专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07178166B1 Vulnerability assessment and authentication of a computer by a local scanner 有权
标题翻译：本地扫描仪的计算机漏洞评估和认证
公开(公告)号：US07178166B1
公开(公告)日：2007-02-13
申请号：US09665018
申请日：2000-09-19
申请人： Patrick Taylor , Scott Mewett , Philip C. Brass , Theodore R. Doty
发明人： Patrick Taylor , Scott Mewett , Philip C. Brass , Theodore R. Doty
IPC分类号： G06F11/00
CPC分类号： G06F21/577
摘要： Providing a user with assurance that a computer is secure based on a vulnerability assessment completed by a browser-compatible scanner operating on the computer. If the scanner finds a vulnerability, the scanner can inform the user that the machine is or may be compromised, or repair the vulnerability. For example, the scanner may be able to repair the vulnerability of the workstation. In the alternative, the scanner can provide the scan results to a network server. If the vulnerability assessment shows that the workstation is compromised, or if the possibility of remote compromise is high, the network server can decline to provide network services to the workstation.
摘要翻译：基于由在计算机上运行的浏览器兼容的扫描仪完成的漏洞评估，为用户提供计算机安全的保证。如果扫描仪发现一个漏洞，扫描仪可以通知用户机器是或可能受到威胁，或者修复此漏洞。例如，扫描仪可能能够修复工作站的漏洞。或者，扫描仪可以将扫描结果提供给网络服务器。如果漏洞评估显示工作站受到威胁，或者远程妥协的可能性较高，则网络服务器可能拒绝为工作站提供网络服务。

2. 发明授权

US07162649B1 Method and apparatus for network assessment and authentication 失效
标题翻译：用于网络评估和认证的方法和装置
公开(公告)号：US07162649B1
公开(公告)日：2007-01-09
申请号：US09607375
申请日：2000-06-30
申请人： Curtis E. Ide , Philip C. Brass , Theodore R. Doty
发明人： Curtis E. Ide , Philip C. Brass , Theodore R. Doty
IPC分类号： G06F11/30 , G06F15/173 , G06F15/16 , H04L9/00 , H04K1/00
CPC分类号： H04L63/08 , G06F21/31 , G06F21/577 , G06F2211/009 , G06F2221/2113 , H04L63/102 , H04L63/1433 , H04L63/20
摘要： Providing a user with assurance that a networked computer is secure, typically before completion of the log-in operation. This can be accomplished by extending the local log-in process to perform a host assessment of the workstation prior to requesting the user's credentials. If the assessment finds a vulnerability, the log-in process can inform the user that the machine is or may be compromised, or repair the vulnerability, prior to completion of the log-in operation. By performing vulnerability assessment at the level of the workstation, a network server is able to determine whether the workstation is a “trusted” platform from which to accept authentication requests. If the vulnerability assessment shows that the workstation is compromised, or if the possibility of remote compromise is high, the network server can elect to fail the authentication on the grounds that the workstation cannot be trusted. Optionally, a vulnerability assessment tool may be able to repair the vulnerability of the workstation, and then allow the authentication to proceed.
摘要翻译：为用户提供网络计算机的安全性，通常在登录操作完成之前。这可以通过在请求用户的凭据之前扩展本地登录过程来执行工作站的主机评估来实现。如果评估发现了一个漏洞，登录过程可以在登录操作完成之前通知用户该机器已被或可能受到威胁或修复该漏洞。通过在工作站级进行漏洞评估，网络服务器能够确定工作站是否是从其接受认证请求的“受信任”平台。如果漏洞评估显示工作站受到威胁，或者如果远程妥协的可能性较高，则网络服务器可能会因为不能信任工作站而导致身份验证失败。可选地，漏洞评估工具可能能够修复工作站的漏洞，然后允许身份验证继续。

3. 发明授权

US07634800B2 Method and apparatus for network assessment and authentication 有权
标题翻译：用于网络评估和认证的方法和装置
公开(公告)号：US07634800B2
公开(公告)日：2009-12-15
申请号：US11430297
申请日：2006-05-08
申请人： Curtis E. Ide , Philip C. Brass , Theodore R. Doty
发明人： Curtis E. Ide , Philip C. Brass , Theodore R. Doty
IPC分类号： G06F7/04 , G06F12/14 , H04L29/06
CPC分类号： H04L63/08 , G06F21/31 , G06F21/577 , G06F2211/009 , G06F2221/2113 , H04L63/102 , H04L63/1433 , H04L63/20
摘要： Providing a user with assurance that a networked computer is secure, typically before completion of the log-in operation. This can be accomplished by extending the local log-in process to perform a host assessment of the workstation prior to requesting the user's credentials. If the assessment finds a vulnerability, the log-in process can inform the user that the machine is or may be compromised, or repair the vulnerability, prior to completion of the log-in operation. By performing vulnerability assessment at the level of the workstation, a network server is able to determine whether the workstation is a “trusted” platform from which to accept authentication requests. If the vulnerability assessment shows that the workstation is compromised, or if the possibility of remote compromise is high, the network server can elect to fail the authentication on the grounds that the workstation cannot be trusted. Optionally, a vulnerability assessment tool may be able to repair the vulnerability of the workstation, and then allow the authentication to proceed.
摘要翻译：为用户提供网络计算机的安全性，通常在登录操作完成之前。这可以通过在请求用户的凭据之前扩展本地登录过程来执行工作站的主机评估来实现。如果评估发现了一个漏洞，登录过程可以在登录操作完成之前通知用户该机器已被或可能受到威胁或修复该漏洞。通过在工作站级进行漏洞评估，网络服务器能够确定工作站是否是从其接受认证请求的“受信任”平台。如果漏洞评估显示工作站受到威胁，或者如果远程妥协的可能性较高，则网络服务器可能会因为不能信任工作站而导致身份验证失败。可选地，漏洞评估工具可能能够修复工作站的漏洞，然后允许身份验证继续。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式