专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20090083714A1 REMOTE MONITORING OF LOCAL BEHAVIOR OF NETWORK APPLICATIONS 有权
公开(公告)号：US20090083714A1
公开(公告)日：2009-03-26
申请号：US11862075
申请日：2007-09-26
申请人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
发明人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
IPC分类号： G06F9/44
CPC分类号： G06F8/658
摘要： Computer-executable instructions comprising some or all of a program can be delivered to a client for execution on a real-time basis such that the client receives anew the computer-executable instructions for each new execution of the program. Such an environment enables instrumentation instructions to be inserted into the computer-executable instructions after a request and prior to the delivery of the computer-executable instructions. The inserted instrumentation instructions can be spread across multiple deliveries of the same computer-executable instructions, and they can be modified to account for information received from previously inserted instrumentation instructions. The instrumentation instructions can be inserted as part of the server process, the client process, or as part of a proxy server that can be used at the discretion of the program developer.

2. 发明申请

US20090083409A1 REMOTE MONITORING OF LOCAL BEHAVIOR OF NETWORK APPLICATIONS 失效
标题翻译：远程监控网络应用的本地行为
公开(公告)号：US20090083409A1
公开(公告)日：2009-03-26
申请号：US11862073
申请日：2007-09-26
申请人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
发明人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
IPC分类号： G06F15/173
CPC分类号： G06F15/16
摘要： Computer-executable instructions comprising some or all of a program can be delivered to a client for execution on a real-time basis such that the client receives anew the computer-executable instructions for each new execution of the program. Such an environment enables instrumentation instructions to be inserted into the computer-executable instructions after a request and prior to the delivery of the computer-executable instructions. The inserted instrumentation instructions can be spread across multiple deliveries of the same computer-executable instructions, and they can be modified to account for information received from previously inserted instrumentation instructions. The instrumentation instructions can be inserted as part of the server process, the client process, or as part of a proxy server that can be used at the discretion of the program developer.
摘要翻译：包括程序的一些或全部的计算机可执行指令可以被传送到客户端以便实时执行，使得客户端再次接收每个新程序执行的计算机可执行指令。这样的环境使得能够在请求之后并且在递送计算机可执行指令之前将测试指令插入到计算机可执行指令中。插入的仪器指令可以分布在相同计算机可执行指令的多个交付中，并且可以修改它们以考虑从先前插入的仪器指令接收到的信息。仪器说明可以作为服务器进程，客户端进程的一部分插入，也可以作为代理服务器的一部分进行插入，代理服务器可以由程序开发人员自行决定。

3. 发明授权

US08543683B2 Remote monitoring of local behavior of network applications 有权
标题翻译：远程监控网络应用程序的本地行为
公开(公告)号：US08543683B2
公开(公告)日：2013-09-24
申请号：US11862075
申请日：2007-09-26
申请人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
发明人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
IPC分类号： G06F15/173 , G06F15/16
CPC分类号： G06F8/658
摘要： Computer-executable instructions comprising some or all of a program can be delivered to a client for execution on a real-time basis such that the client receives anew the computer-executable instructions for each new execution of the program. Such an environment enables instrumentation instructions to be inserted into the computer-executable instructions after a request and prior to the delivery of the computer-executable instructions. The inserted instrumentation instructions can be spread across multiple deliveries of the same computer-executable instructions, and they can be modified to account for information received from previously inserted instrumentation instructions. The instrumentation instructions can be inserted as part of the server process, the client process, or as part of a proxy server that can be used at the discretion of the program developer.
摘要翻译：包括程序的一些或全部的计算机可执行指令可以被传送到客户端以便实时执行，使得客户端再次接收每个新程序执行的计算机可执行指令。这样的环境使得能够在请求之后并且在递送计算机可执行指令之前将测试指令插入到计算机可执行指令中。插入的仪器指令可以分布在相同计算机可执行指令的多个交付中，并且可以修改它们以考虑从先前插入的仪器指令接收到的信息。仪器说明可以作为服务器进程，客户端进程的一部分插入，也可以作为代理服务器的一部分进行插入，代理服务器可以由程序开发人员自行决定。

4. 发明授权

US08108513B2 Remote monitoring of local behavior of network applications 失效
标题翻译：远程监控网络应用的本地行为
公开(公告)号：US08108513B2
公开(公告)日：2012-01-31
申请号：US11862073
申请日：2007-09-26
申请人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
发明人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
IPC分类号： G06F15/173
CPC分类号： G06F15/16
摘要： Computer-executable instructions comprising some or all of a program can be delivered to a client for execution on a real-time basis such that the client receives anew the computer-executable instructions for each new execution of the program. Such an environment enables instrumentation instructions to be inserted into the computer-executable instructions after a request and prior to the delivery of the computer-executable instructions. The inserted instrumentation instructions can be spread across multiple deliveries of the same computer-executable instructions, and they can be modified to account for information received from previously inserted instrumentation instructions. The instrumentation instructions can be inserted as part of the server process, the client process, or as part of a proxy server that can be used at the discretion of the program developer.
摘要翻译：包括程序的一些或全部的计算机可执行指令可以被传送到客户端以便实时执行，使得客户端再次接收每个新程序执行的计算机可执行指令。这样的环境使得能够在请求之后并且在递送计算机可执行指令之前将测试指令插入到计算机可执行指令中。插入的仪器指令可以分布在相同计算机可执行指令的多个交付中，并且可以修改它们以考虑从先前插入的仪器指令接收到的信息。仪器说明可以作为服务器进程，客户端进程的一部分插入，也可以作为代理服务器的一部分进行插入，代理服务器可以由程序开发人员自行决定。

