专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100162346A1 SELECTING SECURITY OFFERINGS 有权
标题翻译：选择安全提供
公开(公告)号：US20100162346A1
公开(公告)日：2010-06-24
申请号：US12339106
申请日：2008-12-19
申请人： Vladimir Holostov , Yigal Edery , David B. Cross
发明人： Vladimir Holostov , Yigal Edery , David B. Cross
IPC分类号： G06F21/00
CPC分类号： G06F21/577 , G06Q30/02
摘要： Methods, systems, and computer-readable media are disclosed for selecting a set of security offerings. A particular method includes receiving a security need profile associated with a computing environment and receiving security offering information related to a plurality of security offerings. The security offerings of the plurality of security offerings are evaluated with respect to the security need profile. A set of security offerings from the plurality of security offerings are automatically selected.
摘要翻译：公开了用于选择一组安全产品的方法，系统和计算机可读介质。特定方法包括接收与计算环境相关联的安全需求简档，并接收与多个安全产品相关的安全提供信息。针对安全需求概况来评估多个安全产品的安全性。自动选择来自多个安全产品的一组安全产品。

2. 发明授权

US08707439B2 Selecting security offerings 有权
标题翻译：选择安全产品
公开(公告)号：US08707439B2
公开(公告)日：2014-04-22
申请号：US12339106
申请日：2008-12-19
申请人： Vladimir Holostov , Yigal Edery , David B. Cross
发明人： Vladimir Holostov , Yigal Edery , David B. Cross
IPC分类号： H04L29/14
CPC分类号： G06F21/577 , G06Q30/02
摘要： Methods, systems, and computer-readable media are disclosed for selecting a set of security offerings. A particular method includes receiving a security need profile associated with a computing environment and receiving security offering information related to a plurality of security offerings. The security offerings of the plurality of security offerings are evaluated with respect to the security need profile. A set of security offerings from the plurality of security offerings are automatically selected.
摘要翻译：公开了用于选择一组安全产品的方法，系统和计算机可读介质。特定方法包括接收与计算环境相关联的安全需求简档，并接收与多个安全产品相关的安全提供信息。针对安全需求概况来评估多个安全产品的安全性。自动选择来自多个安全产品的一组安全产品。

3. 发明授权

US08732797B2 Host usability and security via an isolated environment 有权
标题翻译：通过孤立的环境主持可用性和安全性
公开(公告)号：US08732797B2
公开(公告)日：2014-05-20
申请号：US12871919
申请日：2010-08-31
申请人： Vladimir Holostov , Yigal Edery , Yair Geva
发明人： Vladimir Holostov , Yigal Edery , Yair Geva
IPC分类号： G06F11/00
CPC分类号： H04L63/1416 , G06F21/53 , H04L63/1441
摘要： Architecture that addresses security concerns while still providing transparent user experience with ability to perform tasks. When a user machine is considered incompliant or compromised due to, for example, a suspected infection, the user machine can be blocked from further access to a network or other computing hosts until the incompliance is resolved. A notification is presented that indicates the nature of the problem, and a way to access an automatically configured isolated environment via which to continue working. The user can be automatically routed to use the alternative isolated environment for temporary access to network resources. Once the user finishes activities in the isolated environment, the system hosting the isolated environment is reverted back to a known good state.
摘要翻译：解决安全问题的架构，同时仍然能够提供具有执行任务能力的透明用户体验。当用户机器由于例如疑似感染而被认为是不合格或受损时，可以阻止用户机器进一步访问网络或其它计算机主机，直到解除不合规。提供了一个指示问题性质的通知，以及访问自动配置的隔离环境以通过其继续工作的方式。用户可以自动路由使用备用隔离环境来临时访问网络资源。一旦用户在隔离的环境中完成活动，托管隔离环境的系统将恢复到已知的良好状态。

4. 发明申请

US20080301796A1 Adjusting the Levels of Anti-Malware Protection 审中-公开
标题翻译：调整防恶意软件防护等级
公开(公告)号：US20080301796A1
公开(公告)日：2008-12-04
申请号：US11756598
申请日：2007-05-31
申请人： Vladimir Holostov , Yigal Edery
发明人： Vladimir Holostov , Yigal Edery
IPC分类号： G06F17/00 , G08B23/00
CPC分类号： H04L63/105 , H04L63/145
摘要： A client transmits requests via a gateway to a server in a network environment. The requests indicate content on a server to be transmitted as part of download process. The gateway receives into its memory the requested content and also maintains characteristics of the server and the client. The gateway adjusts the depth of scanning of the content for malware based on the retrieved server and client characteristics in order to optimize a balance between effectiveness of anti-malware scanning and a resulting user experience.
摘要翻译：客户端通过网关向网络环境中的服务器发送请求。这些请求表示要作为下载过程的一部分传输的服务器上的内容。网关将其请求的内容接收到其内存中，并保持服务器和客户端的特性。网关根据检索到的服务器和客户端特性调整恶意软件内容的扫描深度，以优化反恶意软件扫描的有效性与最终用户体验之间的平衡。

