专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20070006304A1 Optimizing malware recovery 审中-公开
标题翻译：优化恶意软件恢复
公开(公告)号：US20070006304A1
公开(公告)日：2007-01-04
申请号：US11172373
申请日：2005-06-30
申请人： Michael Kramer , Scott Field , Marc Seinfeld
发明人： Michael Kramer , Scott Field , Marc Seinfeld
IPC分类号： G06F12/14
CPC分类号： G06F21/554 , G06F21/55 , G06F21/568 , H04L63/1416 , H04L63/1441
摘要： Malware recovery optimization is provided in which malware detection processes and protocol processes on a device are monitored for events indicating a breach of security of the device, such as the presence of an infection or other evidence of a malware attack. The devices report the events for collection on a centralized event collector that issues alerts of the events to other devices that may have been compromised as a result of the breach of security. Upon receipt of the alert, the receiving devices may initiate malware recovery optimization, including activating anti-virus software to initiate a targeted scan of those resources that may have been compromised. In this manner, malware recovery processes are optimized to recover the receiving device and/or resources when indicated.
摘要翻译：提供了恶意软件恢复优化，其中监视设备上的恶意软件检测过程和协议进程，以指示违反设备安全性的事件，例如是否存在感染或其他恶意软件攻击证据。这些设备会报告在集中式事件收集器上收集的事件，从而将事件的警报发送到可能由于违反安全性而受到威胁的其他设备。在接收到警报之后，接收设备可以启动恶意软件恢复优化，包括激活防病毒软件以对可能已经被泄露的那些资源进行有针对性的扫描。以这种方式，恶意软件恢复过程被优化以在指示时恢复接收设备和/或资源。

2. 发明申请

US20060137010A1 Method and system for a self-healing device 有权
标题翻译：自愈装置的方法和系统
公开(公告)号：US20060137010A1
公开(公告)日：2006-06-22
申请号：US11018412
申请日：2004-12-21
申请人： Michael Kramer , Scott Field , Marc Seinfeld , Carl Carter-Schwendler , Paul Luber , Adrian Marinescu
发明人： Michael Kramer , Scott Field , Marc Seinfeld , Carl Carter-Schwendler , Paul Luber , Adrian Marinescu
IPC分类号： G06F12/14
CPC分类号： G06F21/568 , G06F21/554 , Y10S707/99953
摘要： A self-healing device is provided in which changes made between the time that an infection resulting from an attack on the device was detected and an earlier point in time to which the device is capable of being restored may be recovered based, at least in part, on what kinds of changes were made, whether the changes were bona fide or malware induced, whether the changes were made after the time that the infection likely occurred, and whether new software was installed.
摘要翻译：提供了一种自愈设备，其中，可以在至少部分地恢复在检测到由设备的攻击引起的感染的时间与设备能够恢复到的较早时间点之间进行的改变关于什么样的变化，这些变化是真正的还是恶意软件引起的，这些变化是否在感染可能发生的时间之后进行，以及是否安装了新的软件。

3. 发明申请

US20060130141A1 System and method of efficiently identifying and removing active malware from a computer 有权
标题翻译：从计算机有效识别和删除活动恶意软件的系统和方法
公开(公告)号：US20060130141A1
公开(公告)日：2006-06-15
申请号：US11012892
申请日：2004-12-15
申请人： Michael Kramer , Matthew Braverman , Marc Seinfeld , Jason Garms , Adrian Marinescu , George Chicioreanu , Scott Field
发明人： Michael Kramer , Matthew Braverman , Marc Seinfeld , Jason Garms , Adrian Marinescu , George Chicioreanu , Scott Field
IPC分类号： G06F12/14
CPC分类号： H04L63/1408 , G06F21/562
摘要： The present invention provides a system, method, and computer-readable medium for identifying and removing active malware from a computer. Aspects of the present invention are included in a cleaner tool that may be obtained automatically with an update service or may be downloaded manually from a Web site or similar distribution system. The cleaner tool includes a specialized scanning engine that searches a computer for active malware. Since the scanning engine only searches for active malware, the amount of data downloaded and resource requirements of the cleaner tool are less than traditional antivirus software. The scanning engine searches specific locations on a computer, such as data mapped in memory, configuration files, and file metadata for data characteristic of malware. If malware is detected, the cleaner tool removes the malware from the computer.
摘要翻译：本发明提供一种用于从计算机识别和去除活动恶意软件的系统，方法和计算机可读介质。本发明的方面包括在可以使用更新服务自动获得的清洁工具中，或者可以从网站或类似的分发系统手动下载。更清洁的工具包括专门的扫描引擎，可在计算机上搜索主动恶意软件。由于扫描引擎仅搜索活动的恶意软件，所以下载的数据量和清洁工具的资源需求比传统的防病毒软件要少。扫描引擎在计算机上搜索特定位置，例如映射到内存中的数据，配置文件和文件元数据，以便恶意软件的特征。如果检测到恶意软件，则清洁工具会从计算机中删除恶意软件。

