会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 2. 发明申请
    • SYSTEMS AND METHODS FOR ENHANCING SECURITY BY SELECTIVELY OPENING A LISTENING PORT WHEN AN INCOMING CONNECTION IS EXPECTED
    • 系统和方法,通过选择性地打开一个入口端口,当预期进入连接时提高安全性
    • US20090106834A1
    • 2009-04-23
    • US11875256
    • 2007-10-19
    • Andrew Gerard BorzyckiNicholas Alexander BissettDonovan Ross HackettMichael John WookeyRichard Jason CroftJeffrey Dale Muir
    • Andrew Gerard BorzyckiNicholas Alexander BissettDonovan Ross HackettMichael John WookeyRichard Jason CroftJeffrey Dale Muir
    • H04L9/32
    • H04L63/166H04L63/08
    • The present solution reduces the attack surface of a server by selectively opening a server port for listening when a client has been authenticated/authorized via another machine or process, and directed to connect to the server in question. When not selectively listening on a port, the server does not listen or open ports for connections or otherwise minimizes the number of open ports. By selectively listening for connections, the server reduces the opportunity for hackers to attack the server process, and improves the security of the server. The ability to selectively listen on a port at specific times may be combined with additional meta information—like ticketing and prior authentication information to help further secure the server. The meta information may identify and ensure that only the correct remote endpoint is allowed to connect via the port. Instead of first listening for connections and then authenticate and authorize the received connection as with typical servers, the present solution first authenticates/authorizes a connection via another machine or process, then listens for an expected and authorized connection.
    • 本解决方案通过选择性地打开服务器端口来减少服务器的攻击面,以便在客户端通过另一机器或进程进行身份验证/授权后进行侦听,并指示连接到有问题的服务器。 当没有选择性地监听端口时,服务器不会侦听或打开端口进行连接,否则会最小化打开端口的数量。 通过选择性地监听连接,服务器减少了黑客攻击服务器进程的机会,并提高了服务器的安全性。 在特定时间选择性地侦听端口的能力可以与额外的元信息类似的票据和先前的认证信息组合以帮助进一步保护服务器。 元信息可以标识并确保仅允许通过端口连接正确的远程端点。 而不是首先监听连接,然后与典型的服务器一样认证和授权接收到的连接,本解决方案首先通过另一个机器或进程来认证/授权连接,然后监听预期和授权的连接。
    • 3. 发明授权
    • Systems and methods for enhancing security by selectively opening a listening port when an incoming connection is expected
    • 当预期进入连接时,通过选择性地打开监听端口来增强安全性的系统和方法
    • US08266688B2
    • 2012-09-11
    • US11875256
    • 2007-10-19
    • Andrew Gerard BorzyckiNicholas Alexander BissettDonovan Ross HackettMichael John WookeyRichard Jason CroftJeffrey Dale Muir
    • Andrew Gerard BorzyckiNicholas Alexander BissettDonovan Ross HackettMichael John WookeyRichard Jason CroftJeffrey Dale Muir
    • H04L29/06
    • H04L63/166H04L63/08
    • The present solution reduces the attack surface of a server by selectively opening a server port for listening when a client has been authenticated/authorized via another machine or process, and directed to connect to the server in question. When not selectively listening on a port, the server does not listen or open ports for connections or otherwise minimizes the number of open ports. By selectively listening for connections, the server reduces the opportunity for hackers to attack the server process, and improves the security of the server. The ability to selectively listen on a port at specific times may be combined with additional meta information—like ticketing and prior authentication information to help further secure the server. The meta information may identify and ensure that only the correct remote endpoint is allowed to connect via the port. Instead of first listening for connections and then authenticate and authorize the received connection as with typical servers, the present solution first authenticates/authorizes a connection via another machine or process, then listens for an expected and authorized connection.
    • 本解决方案通过选择性地打开服务器端口来减少服务器的攻击面,以便在客户端通过另一机器或进程进行身份验证/授权后进行侦听,并指示连接到有问题的服务器。 当没有选择性地监听端口时,服务器不会侦听或打开端口进行连接,否则会最小化打开端口的数量。 通过选择性地监听连接,服务器减少了黑客攻击服务器进程的机会,并提高了服务器的安全性。 在特定时间选择性地侦听端口的能力可以与额外的元信息类似的票据和先前的认证信息组合以帮助进一步保护服务器。 元信息可以标识并确保仅允许通过端口连接正确的远程端点。 而不是首先监听连接,然后与典型的服务器一样认证和授权接收到的连接,本解决方案首先通过另一个机器或进程来认证/授权连接,然后监听预期和授权的连接。
    • 4. 发明授权
    • Method and system for locating and accessing resources
    • 定位和访问资源的方法和系统
    • US08095940B2
    • 2012-01-10
    • US11231370
    • 2005-09-19
    • Nicholas Alexander BissettAnil RoychoudhryRichard James Mazzaferri
    • Nicholas Alexander BissettAnil RoychoudhryRichard James Mazzaferri
    • G06F3/00G06F9/44G06F9/46G06F13/00
    • G06F9/5027G06F9/4488
    • In a method for accessing resources provided by an operating system, a request for a resource is received by an application program executing inside an environment. A first identifier associated with the resource is acquired. A registry is consulted, responsive to an association between a first identifier associated with the resource and a second identifier associated with the resource, the association associated with the environment. The resource and an environment on which to launch the resource are identified, responsive to consulting the registry. The second identifier is associated with the resource, with the environment, and with the environment on which to launch the resource. A registry key for the resource is stored in the registry, the registry key comprising the second identifier. The request for the resource is redirected to the identified instance of the resource, responsive to the second identifier. The request for the resource is responded to using the instance of the resource located in the environment on which the resource resides. The requested resource is launched in the identified environment, responsive to the second identifier.
    • 在用于访问由操作系统提供的资源的方法中,由环境中执行的应用程序接收对资源的请求。 获取与资源相关联的第一标识符。 咨询注册表,响应于与资源相关联的第一标识符和与资源相关联的第二标识符与环境相关联的关联。 确定资源和启动资源的环境,以响应咨询注册表。 第二个标识符与资源,环境以及启动资源的环境相关联。 资源的注册表项存储在注册表中,注册表项包括第二个标识符。 响应于第二标识符,将资源的请求重定向到所识别的资源实例。 使用位于资源所在的环境中的资源的实例来响应对资源的请求。 响应于第二标识符,在所识别的环境中启动所请求的资源。