专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08677501B2 Privilege violation detecting program 有权
标题翻译：特权违规检测程序
公开(公告)号：US08677501B2
公开(公告)日：2014-03-18
申请号：US12694177
申请日：2010-01-26
申请人： Yuki Fujishima , Nobuyuki Kanaya
发明人： Yuki Fujishima , Nobuyuki Kanaya
IPC分类号： G06F21/50 , G06F21/52
CPC分类号： G06F11/3668 , G06F9/468
摘要： A privilege violation detecting program stored on a computer-readable medium causes a computer to detect a privilege violation of an test target program by receiving an authority request API from an authority request API trace log storing unit; reading out, from an object access rule storing unit, an assumed access API assumed to be output in response to the received authority request API; determining an actual access API returned in response to the received authority request API from the actual access API trace log storing unit; and storing, into a least privilege violation data storing unit, data of the received authority request API when the actual access API returned in response received authority request API does not match the read out assumed access API.
摘要翻译：存储在计算机可读介质上的特权违规检测程序使得计算机通过从授权请求API跟踪日志存储单元接收授权请求API来检测对测试目标程序的特权违规; 从对象访问规则存储单元读出假设的访问API，其被假定为响应于所接收的权限请求API被输出; 确定响应于来自实际访问API跟踪日志存储单元的接收到的权限请求API返回的实际访问API; 并且当响应接收到的权限请求API返回的实际访问API与所读取的假定访问API不匹配时，将最小特权违规数据存储单元的数据存储在接收到的权限请求API中。

2. 发明申请

US20100192229A1 PRIVILEGE VIOLATION DETECTING PROGRAM 有权
标题翻译：特权侵犯检测计划
公开(公告)号：US20100192229A1
公开(公告)日：2010-07-29
申请号：US12694177
申请日：2010-01-26
申请人： Yuki Fujishima , Nobuyuki Kanaya
发明人： Yuki Fujishima , Nobuyuki Kanaya
IPC分类号： G06F21/22 , G06N5/02 , G06F9/54
CPC分类号： G06F11/3668 , G06F9/468
摘要： A privilege violation detecting program stored on a computer-readable medium causes a computer to detect a privilege violation of an test target program by receiving an authority request API from an authority request API trace log storing unit; reading out, from an object access rule storing unit, an assumed access API assumed to be output in response to the received authority request API; determining an actual access API returned in response to the received authority request API from the actual access API trace log storing unit; and storing, into a least privilege violation data storing unit, data of the received authority request API when the actual access API returned in response received authority request API does not match the read out assumed access API.
摘要翻译：存储在计算机可读介质上的特权违规检测程序使得计算机通过从授权请求API跟踪日志存储单元接收授权请求API来检测对测试目标程序的特权冲突; 从对象访问规则存储单元读出被假定为响应于接收到的权限请求API而被输出的假定访问API; 确定响应于来自实际访问API跟踪日志存储单元的接收到的权限请求API而返回的实际访问API; 并且当响应接收到的权限请求API返回的实际访问API与所读取的假定访问API不匹配时，将最小特权违规数据存储单元的数据存储到接收到的权限请求API中。

3. 发明授权

US09055096B2 Apparatus and method for detecting an attack in a computer network 有权
标题翻译：用于检测计算机网络中的攻击的装置和方法
公开(公告)号：US09055096B2
公开(公告)日：2015-06-09
申请号：US14291168
申请日：2014-05-30
申请人： Masahiro Yamada , Masanobu Morinaga , Yuki Fujishima
发明人： Masahiro Yamada , Masanobu Morinaga , Yuki Fujishima
IPC分类号： G06F11/00 , H04L29/06
CPC分类号： H04L63/1416 , H04L63/168
摘要： Upon acquiring first data transmitted from an outside of a predetermined range in a network, an apparatus stores, in a memory, first information including transmission source and destination addresses of the first data. Upon acquiring second data addressed to an inside of the predetermined range and indicating predetermined communication data of service initiation, the apparatus extracts the first information including as the transmission source address a source address of the second data, and stores, in the memory, second information indicating a service initiation and including a destination address of the second data, in association with the first information. When the second information including as the transmission destination address a source address of the second data is stored in the memory and a destination address of the second data coincides with the transmission source address in the first information associated with the second information, the apparatus notifies detection of an attack.
摘要翻译：在从网络中的预定范围的外部获取发送的第一数据时，装置在存储器中存储包括第一数据的发送源和目的地地址的第一信息。当获取寻址到预定范围内的第二数据并且指示服务启动的预定通信数据时，该设备提取包括作为发送源地址的第一数据作为第二数据的源地址的第一信息，并将其存储在存储器中指示与第一信息相关联的服务启动并包括第二数据的目的地地址。当将包括第二数据的源地址的发送目的地地址的第二信息存储在存储器中时，第二数据的目的地地址与第二信息相关联的第一信息中的发送源地址一致，的攻击。

4. 发明申请

US20090248866A1 CONNECTION CONTROL METHOD AND CONNECTION SYSTEM 审中-公开
标题翻译：连接控制方法与连接系统
公开(公告)号：US20090248866A1
公开(公告)日：2009-10-01
申请号：US12414657
申请日：2009-03-30
申请人： Yuki Fujishima , Nobuyuki Kanaya
发明人： Yuki Fujishima , Nobuyuki Kanaya
IPC分类号： G06F15/173 , G06F15/16
CPC分类号： H04L12/6418
摘要： A connection control method includes: a transmitting step of transmitting a request for provision of a function by a transmitting unit; a first storing step of storing a task involving information having a disclosure restriction set thereon, and the site of a support device that provides a function to support execution of the task by processing the information, the task being associated with the site of the support device; a first retrieving step of retrieving the site of the support device stored in the first storing step associated with the task to be supported in response to the request; and a controlling step of restricting connections with other devices by controlling the transmitting unit to transmit the request to the support device located at the site retrieved in the first retrieving step and not to transmit the request to the other devices when the request transmitted in the transmitting step is a request for a support for execution of the task.
摘要翻译：连接控制方法包括：发送步骤，发送由发送单元提供功能的请求; 存储涉及其上具有公开限制集的信息的任务的第一存储步骤，以及通过处理所述信息来提供支持所述任务的功能的支持设备的所述站点，所述任务与所述支持设备的站点相关联 ; 第一检索步骤，用于检索与响应于该请求而被支持的任务相关联的第一存储步骤中存储的支持设备的站点; 以及控制步骤，通过控制所述发送单元将所述请求发送到位于所述第一检索步骤中检索到的站点处的所述支持设备，并且在所述发送中发送的请求时不向所述其他设备发送所述请求，从而限制与其他设备的连接步骤是对执行任务的支持的请求。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式