4. 发明申请

US20060242709A1 Protecting a computer that provides a Web service from malware 有权
公开(公告)号：US20060242709A1
公开(公告)日：2006-10-26
申请号：US11112507
申请日：2005-04-21
申请人： Marc Seinfeld , Adrian Marinescu , Charles Kaufman , Jeffrey Cooperstein , Michael Kramer
发明人： Marc Seinfeld , Adrian Marinescu , Charles Kaufman , Jeffrey Cooperstein , Michael Kramer
IPC分类号： G06F12/14
CPC分类号： G06F21/564 , G06F21/56 , H04L63/1408 , H04L63/168
摘要： In accordance with the present invention, a system, method, and computer-readable medium for identifying malware in a request to a Web service is provided. One aspect of the present invention is a computer-implemented method for protecting a computer that provides a Web service from malware made in a Web request. When a request is received, an on-demand compilation system compiles high-level code associated with the request into binary code that may be executed. However, before the code is executed, antivirus software designed to identify malware scans the binary code for malware. If malware is identified, the antivirus software prevents the binary code associated with the request from being executed.

5. 发明授权

US07457874B2 Architecture for controlling access to a service by concurrent clients 有权
标题翻译：用于控制并发客户机访问服务的体系结构
公开(公告)号：US07457874B2
公开(公告)日：2008-11-25
申请号：US10783911
申请日：2004-02-20
申请人： Michael Kramer , Marc Seinfeld
发明人： Michael Kramer , Marc Seinfeld
IPC分类号： G06F15/173
CPC分类号： H04L41/5048 , H04L12/1432 , H04L12/66 , H04L41/5022 , H04L63/0823 , H04L63/126 , H04L67/02 , H04L67/22 , H04L67/30
摘要： Architecture for controlling access to a service. The architecture allows denial of regular and periodic service to all but a selected number of concurrent clients associated with a subscriber, and without any manual administration at the server of a list of specific computers. Rather than require an administered list, the system discovers which clients are active, places the active clients on an active list, and excludes all client not on the active list. The system includes rules the enforcement of which provide a mechanism for ensuring that the subscriber is not adding an unlimited number of clients or rotating clients in and out of the pool to effectively maintain service on a larger number of computers to which the subscriber is entitled.
摘要翻译：用于控制对服务的访问的架构。该架构允许拒绝定期和定期的服务，除了选定数量的与订户相关联的并发客户端，并且没有在特定计算机列表的服务器上进行任何手动管理。系统不需要管理列表，而是发现哪些客户端处于活动状态，将活动客户端置于活动列表中，并排除不在活动列表中的所有客户端。该系统包括执行规则，其规定提供一种机制，用于确保订户没有添加无限数量的客户端或将客户机转入或移出池，以有效地维护订户所拥有的较大数量的计算机上的服务。

