant Dewan
IPC分类号： G06F7/58
CPC分类号： H04L63/126 , G06F21/31 , G06F21/57 , G06F21/577 , G06F2221/2129 , H04L63/0823 , H04L63/123
摘要： A method and system for a platform-based trust verifying service for multi-party verification. In one embodiment, the method includes a client platform accessing an service provider over a network. Upon accessing the service provider, the client platform receives a request from the service provider for platform measurement and verification. The client platform collects platform information and performs measurement and verification, including performing an integrity manifest comparison. If the integrity manifest comparison indicates a good client platform posture, then the client platform signs the client platform posture and sends an approval notification to the service provider indicating that the client platform has not been compromised. The client platform may then receive the service of the service provider. If the integrity manifest comparison indicates that the client platform posture is not good, then the client platform will send a failure notification to the service provider indicating that the client platform has been compromised.
摘要翻译：一种用于多方验证的基于平台的信任验证服务的方法和系统。在一个实施例中，该方法包括通过网络访问服务提供商的客户端平台。在访问服务提供商时，客户机平台从服务提供商接收用于平台测量和验证的请求。客户端平台收集平台信息并执行测量和验证，包括执行完整性清单比较。如果完整性清单比较表示良好的客户端平台姿态，则客户端平台签署客户端平台姿态，并向服务提供商发送一个批准通知，指示客户端平台尚未被泄露。然后，客户端平台可以接收服务提供商的服务。如果完整性清单比较表明客户端平台姿势不好，那么客户端平台将向服务提供商发送一个失败通知，指示客户端平台已被破坏。

50. 发明申请

US20090249481A1 BOTNET SPAM DETECTION AND FILTRATION ON THE SOURCE MACHINE 有权
标题翻译： BOTNET垃圾邮件检测和过滤在源机上
公开(公告)号：US20090249481A1
公开(公告)日：2009-10-01
申请号：US12059877
申请日：2008-03-31
申请人： Men Long , David Durham , Hormuzd Khosravi
发明人： Men Long , David Durham , Hormuzd Khosravi
IPC分类号： G06F21/00
CPC分类号： G06F21/566 , G06F21/50 , G06F21/56 , H04L51/12 , H04L63/14 , H04L63/1408 , H04L63/1416 , H04L63/1441 , H04L63/145 , H04L2463/144
摘要： A method and device are disclosed. In one embodiment the method includes determining that a packet attempting to be sent from a first computer system has at least a portion of a human communication message that may contain spam. The method then increments a spam counter when the difference in time between a first time value in a time stamp within the packet and a second time value of a most recent activity from a human input device coupled to the first computer system is greater than a threshold difference in time value. The method also disallows the packet to be sent to a remote location if the spam counter exceeds a spam outbound threshold value.
摘要翻译：公开了一种方法和装置。在一个实施例中，该方法包括确定尝试从第一计算机系统发送的分组具有可能包含垃圾邮件的人类通信消息的至少一部分。该方法然后当分组内的时间戳中的第一时间值与耦合到第一计算机系统的人类输入设备的最新活动的第二时间值之间的时间差与阈值时间差值。如果垃圾邮件计数器超出垃圾邮件出站阈值，该方法也不允许将数据包发送到远程位置。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式