公开(公告)号：US20150161383A1

公开(公告)日：2015-06-11

申请号：US14621550

申请日：2015-02-13

Applicant: Google Inc.

Inventor： J. Bradley Chen ,  Matthew T. Harren ,  Matthew Papakipos ,  David C. Sehr ,  Bennet S. Yee ,  Gregory Dardyk

IPC: G06F21/53

CPC classification number: G06F21/51 ,  G06F9/30174 ,  G06F9/44589 ,  G06F21/53 ,  G06F21/57 ,  G06F2221/033 ,  G06F2221/2113 ,  G06F2221/2119 ,  H04L29/06884

Abstract: A system that safely executes a native code module on a computing device. During operation, the system receives the native code module, which is comprised of untrusted native program code expressed using native instructions in the instruction set architecture associated with the computing device. The system then loads the native code module into a secure runtime environment, and proceeds to execute a set of instructions from the native code module in the secure runtime environment. The secure runtime environment enforces code integrity, control flow integrity, and data integrity for the native code module. Furthermore, the secure runtime environment moderates which resources can be accessed by the native code module on the computing device and/or how these resources can be accessed. By executing the native code module in the secure runtime environment, the system facilitates achieving native code performance for untrusted program code without a significant risk of unwanted side effects.

Abstract translation: 一种在计算设备上安全执行本机代码模块的系统。 在操作期间，系统接收本地代码模块，其由使用与计算设备相关联的指令集架构中的本地指令表示的不可信的本机程序代码组成。 然后，系统将本机代码模块加载到安全运行时环境中，并继续在安全运行时环境中从本机代码模块执行一组指令。 安全运行时环境强制本机代码模块的代码完整性，控制流完整性和数据完整性。 此外，安全运行时环境调节哪些资源可以由计算设备上的本地代码模块访问和/或如何访问这些资源。 通过在安全运行时环境中执行本地代码模块，系统便于实现不可信程序代码的本地代码性能，而不会产生不必要的副作用的重大风险。

公开(公告)号：US09043870B1

公开(公告)日：2015-05-26

申请号：US13649299

申请日：2012-10-11

Applicant: Google Inc.

Inventor： Tzvi Itzhak Barenholz ,  Ilan Caron ,  Gregory Dardyk ,  Ari Leichtberg ,  Mor Miller ,  David Oren ,  Eric Sachs ,  Yaniv Shuba

IPC: H04L29/06 ,  G06F21/31 ,  G06F21/30 ,  H04W12/06

CPC classification number: H04L63/10 ,  G06F21/31 ,  H04L63/0815

Abstract: An automated system for signing up users invited to join a site based on their existing identity includes an invitation generator, an invite processor, a federated authentication module, a user information retrieval module, an account population and creation module, and a user interface module. The automated sign up module is responsive to an invite request. The automated sign up module sends an authorization request, receives the authorization response, verifies the response and retrieves user data. The automated sign up module uses the retrieved data to populate a sign up form and initialize an account. The automated sign up module sends new account information to a user for confirmation. Once confirmation has been received, the automated sign up module creates the new account and allows the user to access the system. The present disclosure includes a method for signing up users invited to join a site based on their existing identity.

Abstract translation: 用于根据其现有身份申请加入站点的用户的自动登记系统包括邀请生成器，邀请处理器，联合认证模块，用户信息检索模块，帐号和创建模块以及用户界面模块。 自动注册模块响应于邀请请求。 自动注册模块发送授权请求，接收授权响应，验证响应并检索用户数据。 自动注册模块使用检索到的数据填充注册表单并初始化帐户。 自动注册模块向用户发送新的帐户信息以进行确认。 一旦收到确认，自动注册模块将创建新帐户，并允许用户访问系统。 本公开包括用于根据其现有身份来注册被邀请加入站点的用户的方法。

公开(公告)号：US09536079B2

公开(公告)日：2017-01-03

申请号：US14621550

申请日：2015-02-13

Applicant: Google Inc.

Inventor： J. Bradley Chen ,  Matthew T. Harren ,  Matthew Papakipos ,  David C. Sehr ,  Bennet S. Yee ,  Gregory Dardyk

IPC: G06F21/51 ,  G06F9/445 ,  H04L29/06 ,  G06F9/30 ,  G06F21/53 ,  G06F21/57

CPC classification number: G06F21/51 ,  G06F9/30174 ,  G06F9/44589 ,  G06F21/53 ,  G06F21/57 ,  G06F2221/033 ,  G06F2221/2113 ,  G06F2221/2119 ,  H04L29/06884

Abstract: A system that safely executes a native code module on a computing device. During operation, the system receives the native code module, which is comprised of untrusted native program code expressed using native instructions in the instruction set architecture associated with the computing device. The system then loads the native code module into a secure runtime environment, and proceeds to execute a set of instructions from the native code module in the secure runtime environment. The secure runtime environment enforces code integrity, control flow integrity, and data integrity for the native code module. Furthermore, the secure runtime environment moderates which resources can be accessed by the native code module on the computing device and/or how these resources can be accessed. By executing the native code module in the secure runtime environment, the system facilitates achieving native code performance for untrusted program code without a significant risk of unwanted side effects.

Abstract translation: 一种在计算设备上安全执行本机代码模块的系统。 在操作期间，系统接收本地代码模块，其由使用与计算设备相关联的指令集架构中的本地指令表示的不可信的本机程序代码组成。 然后，系统将本机代码模块加载到安全运行时环境中，并继续在安全运行时环境中从本机代码模块执行一组指令。 安全运行时环境强制本机代码模块的代码完整性，控制流完整性和数据完整性。 此外，安全运行时环境调节哪些资源可以由计算设备上的本地代码模块访问和/或如何访问这些资源。 通过在安全运行时环境中执行本地代码模块，系统便于实现不可信程序代码的本地代码性能，而不会产生不必要的副作用的重大风险。

公开(公告)号：US08959632B2

公开(公告)日：2015-02-17

申请号：US13787616

申请日：2013-03-06

Applicant: Google Inc.