5. 发明申请

US20080295176A1 Anti-virus Scanning of Partially Available Content 有权
标题翻译：部分可用内容的防病毒扫描
公开(公告)号：US20080295176A1
公开(公告)日：2008-11-27
申请号：US11753439
申请日：2007-05-24
申请人： Vladimir Holostov , Yigal Edery
发明人： Vladimir Holostov , Yigal Edery
IPC分类号： G06F12/14
CPC分类号： H04L63/145 , G06F21/562
摘要： A client device transmits requests via a gateway to a server in a network environment. The requests indicate specific portions of a file on a server to be transmitted as part of the download process. The gateway receives into its memory the requested portions of the file and assembles the received portions into an assembly file. The gateway continuously scans the largest contiguous sequence of the portions in the assembly file for viruses while the requested portions of the file are being received and become available before feeding the received portions to the client computer. By scanning the largest consecutive sequence while new portions become available, the time to complete the scan is reduced thereby increasing the throughput of the gateway.
摘要翻译：客户端设备通过网关向网络环境中的服务器发送请求。这些请求指示要作为下载过程的一部分发送的服务器上的文件的特定部分。网关在其存储器中接收文件的请求部分，并将接收的部分组装成汇编文件。网关连续地扫描装配文件中部分的最大连续序列，同时文件的请求部分正在被接收并且在将接收到的部分馈送给客户端计算机之前变得可用。通过在新部分变得可用的情况下扫描最大的连续序列，减少完成扫描的时间，从而增加网关的吞吐量。

6. 发明授权

US08255999B2 Anti-virus scanning of partially available content 有权
标题翻译：部分可用内容的反病毒扫描
公开(公告)号：US08255999B2
公开(公告)日：2012-08-28
申请号：US11753439
申请日：2007-05-24
申请人： Vladimir Holostov , Yigal Edery
发明人： Vladimir Holostov , Yigal Edery
IPC分类号： G06F11/00
CPC分类号： H04L63/145 , G06F21/562
摘要： A client device transmits requests via a gateway to a server in a network environment. The requests indicate specific portions of a file on a server to be transmitted as part of the download process. The gateway receives into its memory the requested portions of the file and assembles the received portions into an assembly file. The gateway continuously scans the largest contiguous sequence of the portions in the assembly file for viruses while the requested portions of the file are being received and become available before feeding the received portions to the client computer. By scanning the largest consecutive sequence while new portions become available, the time to complete the scan is reduced thereby increasing the throughput of the gateway.
摘要翻译：客户端设备通过网关向网络环境中的服务器发送请求。这些请求指示要作为下载过程的一部分发送的服务器上的文件的特定部分。网关在其存储器中接收文件的请求部分，并将接收的部分组装成汇编文件。网关连续地扫描装配文件中部分的最大连续序列，同时文件的请求部分正在被接收并且在将接收到的部分馈送给客户端计算机之前变得可用。通过在新部分变得可用的情况下扫描最大的连续序列，减少完成扫描的时间，从而增加网关的吞吐量。

7. 发明申请

US20120054829A1 HOST USABILITY AND SECURITY VIA AN ISOLATED ENVIRONMENT 有权
标题翻译：主要通过隔离环境的可用性和安全性
公开(公告)号：US20120054829A1
公开(公告)日：2012-03-01
申请号：US12871919
申请日：2010-08-31
申请人： Vladimir Holostov , Yigal Edery , Yair Geva
发明人： Vladimir Holostov , Yigal Edery , Yair Geva
IPC分类号： G06F21/22 , G06F11/00
CPC分类号： H04L63/1416 , G06F21/53 , H04L63/1441
摘要： Architecture that addresses security concerns while still providing transparent user experience with ability to perform tasks. When a user machine is considered incompliant or compromised due to, for example, a suspected infection, the user machine can be blocked from further access to a network or other computing hosts until the incompliance is resolved. A notification is presented that indicates the nature of the problem, and a way to access an automatically configured isolated environment via which to continue working. The user can be automatically routed to use the alternative isolated environment for temporary access to network resources. Once the user finishes activities in the isolated environment, the system hosting the isolated environment is reverted back to a known good state.
摘要翻译：解决安全问题的架构，同时仍然能够提供具有执行任务能力的透明用户体验。当用户机器由于例如疑似感染而被认为是不合格或受损时，可以阻止用户机器进一步访问网络或其它计算机主机，直到解除不合规。提供了一个指示问题性质的通知，以及访问自动配置的隔离环境以通过其继续工作的方式。用户可以自动路由使用备用隔离环境来临时访问网络资源。一旦用户在隔离的环境中完成活动，托管隔离环境的系统将恢复到已知的良好状态。

