专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100153316A1 SYSTEMS AND METHODS FOR RULE-BASED ANOMALY DETECTION ON IP NETWORK FLOW 有权
标题翻译：用于基于IP网络流量的基于规则异常检测的系统和方法
公开(公告)号：US20100153316A1
公开(公告)日：2010-06-17
申请号：US12568044
申请日：2009-09-28
申请人： Nicholas Duffield , Patrick Haffner , Balachander Krishnamurthy , Haakon Andreas Ringberg
发明人： Nicholas Duffield , Patrick Haffner , Balachander Krishnamurthy , Haakon Andreas Ringberg
IPC分类号： G06F21/00 , G06F15/18
CPC分类号： H04L63/20 , G06F21/552 , G06N5/025 , H04L41/00 , H04L41/0604 , H04L41/16 , H04L43/026 , H04L43/028 , H04L43/16 , H04L45/28 , H04L45/38 , H04L47/10 , H04L47/24 , H04L63/14 , H04L63/1416 , H04L63/1425 , H04L63/30
摘要： A system to detect anomalies in internet protocol (IP) flows uses a set of machine-learning (ML) rules that can be applied in real time at the IP flow level. A communication network has a large number of routers that can be equipped with flow monitoring capability. A flow collector collects flow data from the routers throughout the communication network and provides them to a flow classifier. At the same time, a limited number of locations in the network monitor data packets and generate alerts based on packet data properties. The packet alerts and the flow data are provided to a machine learning system that detects correlations between the packet-based alerts and the flow data to thereby generate a series of flow-level alerts. These rules are provided to the flow time classifier. Over time, the new packet alerts and flow data are used to provide updated rules generated by the machine learning system.
摘要翻译：检测互联网协议（IP）流中的异常的系统使用一组机器学习（ML）规则，可以在IP流级别实时应用。通信网络具有大量可配备流量监控功能的路由器。集流器在通信网络中收集来自路由器的流数据，并将其提供给流分类器。同时，网络中有限数量的位置监视数据包，并根据数据包数据属性生成警报。分组警报和流数据被提供给机器学习系统，其检测基于分组的警报和流数据之间的相关性，从而生成一系列流级别警报。这些规则提供给流时间分类器。随着时间的推移，新的数据包警报和流数据用于提供机器学习系统生成的更新规则。

2. 发明授权

US09258217B2 Systems and methods for rule-based anomaly detection on IP network flow 有权
标题翻译：基于规则的IP网络异常检测系统与方法
公开(公告)号：US09258217B2
公开(公告)日：2016-02-09
申请号：US12568044
申请日：2009-09-28
申请人： Nicholas Duffield , Patrick Haffner , Balachander Krishnamurthy , Haakon Andreas Ringberg
发明人： Nicholas Duffield , Patrick Haffner , Balachander Krishnamurthy , Haakon Andreas Ringberg
IPC分类号： H04L12/721 , H04L12/26 , G06F21/55 , H04L12/703 , H04L12/801 , H04L12/851 , H04L29/06 , H04L12/24
CPC分类号： H04L63/20 , G06F21/552 , G06N5/025 , H04L41/00 , H04L41/0604 , H04L41/16 , H04L43/026 , H04L43/028 , H04L43/16 , H04L45/28 , H04L45/38 , H04L47/10 , H04L47/24 , H04L63/14 , H04L63/1416 , H04L63/1425 , H04L63/30
摘要： A system to detect anomalies in internet protocol (IP) flows uses a set of machine-learning (ML) rules that can be applied in real time at the IP flow level. A communication network has a large number of routers that can be equipped with flow monitoring capability. A flow collector collects flow data from the routers throughout the communication network and provides them to a flow classifier. At the same time, a limited number of locations in the network monitor data packets and generate alerts based on packet data properties. The packet alerts and the flow data are provided to a machine learning system that detects correlations between the packet-based alerts and the flow data to thereby generate a series of flow-level alerts. These rules are provided to the flow time classifier. Over time, the new packet alerts and flow data are used to provide updated rules generated by the machine learning system.
摘要翻译：检测互联网协议（IP）流中的异常的系统使用一组机器学习（ML）规则，可以在IP流级别实时应用。通信网络具有大量可配备流量监控功能的路由器。集流器在通信网络中收集来自路由器的流数据，并将其提供给流分类器。同时，网络中有限数量的位置监视数据包，并根据数据包数据属性生成警报。分组警报和流数据被提供给机器学习系统，其检测基于分组的警报和流数据之间的相关性，从而生成一系列流级别警报。这些规则提供给流时间分类器。随着时间的推移，新的数据包警报和流数据用于提供机器学习系统生成的更新规则。