6. 发明申请

US20060101510A1 Negotiating secure connections through a proxy server 有权
公开(公告)号：US20060101510A1
公开(公告)日：2006-05-11
申请号：US11305600
申请日：2005-12-16
申请人： Donald Kadyk , Neil Fishman , Marc Seinfeld , Michael Kramer
发明人： Donald Kadyk , Neil Fishman , Marc Seinfeld , Michael Kramer
IPC分类号： G06F15/16
CPC分类号： H04L63/0281 , H04L63/0428 , H04L63/0823 , H04L67/14
摘要： Methods, systems, and computer program products for negotiating a secure end-to-end connection using a proxy server as an intermediary. The client first negotiates a secure connection between the client and the proxy so that any credentials exchanged will be encrypted. After the exchange of authentication credentials, the secure client-proxy connection is altered so that no further encryption takes place. The client and server then negotiate a secure end-to-end connection through the proxy, with the secure end-to-end connection being encapsulated within the insecure client-proxy connection. In this way, the overhead of creating a separate client-proxy connection for the secure end-to-end connection may be avoided, but the insecure client-proxy connection introduces only minimal overhead because it no longer encrypts any data that it carries.

7. 发明申请

US20060224724A1 Latency free scanning of malware at a network transit point 有权
标题翻译：在网络转接点，不间断地扫描恶意软件
公开(公告)号：US20060224724A1
公开(公告)日：2006-10-05
申请号：US11097060
申请日：2005-03-31
申请人： Adrian Marinescu , Marc Seinfeld , Michael Kramer , Yigal Edery
发明人： Adrian Marinescu , Marc Seinfeld , Michael Kramer , Yigal Edery
IPC分类号： G06F15/173
CPC分类号： H04L63/0209 , H04L63/1416 , H04L63/145
摘要： In accordance with the present invention, a system, method, and computer-readable medium for identifying malware at a network transit point such as a computer that serves as a gateway to an internal or private network is provided. A network transmission is scanned for malware at a network transit point without introducing additional latency to the transmission of data over the network. In accordance with one aspect of the present invention, a computer-implemented method for identifying malware at a network transit point is provided. More specifically, when a packet in a transmission is received at the network transit point, the packet is immediately forwarded to the target computer. Simultaneously, the packet and other data in the transmission are scanned for malware by an antivirus engine. If malware is identified in the transmission, the target computer is notified that the transmission contains malware.
摘要翻译：根据本发明，提供了一种系统，方法和计算机可读介质，用于在诸如用作内部或专用网络的网关的计算机之类的网络转接点处识别恶意软件。在网络传输点扫描网络传输恶意软件，而不会对网络上的数据传输造成额外的延迟。根据本发明的一个方面，提供了一种用于在网络中转点识别恶意软件的计算机实现的方法。更具体地，当在网络转接点接收到传输中的分组时，该分组立即被转发到目标计算机。同时，传输中的数据包和其他数据由防病毒引擎扫描恶意软件。如果在传输中识别到恶意软件，则通知目标计算机该传输包含恶意软件。

8. 发明申请

US20060236393A1 System and method for protecting a limited resource computer from malware 有权
标题翻译：用于保护有限的资源计算机免受恶意软件的系统和方法
公开(公告)号：US20060236393A1
公开(公告)日：2006-10-19
申请号：US11096491
申请日：2005-03-31
申请人： Michael Kramer , Marc Seinfeld , Ryan Waite , Eric Lantz
发明人： Michael Kramer , Marc Seinfeld , Ryan Waite , Eric Lantz
IPC分类号： G06F12/14
CPC分类号： H04L63/145 , G06F21/562 , G06F21/564
摘要： The present invention is directed to a system and methods for protecting a limited resource computer from malware. Aspects of the present invention use antivirus software on a general purpose computer to prevent malware from infecting a limited resource computer. Typically, antivirus software on the general purpose computer is kept “up-to-date” with the most recent software updates. When a connection is established between the limited resource computer and the general purpose computer, a signature of each application installed on the limited resource computer is transmitted to the general purpose computer. Then antivirus software on the general purpose computer compares the received signatures to known malware. Finally, the results of the scan are reported to the limited resource computer.
摘要翻译：本发明涉及一种用于保护有限的资源计算机免受恶意软件的系统和方法。本发明的方面在通用计算机上使用防病毒软件来防止恶意软件感染有限的资源计算机。通常，通用计算机上的防病毒软件与最新的软件更新保持“最新”。当在有限资源计算机和通用计算机之间建立连接时，安装在有限资源计算机上的每个应用的签名被传送到通用计算机。然后，通用计算机上的防病毒软件将接收到的签名与已知的恶意软件进行比较。最后，将扫描结果报告给有限的资源计算机。