5. 发明申请

US20090083363A1 REMOTE MONITORING OF LOCAL BEHAVIOR OF NETWORK APPLICATIONS 审中-公开
公开(公告)号：US20090083363A1
公开(公告)日：2009-03-26
申请号：US11862074
申请日：2007-09-26
申请人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
发明人： Emre Mehmet Kiciman , Benjamin Livshits , Jiahe Helen Wang
IPC分类号： G06F15/16
CPC分类号： G06F15/16
摘要： Computer-executable instructions comprising some or all of a program can be delivered to a client for execution on a real-time basis such that the client receives anew the computer-executable instructions for each new execution of the program. Such an environment enables instrumentation instructions to be inserted into the computer-executable instructions after a request and prior to the delivery of the computer-executable instructions. The inserted instrumentation instructions can be spread across multiple deliveries of the same computer-executable instructions, and they can be modified to account for information received from previously inserted instrumentation instructions. The instrumentation instructions can be inserted as part of the server process, the client process, or as part of a proxy server that can be used at the discretion of the program developer.

6. 发明授权

US08782797B2 Lockbox for mitigating same origin policy failures 有权
标题翻译： Lockbox用于减轻相同的原始策略失败
公开(公告)号：US08782797B2
公开(公告)日：2014-07-15
申请号：US12175264
申请日：2008-07-17
申请人： Jiahe Helen Wang , Xiaofeng Fan , Shuo Chen
发明人： Jiahe Helen Wang , Xiaofeng Fan , Shuo Chen
IPC分类号： G06F7/04
CPC分类号： G06F21/55 , H04L63/1416
摘要： Systems and methods to manage same-origin-policy (SOP) failures that occur in a computing environment are provided. In an illustrative implementation, an exemplary computing environment comprises a lockbox module, and an instruction set comprising at least one instruction directing the lockbox module to process data and/or computing application execution commands representative of and a request for a selected operation/feature according to a selected SOP management paradigm. In the illustrative implementation, the SOP management paradigm comprises one or more instructions to deploy a “lockbox” computing application element allowing for the management, monitoring, and control of computing application features/operations operable under a same origin policy.
摘要翻译：提供了管理在计算环境中发生的相同来源策略（SOP）故障的系统和方法。在说明性实现中，示例性计算环境包括锁箱模块，以及指令集，其包括指示锁箱模块处理数据和/或计算代表所选择的操作/特征的应用执行命令的至少一个指令，以及根据一个选定的SOP管理模式。在说明性实现中，SOP管理范例包括部署“锁箱”计算应用元件的一个或多个指令，允许管理，监视和控制可在相同原始策略下操作的计算应用特征/操作。

7. 发明授权

US08613096B2 Automatic data patch generation for unknown vulnerabilities 有权
标题翻译：针对未知漏洞生成自动数据补丁
公开(公告)号：US08613096B2
公开(公告)日：2013-12-17
申请号：US11948681
申请日：2007-11-30
申请人： Marcus Peinado , Weidong Cui , Jiahe Helen Wang , Michael E. Locasto
发明人： Marcus Peinado , Weidong Cui , Jiahe Helen Wang , Michael E. Locasto
IPC分类号： H04L29/06
CPC分类号： H04L63/1433 , G06F21/577
摘要： The claimed subject matter provides a system and/or method that generates data patches for vulnerabilities. The system can include devices and components that examine exploits received or obtained from data streams, constructs probes and determines whether the probes take advantage of vulnerabilities. Based at least in part on such determinations data patches are dynamically generated to remedy the hitherto vulnerabilities.
摘要翻译：所要求保护的主题提供了生成用于漏洞的数据补丁的系统和/或方法。该系统可以包括检查从数据流接收或获取的漏洞的设备和组件，构建探测并确定探针是否利用漏洞。至少部分地基于这样的确定，动态地产生数据补丁以补救迄今为止的漏洞。

