专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2007109212A2 METHOD AND APPARATUS FOR MIGRATING A VIRTUAL TPM INSTANCE AND PRESERVING UNIQUENESS AND COMPLETENESS OF THE INSTANCE 审中-公开
标题翻译：用于移植虚拟TPM实例的方法和装置，并保持独特性和完整性
公开(公告)号：WO2007109212A2
公开(公告)日：2007-09-27
申请号：PCT/US2007/006773
申请日：2007-03-19
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION
发明人： BERGER, Stefan , GOLDMAN, Kenneth, A. , SAILER, Reiner
IPC分类号： H04L9/32
CPC分类号： G06F21/57 , H04L9/0825 , H04L9/3242 , H04L2209/127
摘要： A migration scheme for virtualized Trusted Platform Modules (430, 432, 434) is presented. The procedure is capable of securely migrating an instance of a virtual Trusted Platform Module from one physical platform (402) to another (404). A virtual Trusted Platform Module instance's state is downloaded from a source virtual Trusted Platform Module (432) and all its state information is encrypted using a hybrid of public and symmetric key cryptography (612). The encrypted state is transferred to the target physical platform (616), decrypted and the state of the virtual Trusted Platform Module instance is rebuilt (620).
摘要翻译：介绍了虚拟化可信平台模块（430,432,434）的迁移方案。该过程能够将虚拟可信平台模块的实例从一个物理平台（402）安全迁移到另一物理平台（404）。虚拟可信平台模块实例的状态从源虚拟可信平台模块（432）下载，并且所有状态信息都使用公共和对称密钥密码术（612）的混合进行加密。将加密的状态传送到目标物理平台（616），进行解密，并重建虚拟可信平台模块实例的状态（620）。

2. 发明申请

WO2013187989A1 METHOD AND APPARATUS FOR DETECTING UNAUTHORIZED BULK FORWARDING OF SENSITIVE DATA OVER A NETWORK 审中-公开
标题翻译：用于检测未经授权的大容量的用于检测敏感数据的网络的方法和装置
公开(公告)号：WO2013187989A1
公开(公告)日：2013-12-19
申请号：PCT/US2013/033255
申请日：2013-03-21
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION
发明人： CHRISTODORESCU, Mihai , RAO, Josyula, R. , SAILER, Reiner , SCHALES, Douglas, Lee
IPC分类号： G06Q10/00
CPC分类号： H04L51/32 , G06Q10/107 , H04L51/12
摘要： Methods and apparatus are provided for detecting unauthorized bulk forwarding of sensitive data over a network. A bulk forwarding of email from a first network environment is automatically detected by determining an arrival rate for internal emails received from within the first network environment into one or more user accounts; determining a sending rate for external emails sent from the one or more user accounts to a second network environment; and detecting the bulk forwarding of email from a given user account by comparing the arrival rate for internal emails and the sending rate for external emails. The bulk forwarding of email from a given user account can be detected by determining whether statistical models of the arrival rate for internal emails and of the sending rate for external emails are correlated in time.
摘要翻译：提供了用于检测通过网络的敏感数据的未授权批量转发的方法和装置。通过确定从第一网络环境中接收的内部电子邮件的到达率到一个或多个用户帐户，自动检测来自第一网络环境的电子邮件的批量转发; 确定从所述一个或多个用户帐户发送到第二网络环境的外部电子邮件的发送速率; 并通过比较内部电子邮件的到达率和外部电子邮件的发送速率来检测来自给定用户帐户的电子邮件的批量转发。通过确定内部电子邮件到达率的统计模型和外部电子邮件的发送速率是否及时相关，可以检测到来自给定用户帐户的电子邮件的批量转发。

