专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07228426B2 Integrity ordainment and ascertainment of computer-executable instructions with consideration for execution context 有权
标题翻译：考虑执行上下文的计算机可执行指令的完整性标准和确定
公开(公告)号：US07228426B2
公开(公告)日：2007-06-05
申请号：US10116263
申请日：2002-04-03
申请人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
发明人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
IPC分类号： H04L9/00 , G06F11/00 , G06F12/14 , G06F12/16 , G06F15/18
CPC分类号： G06F21/52 , G06F21/64
摘要： An implementation of a technology, described herein, for facilitating the protection computer-executable instructions, such as software. At least one implementation, described herein, may generate integrity signatures of one or more program modules—which are sets of computer-executable instructions—based upon a trace of activity during execution of such modules and/or near-replicas of such modules. With at least one implementation, described herein, the execution context of an execution instance of a program module is considered when generating the integrity signatures. With at least one implementation, described herein, a determination may be made about whether a module is unaltered by comparing integrity signatures. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的用于促进诸如软件的保护计算机可执行指令的技术的实现。本文描述的至少一个实施方式可以基于在执行这些模块的执行过程中的活动痕迹和/或这种模块的近似副本来生成一个或多个程序模块的完整性签名，这些程序模块是计算机可执行指令的集合。利用这里描述的至少一个实现，在生成完整性签名时考虑程序模块的执行实例的执行上下文。利用这里描述的至少一个实现，可以通过比较完整性签名来确定模块是否不变。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

2. 发明授权

US07644440B2 Integrity ordainment and ascertainment of computer-executable instructions with consideration for execution context 有权
标题翻译：考虑执行上下文的计算机可执行指令的完整性标准和确定
公开(公告)号：US07644440B2
公开(公告)日：2010-01-05
申请号：US11275061
申请日：2005-12-06
申请人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
发明人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
IPC分类号： G06F12/14 , H04L1/00 , G08B23/00
CPC分类号： G06F21/52 , G06F21/64
摘要： An implementation of a technology, described herein, for facilitating the protection of computer-executable instructions, such as software. At least one implementation, described herein, may generate integrity signatures of one or more program modules—which are sets of computer-executable instructions—based upon a trace of activity during execution of such modules and/or near-replicas of such modules. With at least one implementation, described herein, the execution context of an execution instance of a program module is considered when generating the integrity signatures. With at least one implementation, described herein, a determination may be made about whether a module is unaltered by comparing integrity signatures. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的用于促进诸如软件的计算机可执行指令的保护的技术的实现。本文描述的至少一个实施方式可以基于在执行这些模块的执行过程中的活动痕迹和/或这种模块的近似副本来生成一个或多个程序模块的完整性签名，这些程序模块是计算机可执行指令的集合。利用这里描述的至少一个实现，在生成完整性签名时考虑程序模块的执行实例的执行上下文。利用这里描述的至少一个实现，可以通过比较完整性签名来确定模块是否不变。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

3. 发明授权

US07610623B2 Integrity ordainment and ascertainment of computer-executable instructions with consideration for execution context 有权
标题翻译：考虑执行上下文的计算机可执行指令的完整性标准和确定
公开(公告)号：US07610623B2
公开(公告)日：2009-10-27
申请号：US11275060
申请日：2005-12-06
申请人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
发明人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
IPC分类号： G06F12/14 , H04L1/00 , G08B23/00
CPC分类号： G06F21/52 , G06F21/64
摘要： An implementation of a technology, described herein, for facilitating the protection of computer-executable instructions, such as software. At least one implementation, described herein, may generate integrity signatures of one or more program modules—which are sets of computer-executable instructions—based upon a trace of activity during execution of such modules and/or near-replicas of such modules. With at least one implementation, described herein, the execution context of an execution instance of a program module is considered when generating the integrity signatures. With at least one implementation, described herein, a determination may be made about whether a module is unaltered by comparing integrity signatures. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的用于促进诸如软件的计算机可执行指令的保护的技术的实现。本文描述的至少一个实施方式可以基于在执行这些模块的执行过程中的活动痕迹和/或这种模块的近似副本来生成一个或多个程序模块的完整性签名，这些程序模块是计算机可执行指令的集合。利用这里描述的至少一个实现，在生成完整性签名时考虑程序模块的执行实例的执行上下文。利用这里描述的至少一个实现，可以通过比较完整性签名来确定模块是否不变。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