3. 发明授权

US08484463B1 System and method for utilizing a rendezvous mechanism for secure information exchange 有权
标题翻译：利用会合机制进行安全信息交换的系统和方法
公开(公告)号：US08484463B1
公开(公告)日：2013-07-09
申请号：US11288839
申请日：2005-11-29
申请人： Balachander Krishnamurthy
发明人： Balachander Krishnamurthy
IPC分类号： H04L29/06
CPC分类号： H04L12/185 , H04L63/104 , H04L63/20
摘要： A system and method for receiving first information from a primary individual and establishing the primary individual as a first trusted user using the first information. Second information is then received from an interested subscriber, the second information including information relating the interested subscriber to the primary individual and establishing the interested subscriber as a second trusted user using the second information. A triggering event is received from the primary individual, where the triggering event includes third information verifying the primary individual as the first trusted user. An indication is provided to the interested subscriber based on the triggering event.
摘要翻译：一种用于从主要个体接收第一信息并使用第一信息将主个体建立为第一信任用户的系统和方法。然后从感兴趣的用户接收第二信息，第二信息包括将感兴趣的用户与主要个人相关的信息，并使用第二信息将兴趣的用户建立为第二信任用户。从主要个人接收到触发事件，其中触发事件包括验证主个体作为第一信任用户的第三信息。基于触发事件向感兴趣的用户提供指示。

4. 发明授权

US08457016B2 Reverse engineering peering at internet exchange points 有权
标题翻译：在互联网交换点进行逆向工程对等
公开(公告)号：US08457016B2
公开(公告)日：2013-06-04
申请号：US13026476
申请日：2011-02-14
申请人： Balachander Krishnamurthy , Walter Willinger , Brice Augustin
发明人： Balachander Krishnamurthy , Walter Willinger , Brice Augustin
IPC分类号： H04L12/28
CPC分类号： H04L41/12 , H04L43/10 , H04L45/00 , H04L45/04 , H04L45/26 , H04L45/46 , H04L61/303
摘要： A technique for examining the relationships of autonomous systems (ASes) participating in an Internet Exchange Point (IXP) utilizes packet tracing servers proximate the IXPs. Where such packet tracing servers cannot be found in the participating ASes, the methodology identifies additional vantage points by looking at a list of ASes that are one hop away from the ASes at the IXP. The choice of one-hop away ASes is made judiciously by picking ones that have better connectivity, based on past-data. Plural-hop ASes may also be used where necessary.
摘要翻译：用于检查参与互联网交换点（IXP）的自治系统（ASes）的关系的技术利用靠近IXP的数据包跟踪服务器。在参与的AS中找不到这种数据包跟踪服务器的情况下，该方法通过查看与IXP上的ASes一跳的AS的列表来识别其他有利位置。根据过去的数据，通过选择具有更好连接性的选项，可以明智地选择一跳。必要时也可以使用多跳ASS。

5. 发明申请

US20130097046A1 System and Method of Providing Transactional Privacy 审中-公开
标题翻译：提供事务隐私的系统和方法
公开(公告)号：US20130097046A1
公开(公告)日：2013-04-18
申请号：US13648560
申请日：2012-10-10
申请人： Balachander Krishnamurthy , Vijay Erramilli , Pablo Rodriguez , Josep Maria Pujol
发明人： Balachander Krishnamurthy , Vijay Erramilli , Pablo Rodriguez , Josep Maria Pujol
IPC分类号： G06Q30/08
CPC分类号： G06Q30/08
摘要： A user is prevented from being identified at each of a plurality of sites. An indication to sell access to the user at one of the plurality of sites is received. A personal information marketplace is provided to run an auction to sell the access to the user at the one of the plurality of sites. In response to a sale of the access to the user at the one of the plurality of sites to an aggregator, access to track the user at the one of the plurality of sites while maintaining anonymity of the user is provided to the aggregator.
摘要翻译：防止在多个站点中的每一个处识别用户。接收在多个站点之一处销售对用户的访问的指示。提供个人信息市场以运行拍卖以将对该多个站点中的一个站点的用户的访问销售。响应于对多个站点中的一个站点的用户的访问销售到聚合器，向聚合器提供在维护用户的匿名的同时跟踪多个站点中的一个站点处的用户的访问。