3. 发明申请

WO2002093377A1 METHOD AND APPARATUS FOR SERVING CONTENT FROM A SEMI-TRUSTED SERVER 审中-公开
标题翻译：用于服务来自半导体服务器的内容的方法和装置
公开(公告)号：WO2002093377A1
公开(公告)日：2002-11-21
申请号：PCT/US2001/046648
申请日：2001-12-04
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION
发明人： GILES, James, Ryan , SAILER, Reiner , VERMA, Dinesh, Chandra
IPC分类号： G06F11/30
CPC分类号： H04L63/10 , G06F21/6218 , G06F2221/2119 , G06F2221/2151 , H04L67/02
摘要： This invention provides methods and apparatus for enabling access to restricted information contained at a semi-trusted web-server (100) also called a proxy server. The client (101), semi-trusted web-server (104), and origin web-server (103) are connected to a core network (102). Restricted information is information that is only available to a selected group of authorized clients (101). A client (101) desiring access to the restricted information authenticates itself with a trusted web-server (i.e. origin web-server) (103), and obtains a client credential. The client then contacts the semi-trusted web-server (100) with the credential and obtains access to the restricted content. The restricted information may be encrypted at the semi-trusted web-server (100), so that the restricted information is secure even if the semi-trusted web-server (100) is not completely secure. To shorten the length of time that the client (101) must wait for a response to requests and to lighten the load on the origin web-server (103), the semi-trusted web-server (100) may service the requests of the client (101). Generally, a semi-trusted web-server (100) is chosen to service the requests of a client (101) if the semi-trusted web-server (100) is less than the origin web-server (103).
摘要翻译：本发明提供了用于访问包含在也称为代理服务器的半信任web服务器（100）的限制信息的方法和装置。客户机（101），半可信网络服务器（104）和原始网络服务器（103）连接到核心网络（102）。限制的信息是仅对选定的一组授权客户机（101）可用的信息。希望访问受限制信息的客户端（101）通过可信任的网络服务器（即，起源web服务器）（103）对其自身进行认证，并且获得客户端凭证。客户端然后使用凭证与半信任的Web服务器（100）联系，并获得对受限内容的访问。受限信息可以在半信任Web服务器（100）处被加密，使得即使半信任web服务器（100）不是完全安全的，受限信息也是安全的。为了缩短客户端（101）必须等待对请求的响应并减轻原始Web服务器（103）上的负载的时间长度，则半信任web服务器（100）可以服务于客户端（101）。通常，如果半信任web服务器（100）小于原始web服务器（103），则选择半信任Web服务器（100）来服务客户端（101）的请求。

4. 发明申请

WO2014189575A1 DISTRIBUTED FEATURE COLLECTION AND CORRELATION ENGINE 审中-公开
标题翻译：分布式特征收集和相关发动机
公开(公告)号：WO2014189575A1
公开(公告)日：2014-11-27
申请号：PCT/US2014/017947
申请日：2014-02-24
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION
发明人： CHRISTODORESCU, Mihai , HU, Xin , SCHALES, Douglas, Lee , SAILER, Reiner , STOECKLIN, Marc, P. , WANG, Ting
IPC分类号： G06F7/20
CPC分类号： G06F17/30489 , G06F17/30477
摘要： A distributed feature collection and correlation engine is provided, Feature extraction comprises obtaining one or more data records; extracting information from the one or more data records based on domain knowledge; transforming the extracted information into a key/value pair comprised of a key K and a value V, wherein the key comprises a feature identifier; and storing the key/value pair in a feature store database if the key/value pair does not already exist in the feature store database using a de-duplication mechanism. Features extracted from data records can be queried by obtaining a feature store database comprised of the extracted features stored as a key/value pair comprised of a key K and a value V, wherein the key comprises a feature identifier; receiving a query comprised of at least one query key; retrieving values from the feature store database that match the query key; and returning one or more retrieved key/value pairs.
摘要翻译：提供分布式特征收集和相关引擎，特征提取包括获得一个或多个数据记录; 基于域知识从一个或多个数据记录中提取信息; 将提取的信息变换成由密钥K和值V组成的密钥/值对，其中密钥包括特征标识符; 并且如果密钥/值对在使用重复数据删除机制的特征库数据库中不存在，则将密钥/值对存储在特征存储数据库中。从数据记录提取的特征可以通过获得由存储为由密钥K和值V组成的密钥/值对的提取特征组成的特征存储数据库进行查询，其中密钥包括特征标识符; 接收包括至少一个查询密钥的查询; 从特征库数据库检索与查询关键字匹配的值; 并返回一个或多个检索的键/值对。

5. 发明申请

WO2007015723A2 METHOD AND APPARATUS FOR DELEGATING RESPONSES TO CONDITIONS IN COMPUTING SYSTEMS 审中-公开
标题翻译：用于在计算系统中响应条件的方法和设备
公开(公告)号：WO2007015723A2
公开(公告)日：2007-02-08
申请号：PCT/US2006/022855
申请日：2006-06-12
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , GILES, James Ryan , SAILER, Reiner
发明人： GILES, James Ryan , SAILER, Reiner
IPC分类号： G06F15/173
CPC分类号： H04L63/1441
摘要： One embodiment of the present method and apparatus for delegating responses to conditions in computing systems includes acknowledging (e.g., at a systems management component in the computing system) a condition, and delegating responsibility for a strategy for a response to the condition to another component. In further embodiments, the present method and apparatus for delegating responses to conditions in computing systems includes receiving (e.g., at a computing system component) an assignment from another computing system component (e.g., a systems management component), where the assignment assigns responsibility for a strategy for a response to a condition, and determining whether and how to respond to the condition.
摘要翻译：在计算系统中用于委托对条件的响应的本方法和设备的一个实施例包括：确认（例如，在计算系统中的系统管理组件处）条件，以及将策略的责任对另一个组件的状况作出响应。在进一步的实施例中，用于委托对计算系统中的条件的响应的本方法和装置包括接收（例如，在计算系统组件处）来自另一计算系统组件（例如，系统管理组件）的分配，一种对症状作出反应的策略，并确定是否以及如何回应病症。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式