9. 发明申请

US20050187957A1 Architecture for controlling access to a service by concurrent clients 有权
标题翻译：用于控制并发客户机访问服务的体系结构
公开(公告)号：US20050187957A1
公开(公告)日：2005-08-25
申请号：US10783911
申请日：2004-02-20
申请人： Michael Kramer , Marc Seinfeld
发明人： Michael Kramer , Marc Seinfeld
IPC分类号： G06F15/00 , G06F12/00 , G06F12/14 , G06F15/16 , G06F17/00 , G06F17/30 , H04L12/00 , H04L12/14 , H04L12/24 , H04L12/66 , H04L29/06 , H04L29/08
CPC分类号： H04L41/5048 , H04L12/1432 , H04L12/66 , H04L41/5022 , H04L63/0823 , H04L63/126 , H04L67/02 , H04L67/22 , H04L67/30
摘要： Architecture for controlling access to a service. The architecture allows denial of regular and periodic service to all but a selected number of concurrent clients associated with a subscriber, and without any manual administration at the server of a list of specific computers. Rather than require an administered list, the system discovers which clients are active, places the active clients on an active list, and excludes all client not on the active list. The system includes one or more rules the enforcement of which provide a mechanism for ensuring that the subscriber is not adding an unlimited number of clients or rotating clients in and out of the pool to effectively maintain service on a larger number of computers to which the subscriber is entitled.
摘要翻译：用于控制对服务的访问的架构。该架构允许拒绝定期和定期的服务，除了选定数量的与订户相关联的并发客户端，并且没有在特定计算机列表的服务器上进行任何手动管理。系统不需要管理列表，而是发现哪些客户端处于活动状态，将活动客户端置于活动列表中，并排除不在活动列表中的所有客户端。该系统包括一个或多个规则，其执行提供了一种机制，用于确保用户不将无限数量的客户端或旋转客户端加入和移出池，以有效地维护更大数量的计算机上的服务，用户有权。

10. 发明申请

US20060218637A1 System and method of selectively scanning a file on a computing device for malware 有权
标题翻译：有选择地扫描计算设备上的恶意软件文件的系统和方法
公开(公告)号：US20060218637A1
公开(公告)日：2006-09-28
申请号：US11090086
申请日：2005-03-24
申请人： Anil Thomas , Michael Kramer , Scott Field
发明人： Anil Thomas , Michael Kramer , Scott Field
IPC分类号： G06F12/14
CPC分类号： G06F21/51 , G06F21/564
摘要： In accordance with this invention, a system, method, and computer-readable medium that selectively scans files stored on a computing device for malware is provided. One or more files may be sent from a trusted source to a computing device that implements the present invention. The integrity of the files that originate from a trusted source is validated using a signature-based hashing function. Any modifications made to files stored on the computing device are tracked by a component of the operating system. In instances when the file is not modified after being validated, an aspect of the present invention prevents the file from being scanned for malware when a scanning event is directed to the file. As a result, the performance of the computing device is improved as static files from trusted sources are not repeatedly scanned for malware.
摘要翻译：根据本发明，提供了选择扫描存储在计算设备上的用于恶意软件的文件的系统，方法和计算机可读介质。一个或多个文件可以从可信源发送到实现本发明的计算设备。源自可信源的文件的完整性使用基于签名的散列函数进行验证。对存储在计算设备上的文件的任何修改由操作系统的组件跟踪。在文件在被验证之后未被修改的情况下，本发明的一个方面防止当扫描事件被引导到该文件时该文件被扫描恶意软件。因此，由于来自可信源的静态文件不会重复扫描恶意软件，因此计算设备的性能得到改善。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式