6. 发明申请

US20120124672A1 Multi-Dimensional User-Specified Extensible Narrowcasting System 有权
标题翻译：多维用户指定的可扩展广播系统
公开(公告)号：US20120124672A1
公开(公告)日：2012-05-17
申请号：US12947447
申请日：2010-11-16
申请人： Balachander Krishnamurthy
发明人： Balachander Krishnamurthy
IPC分类号： G06F15/16 , G06F21/00
CPC分类号： H04L51/32 , H04L12/185
摘要： Narrowcast communication to one or more narrowcast communication recipients is provided through the use of an extensible method and apparatus. A narrowcast communication sender determines a set of attributes that define who will be eligible to receive a narrowcast communication. The set of attributes characterize potential recipients according to qualities such as interests, location, or another descriptor of a potential narrowcast communication recipient. Through the use of a privacy sphere, attributes associated with the narrowcast communication are matched to the qualities of potential recipients to identify the network addresses of the narrowcast communication recipients. The narrowcast communication is then transmitted to those network addresses. The narrowcast communication can be then expired from recipients who are no longer eligible to receive it and transmitted to recipients who become eligible to receive the narrowcast communication.
摘要翻译：通过使用可扩展的方法和装置来提供对一个或多个窄播通信接收者的窄播通信。狭窄的通信发送者确定一组属性，定义谁将有资格接收窄播通信。这些属性是根据潜在收信人的兴趣，位置或其他描述符等特征来表征潜在的接收者。通过使用隐私领域，与窄带通信相关联的属性与潜在接收者的质量相匹配，以识别窄频通信接收者的网络地址。然后将窄带通信传输到这些网络地址。接收者可能已经不再有资格接收窄带通信并传送给有资格接收窄频通信的接收者。

7. 发明授权

US08156556B2 Method and apparatus for providing mobile honeypots 有权
标题翻译：提供移动蜜罐的方法和装置
公开(公告)号：US08156556B2
公开(公告)日：2012-04-10
申请号：US11081261
申请日：2005-03-15
申请人： Balachander Krishnamurthy
发明人： Balachander Krishnamurthy
IPC分类号： H04L9/00
CPC分类号： H04L63/1441 , H04L63/1408 , H04L63/145 , H04L63/1491
摘要： A method and apparatus for detecting an originator of traffic of interest is provided. One or more honeypots are established. Mobility is then provided to the one or more honeypots. In one embodiment, mobility is provided by communicating information associated with one or more dark prefixes. In another embodiment, mobility is provided by varying information related to the one or more dark prefixes.
摘要翻译：提供了一种用于检测感兴趣的业务的发起者的方法和装置。建立一个或多个蜜罐。然后将移动性提供给一个或多个蜜罐。在一个实施例中，通过传送与一个或多个黑暗前缀相关联的信息来提供移动性。在另一个实施例中，通过改变与一个或多个黑暗前缀相关的信息来提供移动性。