4. 发明授权

US07346780B2 Integrity ordainment and ascertainment of computer-executable instructions 有权
标题翻译：完整性指令和计算机可执行指令的确定
公开(公告)号：US07346780B2
公开(公告)日：2008-03-18
申请号：US10116440
申请日：2002-04-03
申请人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
发明人： Saurabh Sinha , Mariusz H. Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
IPC分类号： G06F11/30 , G06F12/14
CPC分类号： G06F21/52 , G06F21/64
摘要： An implementation of a technology, described herein, for facilitating the protection computer-executable instructions, such as software. At least one implementation, described herein, may generate integrity signatures of multiple sets of computer-executable instructions based upon the output trace and/or an execution trace of such sets. With at least one implementation, described herein, a determination may be made about whether two or more of such sets are unaltered duplicates by comparing integrity signatures of such sets. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的用于促进诸如软件的保护计算机可执行指令的技术的实现。这里描述的至少一个实现可以基于输出跟踪和/或这些集合的执行跟踪来生成多组计算机可执行指令的完整性签名。利用这里描述的至少一个实现，可以通过比较这样的集合的完整性签名来确定这些集合中的两个或更多个是不变的重复的。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

5. 发明申请

US20060080530A1 Integrity Ordainment and Ascertainment of Computer-Executable Instructions with Consideration for Execution Context 有权
标题翻译：计算机可执行指令的完整性和确定与执行情况的考虑
公开(公告)号：US20060080530A1
公开(公告)日：2006-04-13
申请号：US11275060
申请日：2005-12-06
申请人： Saurabh Sinha , Mariusz Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
发明人： Saurabh Sinha , Mariusz Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
IPC分类号： H04L9/00
CPC分类号： G06F21/52 , G06F21/64
摘要： An implementation of a technology, described herein, for facilitating the protection of computer-executable instructions, such as software. At least one implementation, described herein, may generate integrity signatures of one or more program modules—which are sets of computer-executable instructions—based upon a trace of activity during execution of such modules and/or near-replicas of such modules. With at least one implementation, described herein, the execution context of an execution instance of a program module is considered when generating the integrity signatures. With at least one implementation, described herein, a determination may be made about whether a module is unaltered by comparing integrity signatures. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的用于促进诸如软件的计算机可执行指令的保护的技术的实现。本文描述的至少一个实施方式可以基于在执行这些模块的执行过程中的活动痕迹和/或这种模块的近似副本来生成一个或多个程序模块的完整性签名，这些程序模块是计算机可执行指令的集合。利用这里描述的至少一个实现，在生成完整性签名时考虑程序模块的执行实例的执行上下文。利用这里描述的至少一个实现，可以通过比较完整性签名来确定模块是否不变。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