Inventor： J. Bradley Chen ,  Matthew T. Harren ,  Matthew Papakipos ,  David C. Sehr ,  Bennet S. Yee ,  Gregory Dardyk

IPC: G06F21/00 ,  G06F9/445 ,  H04L29/06 ,  G06F9/30 ,  G06F21/53 ,  G06F21/57

CPC classification number: G06F21/51 ,  G06F9/30174 ,  G06F9/44589 ,  G06F21/53 ,  G06F21/57 ,  G06F2221/033 ,  G06F2221/2113 ,  G06F2221/2119 ,  H04L29/06884

Abstract: A system that safely executes a native code module on a computing device. During operation, the system receives the native code module, which is comprised of untrusted native program code expressed using native instructions in the instruction set architecture associated with the computing device. The system then loads the native code module into a secure runtime environment, and proceeds to execute a set of instructions from the native code module in the secure runtime environment. The secure runtime environment enforces code integrity, control flow integrity, and data integrity for the native code module. Furthermore, the secure runtime environment moderates which resources can be accessed by the native code module on the computing device and/or how these resources can be accessed. By executing the native code module in the secure runtime environment, the system facilitates achieving native code performance for untrusted program code without a significant risk of unwanted side effects.

Abstract translation: 一种在计算设备上安全执行本机代码模块的系统。 在操作期间，系统接收本地代码模块，其由使用与计算设备相关联的指令集架构中的本地指令表示的不可信的本机程序代码组成。 然后，系统将本机代码模块加载到安全运行时环境中，并继续在安全运行时环境中从本机代码模块执行一组指令。 安全运行时环境强制本机代码模块的代码完整性，控制流完整性和数据完整性。 此外，安全运行时环境调节哪些资源可以由计算设备上的本地代码模块访问和/或如何访问这些资源。 通过在安全运行时环境中执行本地代码模块，系统便于实现不可信程序代码的本地代码性能，而不会产生不必要的副作用的重大风险。

公开(公告)号：US20140095614A1

公开(公告)日：2014-04-03

申请号：US14024423

申请日：2013-09-11

Applicant: Google Inc.

Inventor： Sara Lee Su ,  Gregory Dardyk ,  Michael Brandt ,  Jonathan Mcphie ,  Umesh Shankar ,  Marlo James McGriff, II ,  Jose Javier Zuniga, JR. ,  Mor Miller ,  Travis Harrison Kroll Green ,  Tomer Amarilio ,  Brandon Kyle Trew ,  Hristo Stefanov Stefanov ,  Christoph Urs Oehler ,  Dan Fredinburg ,  Andrew Swerdlow ,  Etienne Deguine ,  Giora Unger ,  Max Michiel Loubser ,  Kyle Garner Harrison ,  Lars Fabian Kruger ,  Peter Tomlinson Klein ,  Si-Wai Yan Lai ,  Joseph Adam Taylor ,  Alison Michelle Huml ,  Tilke Mary Judd ,  Bao Lam ,  Geva Rechav ,  Mark Russell Thomas ,  Lauren A. Schmidt

IPC: H04L29/08

CPC classification number: H04L67/306 ,  G06Q50/02 ,  H04L67/02 ,  H04L67/22

Abstract: A method includes gathering a plurality of instances of online activity associated with a user, analyzing the plurality of instances of online activity to determine a characteristic that is likely to correspond to a profile attribute of the user and generating a profile enrichment suggestion for the user based on the determined characteristic.

Abstract translation: 一种方法包括收集与用户相关联的多个在线活动实例，分析在线活动的多个实例以确定可能对应于用户的简档属性并且为用户生成简档丰富建议的特征 关于确定的特点。

公开(公告)号：US09300756B2

公开(公告)日：2016-03-29

申请号：US14024423

申请日：2013-09-11

Applicant: Google Inc.

Inventor： Sara Lee Su ,  Gregory Dardyk ,  Michael Brandt ,  Jonathan McPhie ,  Umesh Shankar ,  Marlo James McGriff, II ,  Jose Javier Zuniga, Jr. ,  Mor Miller ,  Travis Harrison Kroll Green ,  Tomer Amarilio ,  Brandon Kyle Trew ,  Hristo Stefanov Stefanov ,  Christoph Urs Oehler ,  Dan Fredinburg ,  Andrew Swerdlow ,  Etienne DeGuine ,  Giora Unger ,  Max Michiel Loubser ,  Kyle Garner Harrison ,  Lars Fabian Kruger ,  Peter Tomlinson Klein ,  Si-Wai Yan Lai ,  Joseph Adam Taylor ,  Alison Michelle Huml ,  Tilke Mary Judd ,  Bao Lam ,  Geva Rechav ,  Mark Russell Thomas ,  Lauren A. Schmidt

IPC: G06F15/16 ,  H04L29/08 ,  G06Q50/02

CPC classification number: H04L67/306 ,  G06Q50/02 ,  H04L67/02 ,  H04L67/22

Abstract: A method includes gathering a plurality of instances of online activity associated with a user, analyzing the plurality of instances of online activity to determine a characteristic that is likely to correspond to a profile attribute of the user and generating a profile enrichment suggestion for the user based on the determined characteristic.

Abstract translation: 一种方法包括收集与用户相关联的多个在线活动实例，分析在线活动的多个实例以确定可能对应于用户的简档属性并且为用户生成简档丰富建议的特征 关于确定的特点。