8. 发明授权

US07979413B2 Automatic generation of embedded signatures for duplicate detection on a public network 有权
标题翻译：自动生成嵌入式签名，用于公共网络上的重复检测
公开(公告)号：US07979413B2
公开(公告)日：2011-07-12
申请号：US12156370
申请日：2008-05-30
申请人： Balachander Krishnamurthy , Saurabh Kumar , Lakshminarayanan Subramanian
发明人： Balachander Krishnamurthy , Saurabh Kumar , Lakshminarayanan Subramanian
IPC分类号： G06F7/00 , G06F17/30
CPC分类号： G06F17/30663 , G06F21/552
摘要： In accordance with an aspect of the invention, a method and system are disclosed for constructing an embedded signature in order to facilitate post-facto detection of leakage of sensitive data. The leakage detection mechanism involves: 1) identifying at least one set of words in an electronic document containing sensitive data, the set of words having a low frequency of occurrence in a first collection of electronic documents; and, 2) transmitting a query to search a second collection of electronic documents for any electronic document that contains the set of words having a low frequency of occurrence. This leakage detection mechanism has at least the following advantages: a) it is tamper-resistant; b) it avoids the need to add a watermark to the sensitive data, c) it can be used to locate the sensitive data even if the leakage occurred before the embedded signature was ever identified; and, d) it can be used to detect an embedded signature regardless of whether the data is being presented statically or dynamically.
摘要翻译：根据本发明的一个方面，公开了一种用于构建嵌入式签名的方法和系统，以便于事后检测敏感数据的泄漏。所述泄漏检测机构包括：1）识别包含敏感数据的电子文档中的至少一组单词，所述一组单词在电子文档的第一集合中具有低频率出现; 以及2）发送查询以搜索包含具有低发生频率的单词集合的任何电子文档的第二电子文档集合。该泄漏检测机构至少具有以下优点：a）它是防篡改的; b）它避免了需要向敏感数据添加水印，c）即使在嵌入式签名被识别之前发生泄漏，它也可以用于定位敏感数据; 以及d）它可以用于检测嵌入的签名，而不管数据是静态还是动态呈现。

9. 发明申请

US20100125630A1 Method and Device to Provide Trusted Recommendations of Websites 有权
标题翻译：提供网站信任建议的方法和设备
公开(公告)号：US20100125630A1
公开(公告)日：2010-05-20
申请号：US12274926
申请日：2008-11-20
申请人： Balachander Krishnamurthy , Ramon Caceres
发明人： Balachander Krishnamurthy , Ramon Caceres
IPC分类号： G06F15/16
CPC分类号： G06F17/30867 , G06Q10/10 , G06Q50/10
摘要： In embodiments of the disclosed technology, a plurality of ratings of, for example, websites is received, wherein each rating is associated with a category and a rater, and each rater is associated with at least one group. A selection of a category is received from the user, wherein the user is associated with at least one group. One website location, or a plurality of website locations, is provided in the category to the user, based on at least one rating of the plurality of ratings provided by at least one of the raters, wherein at least one group associated with the rater and at least one group associated with the user are the same group.
摘要翻译：在所公开的技术的实施例中，接收到例如网站的多个评级，其中每个评级与一个类别和一个评价者相关联，并且每个评价者与至少一个组相关联。从用户接收到类别的选择，其中用户与至少一个组相关联。基于由评估者中的至少一个提供的多个等级的至少一个等级，在该类别中向用户提供一个网站位置或多个网站位置，其中至少一个与评分者相关联的组和与用户相关联的至少一个组是相同的组。

10. 发明申请

US20100114839A1 Identifying and remedying secondary privacy leakage 有权
标题翻译：识别和纠正次要隐私泄漏
公开(公告)号：US20100114839A1
公开(公告)日：2010-05-06
申请号：US12288071
申请日：2008-10-16
申请人： Balachander Krishnamurthy , Craig Ellis Wills
发明人： Balachander Krishnamurthy , Craig Ellis Wills
IPC分类号： G06F17/00 , G06F7/00
CPC分类号： G06F21/6263 , H04L63/0428
摘要： Secondary leakage of private information is identified and remedied. Internet activity of a first party can result in such secondary leakage of private information of a second party. Information about the second party that would not otherwise be known becomes public based simply on related information that has been placed on a public site of a third party by the first party. Such disclosure is detected and the victim may be notified about the location. The victim can then decide if such secondary leakage is acceptable. If not, the first party or the third party may be notified, the activity may be stopped and the offending information can be removed.
摘要翻译：确定和补救了私人信息的二次泄漏。第一方的互联网活动可能导致第二方的私人信息的二次泄漏。关于第二方不知道的信息仅仅是基于第一方在第三方的公共场所上的相关信息而公开的。检测到这种披露，并且可以向受害者通知该位置。受害者可以决定这种二次泄漏是否可以接受。如果没有，可以通知第一方或第三方，可能会停止活动，并且可以删除违规信息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式