6. 发明申请

US20060080531A1 Integrity Ordainment and Ascertainment of Computer-Executable Instructions with Consideration for Execution Context 有权
标题翻译：计算机可执行指令的完整性和确定与执行情况的考虑
公开(公告)号：US20060080531A1
公开(公告)日：2006-04-13
申请号：US11275061
申请日：2005-12-06
申请人： Saurabh Sinha , Mariusz Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
发明人： Saurabh Sinha , Mariusz Jakubowski , Ramarathnam Venkatesan , Yuqun Chen , Matthew Cary , Ruoming Pang
IPC分类号： H04L9/00
CPC分类号： G06F21/52 , G06F21/64
摘要： An implementation of a technology, described herein, for facilitating the protection of computer-executable instructions, such as software. At least one implementation, described herein, may generate integrity signatures of one or more program modules which are sets of computer-executable instructions—based upon a trace of activity during execution of such modules and/or near-replicas of such modules. With at least one implementation, described herein, the execution context of an execution instance of a program module is considered when generating the integrity signatures. With at least one implementation, described herein, a determination may be made about whether a module is unaltered by comparing integrity signatures. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的用于促进诸如软件的计算机可执行指令的保护的技术的实现。本文描述的至少一个实施方式可以基于在执行这些模块的这种模块和/或近似副本期间的活动痕迹来生成作为计算机可执行指令集的一个或多个程序模块的完整性签名。利用这里描述的至少一个实现，在生成完整性签名时考虑程序模块的执行实例的执行上下文。利用这里描述的至少一个实现，可以通过比较完整性签名来确定模块是否不变。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

7. 发明授权

US07254586B2 Secure and opaque type library providing secure data protection of variables 有权
标题翻译：安全和不透明的库提供变量的安全数据保护
公开(公告)号：US07254586B2
公开(公告)日：2007-08-07
申请号：US10185644
申请日：2002-06-28
申请人： Yuqun Chen , Ramarathnam Venkatesan , Mariusz H. Jakubowski
发明人： Yuqun Chen , Ramarathnam Venkatesan , Mariusz H. Jakubowski
IPC分类号： G06F7/00 , G06F11/30 , G06F12/14 , H04L9/32
CPC分类号： G06F21/14 , Y10S707/99931
摘要： A method, apparatus, and article of manufacture for providing secure and opaque type libraries to automatically provide secure variables within a programming module. A system for providing secure and opaque type libraries to automatically provide secure variables within a programming module. The system includes an OTL selection module, an OTL substitution module, an OTL type library database, a compiler module; and a linker module to create an executable processing module. The OTL selection module randomly selects or generates one of the possible variable obfuscation functions for each declared secure variable. The OTL substitution module substitutes the separate instance of the selected variable obfuscation function for every reference to the declared secure variable. The OTL type library database receives queries from the OTL selection module a database to identify of possible variable obfuscation functions applicable for the variable type corresponding to the declared secure variables.
摘要翻译：一种用于提供安全和不透明类型库以在编程模块内自动提供安全变量的方法，装置和制品。一种用于提供安全和不透明类型库以在编程模块内自动提供安全变量的系统。该系统包括OTL选择模块，OTL替代模块，OTL类型库数据库，编译器模块; 以及用于创建可执行处理模块的链接器模块。 OTL选择模块随机选择或生成每个声明的安全变量的可能的变量模糊函数之一。 OTL替换模块将所选变量混淆函数的单独实例替换为声明的安全变量的每个引用。 OTL类型库数据库从OTL选择模块接收数据库的查询，以识别适用于与所声明的安全变量相对应的变量类型的可能的变量混淆函数。

8. 发明授权

US07957532B2 Data protection for a mobile device 有权
标题翻译：移动设备的数据保护
公开(公告)号：US07957532B2
公开(公告)日：2011-06-07
申请号：US11474016
申请日：2006-06-23
申请人： Yuqun Chen , Zicheng Liu , Mariusz H. Jakubowski , Yacov Yacobi
发明人： Yuqun Chen , Zicheng Liu , Mariusz H. Jakubowski , Yacov Yacobi
IPC分类号： H04K1/00 , H04L9/00 , H04L9/08
CPC分类号： H04L9/3226 , H04L9/0822 , H04L9/083 , H04L63/0428 , H04L63/061 , H04L2209/80 , H04L2463/062 , H04W12/02 , H04W12/04 , H04W12/06
摘要： A network-based data protection scheme for a mobile device utilizes encryption techniques and a remote key server that stores encryption keys on behalf of the mobile device. The mobile device stores encrypted data, preferably having no unencrypted counterpart stored therewith. On an as-needed basis, the mobile device requests a decryption key (or an encrypted version of a decryption key) from the key server, where the decryption key can be used by the mobile device to decrypt the encrypted information. The key server transmits the decryption key to the mobile device after authenticating the user of the mobile device.
摘要翻译：用于移动设备的基于网络的数据保护方案利用加密技术和代表移动设备存储加密密钥的远程密钥服务器。移动设备存储加密数据，优选地不存储与其一起存储的未加密的对应物。根据需要，移动设备从密钥服务器请求解密密钥（或解密密钥的加密版本），其中解密密钥可被移动设备用于解密加密的信息。密钥服务器在认证移动设备的用户之后将解密密钥发送到移动设备。