8. 发明授权

US08225392B2 Immunizing HTML browsers and extensions from known vulnerabilities 有权
标题翻译：免疫HTML浏览器和已知漏洞的扩展
公开(公告)号：US08225392B2
公开(公告)日：2012-07-17
申请号：US11183329
申请日：2005-07-15
申请人： Opher Dubrovsky , Boaz Ein-Gil , Jiahe Helen Wang
发明人： Opher Dubrovsky , Boaz Ein-Gil , Jiahe Helen Wang
IPC分类号： H04L29/06
CPC分类号： H04L63/1433 , H04L63/145 , H04L67/02
摘要： An exemplary computer-implementable method (300) transforms or “immunizes” information to reduce or eliminate risk of exploitation of a known vulnerabilty of a software service and includes receiving information (304) in response to a request, transforming the information (308) to produce transformed information and sending the transformed information (312). An exemplary firewall server (112) includes server software (144, 148) that allows the firewall server (112) to receive information from a resource (104, 108) via a network and to send information to a client computer (114) and an immunization component (264, 268) for immunizing the information to prevent exploitation of a vulnerabilty of browser software (154) on the client computer (114). Various other exemplary methods, devices, systems, etc., are also disclosed.
摘要翻译：示例性的可计算机可实现的方法（300）转换或“免疫”信息以减少或消除利用软件服务的已知脆弱性的风险，并且包括响应于请求接收信息（304），将信息（308）变换为产生变换后的信息并发送变换后的信息（312）。示例性防火墙服务器（112）包括服务器软件（144,148），其允许防火墙服务器（112）经由网络从资源（104,108）接收信息，并将信息发送到客户端计算机（114）和用于免疫所述信息以防止利用所述客户端计算机（114）上的浏览器软件（154）的脆弱性的免疫组件（264,268）。还公开了各种其它示例性方法，装置，系统等。

9. 发明授权

US07856100B2 Privacy-preserving data aggregation using homomorphic encryption 有权
标题翻译：使用同态加密的隐私保护数据聚合
公开(公告)号：US07856100B2
公开(公告)日：2010-12-21
申请号：US11311916
申请日：2005-12-19
申请人： Jiahe Helen Wang , Qiang Huang , David Jao
发明人： Jiahe Helen Wang , Qiang Huang , David Jao
IPC分类号： H04K1/00 , H04L9/00 , H04L9/30 , H04L29/06 , B41K3/38 , G06F7/04 , G06F17/30 , G06F7/00 , G06F15/00 , H04N7/16
CPC分类号： H04L9/008 , H04L9/30
摘要： A method and system for collecting data from devices using a homomorphic encryption of the data is provided. A collection system of a device adds contributions to homomorphically encrypted data and forwards the requests to another device. When the device receives a reply to the request, it uncombines its contribution to the homomorphic encryption of the data. The device then forwards the reply to the previous device. The initiator device ultimately removes its contribution to the encryption and identifies the data.
摘要翻译：提供了一种使用数据的同态加密从设备收集数据的方法和系统。设备的收集系统对同态加密的数据添加贡献，并将请求转发到另一个设备。当设备收到对请求的回复时，它将其贡献与数据的同态加密相结合。然后，设备将回复转发到以前的设备。启动器设备最终消除其对加密的贡献并识别数据。

10. 发明授权

US07694022B2 Method and system for filtering communications to prevent exploitation of a software vulnerability 有权
标题翻译：用于过滤通信以防止利用软件漏洞的方法和系统
公开(公告)号：US07694022B2
公开(公告)日：2010-04-06
申请号：US10955963
申请日：2004-09-30
申请人： Jason Garms , Chuanxiong Guo , Daniel R. Simon , Jiahe Helen Wang , Alf Peter Zugenmaier
发明人： Jason Garms , Chuanxiong Guo , Daniel R. Simon , Jiahe Helen Wang , Alf Peter Zugenmaier
IPC分类号： G06F15/173 , G06F15/16 , G06F11/00
CPC分类号： H04L63/1408 , H04L63/1433
摘要： A method and system for protecting an application that implements a communication protocol against exploitation of a communication-based vulnerability is provided. A protection system provides a protection policy that specifies how to recognize messages that expose a specific vulnerability and specifies actions to take when the vulnerability is exposed. A protection policy specifies the sequence of messages and their payload characteristics that expose a vulnerability. The protection system may specify the sequences of messages using a message protocol state machine. A message protocol state machine of an application represents the states that the application transitions through as it receives various messages. The message protocol state machine of the protection policy may be a portion of the message protocol state machine of the application relating to the vulnerability. The protection system uses the message protocol state machine to track the states that lead up to the exposing of the vulnerability.
摘要翻译：提供了一种用于保护实现通信协议以免利用基于通信的漏洞的应用的方法和系统。保护系统提供了保护策略，指定如何识别暴露特定漏洞的消息，并指定暴露漏洞时采取的操作。保护策略规定了暴露漏洞的消息及其有效载荷特征的顺序。保护系统可以使用消息协议状态机来指定消息的序列。应用程序的消息协议状态机表示应用程序在接收各种消息时转换的状态。保护策略的消息协议状态机可以是与该漏洞相关的应用的消息协议状态机的一部分。保护系统使用消息协议状态机来跟踪导致该漏洞暴露的状态。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式