-
公开(公告)号:US12045381B2
公开(公告)日:2024-07-23
申请号:US17359930
申请日:2021-06-28
发明人: Michael J. Weber
CPC分类号: G06F21/85 , G06F21/554 , G06F21/556 , G06F21/566
摘要: Techniques are provided for actively controlling a communications bus to mitigate threats, including cyber-attacks. A methodology implementing the techniques according to an embodiment includes detecting a threat in a message that is being transmitted between nodes on the communications bus. The message comprises one or more message frames and the threat detection is based on analysis of an initial portion of the message frame. The method further includes actively controlling the bus, based on the threat detection, to prevent the remaining portion of the message frame from delivering the threat to one or more of the nodes on the bus. Actively controlling the bus includes isolating nodes from the bus and/or overwriting data in the remaining portion of the message frame to invalidate the message frame or to remove the threat from the message frame.
-
公开(公告)号:US20180068121A1
公开(公告)日:2018-03-08
申请号:US15255452
申请日:2016-09-02
CPC分类号: G06F21/563 , G06F8/53 , G06F8/74 , G06F11/3636 , G06F2221/033
摘要: A Taint Modeling Function (TMF) finds abstract patterns and uses them to automate the malware detection process. TMF involves the process of statically analyzing a sequence of assembly language instructions and abstracting complex relationships among instruction inputs and outputs into a mathematical function containing a set of algebraic expressions. The set of expressions support fully automating semantic pattern detection in binary code. It deterministically generates outputs given inputs determining code block outputs, for given inputs, without executing the code. It detects code patterns automatically to spot bad coding patterns directly from the binary used to detect bugs statically in the entire application space.
-
公开(公告)号:US20220414274A1
公开(公告)日:2022-12-29
申请号:US17359930
申请日:2021-06-28
发明人: Michael J. Weber
摘要: Techniques are provided for actively controlling a communications bus to mitigate threats, including cyber-attacks. A methodology implementing the techniques according to an embodiment includes detecting a threat in a message that is being transmitted between nodes on the communications bus. The message comprises one or more message frames and the threat detection is based on analysis of an initial portion of the message frame. The method further includes actively controlling the bus, based on the threat detection, to prevent the remaining portion of the message frame from delivering the threat to one or more of the nodes on the bus. Actively controlling the bus includes isolating nodes from the bus and/or overwriting data in the remaining portion of the message frame to invalidate the message frame or to remove the threat from the message frame.
-
4.发明授权System and method to provide channel access synchronization without time-stamp exchange in time division multiple access (TDMA) multi-hop networks 有权在时分多址(TDMA)多跳网络中提供无时间戳交换的信道接入同步的系统和方法公开(公告)号:US09312977B1
公开(公告)日:2016-04-12
申请号:US14012421
申请日:2013-08-28
发明人: Phong C. Khuu , Brian D. Loop , Qui M. Le , Kevin M. McNeill , Michael J. Weber , Tim McNevin
CPC分类号: H04J3/1694 , H04W8/005 , H04W40/12 , H04W56/00 , H04W56/0075 , H04W84/18
摘要: The present invention relates to a system and method for providing channel access synchronization in a time division multiple access (TDMA) multi-hop network employing a plurality of time slots defined within a frame structure which repeats. The system and method includes nodes which have local clock variables. The local clock variables generate an expected arrival time of signals from other nodes in the network. Each node then determines whether the local clock variable needs adjusting after receiving a transmission and comparing the expected arrival time with the actual arrival time. Thus, time synchronization across the network is distributed and updated locally at each node. Networks may be merged by casting out nodes in one network and joining those cast out nodes with the other network. Newly joined nodes are thereafter time synchronized into their new network by comparing actual and expected arrival times and updating their clock accordingly.
摘要翻译: 本发明涉及一种在时分多址(TDMA)多跳网络中提供信道接入同步的系统和方法,该多时隙网络采用在重复的帧结构内定义的多个时隙。 该系统和方法包括具有本地时钟变量的节点。 本地时钟变量产生来自网络中其他节点的信号的预期到达时间。 然后,每个节点确定本地时钟变量在接收到传输后是否需要调整,并将预期到达时间与实际到达时间进行比较。 因此,跨网络的时间同步在每个节点处本地分布和更新。 网络可以通过在一个网络中投射出节点并将这些节点与另一个网络连接来合并。 通过比较实际和预期到达时间并相应地更新它们的时钟,新加入的节点随后将其时间同步到其新网络中。
-
公开(公告)号:US11973769B1
公开(公告)日:2024-04-30
申请号:US17111662
申请日:2020-12-04
发明人: Vu T. Le , Elena E. Novikova , Matvey Yutin , Michael J. Weber
IPC分类号: H04L9/40
CPC分类号: H04L63/1416 , H04L63/1408 , H04L63/1425 , H04L63/1466
摘要: An anomaly detection system is disclosed. In an embodiment, the anomaly detection system includes an anomaly detection module and a warning indicator module. The anomaly detection module includes one or more auto-encoders that receive sensor data from a plurality of sensors. Each of the one or more auto-encoders receives sensor data from at least three different sensors of the plurality of sensors. By receiving data output from at least three of the sensors, the auto-encoder can recognize expected inter-related patterns from the sensor output. The warning indicator module compares an output of a given auto-encoder of the plurality of auto-encoders to an input of the given auto-encoder to obtain an error value, and then compares that error value against an error threshold. In response to the error value exceeding the error threshold, the warning indicator module issues a warning signal associated with the sensor data received by the given auto-encoder.
-
-
-
-
搜索结果
5 条记录 (耗时 0.023 秒)