9. 发明申请

US20070297610A1 Data protection for a mobile device 有权
标题翻译：移动设备的数据保护
公开(公告)号：US20070297610A1
公开(公告)日：2007-12-27
申请号：US11474016
申请日：2006-06-23
申请人： Yuqun Chen , Zicheng Liu , Mariusz H. Jakubowski , Yacov Yacobi
发明人： Yuqun Chen , Zicheng Liu , Mariusz H. Jakubowski , Yacov Yacobi
IPC分类号： H04K1/00
CPC分类号： H04L9/3226 , H04L9/0822 , H04L9/083 , H04L63/0428 , H04L63/061 , H04L2209/80 , H04L2463/062 , H04W12/02 , H04W12/04 , H04W12/06
摘要： A network-based data protection scheme for a mobile device utilizes encryption techniques and a remote key server that stores encryption keys on behalf of the mobile device. The mobile device stores encrypted data, preferably having no unencrypted counterpart stored therewith. On an as-needed basis, the mobile device requests a decryption key (or an encrypted version of a decryption key) from the key server, where the decryption key can be used by the mobile device to decrypt the encrypted information. The key server transmits the decryption key to the mobile device after authenticating the user of the mobile device.
摘要翻译：用于移动设备的基于网络的数据保护方案利用加密技术和代表移动设备存储加密密钥的远程密钥服务器。移动设备存储加密数据，优选地不存储与其一起存储的未加密的对应物。根据需要，移动设备从密钥服务器请求解密密钥（或解密密钥的加密版本），其中解密密钥可被移动设备用于解密加密的信息。密钥服务器在认证移动设备的用户之后将解密密钥发送到移动设备。

10. 发明授权

US08146138B2 Access unit switching through physical mediation 有权
标题翻译：接入单元通过物理中介切换
公开(公告)号：US08146138B2
公开(公告)日：2012-03-27
申请号：US11275146
申请日：2005-12-15
申请人： Yuqun Chen , Marcus Peinado
发明人： Yuqun Chen , Marcus Peinado
IPC分类号： G06F21/00
CPC分类号： G06F21/57 , G06F21/53 , G06F21/629
摘要： A plurality of access units may be established with varying levels of privilege and access rights, such that the user may perform tasks carrying with them a high risk of viral infection in an access unit with a low level of privilege and access rights. When an authenticated user desires to perform tasks requiring a higher level of privilege and access rights, the user may switch to an access unit having a higher privilege and access rights level by instigating a physical action. The physical action may include selecting a button (included in either a UI or on a peripheral device), or inputting biometric data to switch among running access units. A signal instigated by the physical action is transmitted along a trusted path between the isolation kernel and where the physical action was instigated.
摘要翻译：可以建立具有不同级别的特权和访问权限的多个访问单元，使得用户可以执行具有低级特权和访问权限的访问单元中病毒感染的高风险的任务。当认证用户希望执行需要更高级别的特权和访问权限的任务时，用户可以通过煽动身体动作来切换到具有较高特权和访问权限级别的访问单元。物理动作可以包括选择按钮（包括在UI中或在外围设备上），或者输入生物测定数据以在运行的访问单元之间切换。通过物理动作引发的信号沿着隔离核心之间的信任路径传输，并且物理作用被引发。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式