8. 发明申请

US20100011432A1 AUTOMATICALLY DISTRIBUTED NETWORK PROTECTION 审中-公开
标题翻译：自动分配网络保护
公开(公告)号：US20100011432A1
公开(公告)日：2010-01-14
申请号：US12277089
申请日：2008-11-24
申请人： Yigal Edery , Nir Nice , David B. Cross
发明人： Yigal Edery , Nir Nice , David B. Cross
IPC分类号： G06F21/00 , H04L9/00 , G06Q30/00 , G06Q10/00 , G06F17/00
CPC分类号： H04L63/205 , G06Q10/06375 , G06Q30/04 , H04L63/102 , H04L63/1433 , H04L63/145 , H04L63/1475
摘要： A network protection solution is provided by which security capabilities of a client machine are communicated to a network security gateway so that a variety of processes can be automatically and dynamically distributed between the gateway and the client machine in a way that achieves a target level of security for the client while consuming the least possible amount of resources on the gateway. For example, for a client that is compliant with specified health and/or corporate governance policies and which is known to have A/V capabilities that are deployed and operational, the network security gateway will not need to perform additional A/V scanning on incoming network traffic to the client which can thus save resources at the gateway and lower operating costs.
摘要翻译：提供了一种网络保护解决方案，通过该网络保护解决方案，客户端机器的安全能力被传送到网络安全网关，使得可以以实现目标安全级别的方式在网关和客户机之间自动和动态地分配各种进程为客户端消耗网关上尽可能少的资源。例如，对于符合指定的健康和/或公司治理策略并且已知具有部署和运行的A / V功能的客户端，网络安全网关将不需要在传入时执行附加的A / V扫描网络流量到客户端，从而可以节省网关资源，降低运营成本。

9. 发明申请

US20110138441A1 MODEL BASED SYSTEMS MANAGEMENT IN VIRTUALIZED AND NON-VIRTUALIZED ENVIRONMENTS 有权
标题翻译：虚拟化和非虚拟化环境中的基于模型的系统管理
公开(公告)号：US20110138441A1
公开(公告)日：2011-06-09
申请号：US12633805
申请日：2009-12-09
申请人： John Neystadt , Yigal Edery , Yan Belinky , Anders B. Vinberg , Dennis Scott Batchelder , Shimon Yannay
发明人： John Neystadt , Yigal Edery , Yan Belinky , Anders B. Vinberg , Dennis Scott Batchelder , Shimon Yannay
IPC分类号： G06Q10/00 , G06F21/00 , G06F15/177 , G06F9/455
CPC分类号： H04L63/20 , G06F9/5077 , G06F21/53 , H04L63/10
摘要： Architecture that provides model-based systems management in virtualized and non-virtualized environments. A security component provides security models which define security requirements for services. A management component applies one or more of the security models during the lifecycle of virtual machines and services. The lifecycle can include initial deployment, expansion, moving servers, monitoring, and reporting. The architecture creates a formal description model of how a virtual machine or a service (composition of multiple virtual machines) is secured. The security requirements information can also be fed back to the general management system which uses this information in its own activities such as to guide the placement of workloads on servers can be security related.
摘要翻译：在虚拟化和非虚拟化环境中提供基于模型的系统管理的架构。安全组件提供了定义服务安全性要求的安全模型。管理组件在虚拟机和服务的生命周期中应用一个或多个安全模型。生命周期可以包括初始部署，扩展，移动服务器，监控和报告。该架构创建了如何保护虚拟机或服务（多个虚拟机的组合）的正式描述模型。安全要求信息也可以反馈给在其自身活动中使用该信息的通用管理系统，以指导服务器上的工作负载的布置可以与安全相关。

10. 发明授权

US07844700B2 Latency free scanning of malware at a network transit point 有权
标题翻译：在网络转接点，不间断地扫描恶意软件
公开(公告)号：US07844700B2
公开(公告)日：2010-11-30
申请号：US11097060
申请日：2005-03-31
申请人： Adrian M Marinescu , Marc E Seinfeld , Michael Kramer , Yigal Edery
发明人： Adrian M Marinescu , Marc E Seinfeld , Michael Kramer , Yigal Edery
IPC分类号： G06F15/173 , G06F11/30
CPC分类号： H04L63/0209 , H04L63/1416 , H04L63/145
摘要： In accordance with the present invention, a system, method, and computer-readable medium for identifying malware at a network transit point such as a computer that serves as a gateway to an internal or private network is provided. A network transmission is scanned for malware at a network transit point without introducing additional latency to the transmission of data over the network. In accordance with one aspect of the present invention, a computer-implemented method for identifying malware at a network transit point is provided. More specifically, when a packet in a transmission is received at the network transit point, the packet is immediately forwarded to the target computer. Simultaneously, the packet and other data in the transmission are scanned for malware by an antivirus engine. If malware is identified in the transmission, the target computer is notified that the transmission contains malware.
摘要翻译：根据本发明，提供了一种系统，方法和计算机可读介质，用于在诸如用作内部或专用网络的网关的计算机之类的网络转接点处识别恶意软件。在网络传输点扫描网络传输恶意软件，而不会对网络上的数据传输造成额外的延迟。根据本发明的一个方面，提供了一种用于在网络中转点识别恶意软件的计算机实现的方法。更具体地，当在网络转接点接收到传输中的分组时，该分组立即被转发到目标计算机。同时，传输中的数据包和其他数据由防病毒引擎扫描恶意软件。如果在传输中识别到恶意软件，则通知目标计算机该传输包含恶意软件。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式