公开(公告)号：US09143517B2

公开(公告)日：2015-09-22

申请号：US13754951

申请日：2013-01-31

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： William G. Horne ,  Daniel L. Moor ,  Richard D. Austin ,  Tomas Sander ,  Prasad V. Rao ,  Sandeep N. Bhatt

IPC: H04L29/06 ,  G06F21/62

CPC classification number: H04L63/14 ,  G06F21/6245 ,  G06F21/6254

Abstract: Threat exchange information protection can include receiving security information from a number of participants of a threat exchange community, wherein a portion of the received security information is encoded with pseudonyms by each of the number of participants, analyzing the security information collectively from the number of participants, wherein the portion of the received security information remains encoded, and sending analysis results to each of the number of participants, wherein the analysis results include information relating to the portion.

Abstract translation: 威胁交换信息保护可以包括从威胁交换社区的多个参与者接收安全信息，其中所接收的安全信息的一部分由参与者数目中的每一个用假名编码，从参与者人数中集体分析安全信息 其中所接收的安全信息的所述部分保持编码，并且将分析结果发送给所述多个参与者，其中所述分析结果包括与所述部分有关的信息。

公开(公告)号：US09275348B2

公开(公告)日：2016-03-01

申请号：US13754974

申请日：2013-01-31

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Sandeep N. Bhatt ,  William G. Horne ,  Daniel L. Moor ,  Suranjan Pramanik ,  Tomas Sander

IPC: G06Q10/00 ,  H04L29/06

CPC classification number: G06Q10/00 ,  H04L63/1408 ,  H04L63/20

Abstract: Identifying participants for collaboration in a threat exchange community can include receiving security data from a plurality of participants at a threat exchange server within the threat exchange community; and in response to receiving from a first participant from the plurality of participants security data associated with a security occurrence, identifying at the threat exchange server the first participant and a second participant from the plurality of participants for collaboration based on characteristics of the first participant and the second participant.

Abstract translation: 识别在威胁交换社区中协作的参与者可以包括从威胁交换社区内的威胁交换服务器处接收多个参与者的安全数据; 并且响应于来自所述多个参与者的与所述安全事件相关联的第一参与者的接收，基于所述第一参与者的特征，在所述威胁交换服务器处识别来自所述多个参与者的所述第一参与者和第二参与者进行协作， 第二名参赛者。

公开(公告)号：US20140215607A1

公开(公告)日：2014-07-31

申请号：US13754951

申请日：2013-01-31

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： William G. Horne ,  Daniel L. Moor ,  Richard D. Austin ,  Tomas Sander ,  Prasad V. Rao ,  Sandeep N. Bhatt

IPC: H04L29/06

CPC classification number: H04L63/14 ,  G06F21/6245 ,  G06F21/6254

Abstract: Threat exchange information protection can include receiving security information from a number of participants of a threat exchange community, wherein a portion of the received security information is encoded with pseudonyms by each of the number of participants, analyzing the security information collectively from the number of participants, wherein the portion of the received security information remains encoded, and sending analysis results to each of the number of participants, wherein the analysis results include information relating to the portion.

Abstract translation: 威胁交换信息保护可以包括从威胁交换社区的多个参与者接收安全信息，其中所接收的安全信息的一部分由参与者数目中的每一个用假名编码，从参与者人数中集体分析安全信息 其中所接收的安全信息的所述部分保持编码，并且将分析结果发送给所述多个参与者，其中所述分析结果包括与所述部分有关的信息。

公开(公告)号：US20140215616A1

公开(公告)日：2014-07-31

申请号：US13755007

申请日：2013-01-31

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Sandeep N. Bhatt ,  Tomas Sander ,  Anurag Singla

IPC: G06F21/55

CPC classification number: H04L63/1441 ,  G06F21/554 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/1466

Abstract: Systems, methods, and machine-readable and executable instructions are provided for attack notification. Attack notification can include receiving security-related data from a number of computing devices that are associated with a number of entities through a communication link and analyzing a first portion of the security-related data that is associated with a first entity from the number of entities to determine whether the first entity has experienced an attack. Attack notification can include analyzing a second portion of the security-related data that is associated with a second entity from the number of entities and the first portion of the security-related data that is associated with the first entity to determine whether the second entity is experiencing the attack. Attack notification can include notifying, through the communication link, the second entity that the second entity is experiencing the attack if it is determined that the second entity is experiencing the attack.

Abstract translation: 提供系统，方法和机器可读和可执行指令用于攻击通知。 攻击通知可以包括通过通信链路从多个计算设备接收与多个实体相关联的安全相关数据，并从实体数目分析与第一实体相关联的安全相关数据的第一部分 以确定第一实体是否经历了攻击。 攻击通知可以包括从实体的数量和与第一实体相关联的安全相关数据的第一部分分析与第二实体相关联的安全相关数据的第二部分，以确定第二实体是否是 遇到攻击 攻击通知可以包括通过通信链路通知第二实体正在经历攻击的第二实体，如果确定第二实体正在经历攻击。

公开(公告)号：US20140214938A1

公开(公告)日：2014-07-31

申请号：US13754974

申请日：2013-01-31

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Sandeep N. Bhatt ,  William G. Horne ,  Daniel I. Moor ,  Suranjan Pramanik ,  Tomas Sander

IPC: H04L29/06

CPC classification number: G06Q10/00 ,  H04L63/1408 ,  H04L63/20

Abstract: Identifying participants for collaboration in a threat exchange community can include receiving security data from a plurality of participants at a threat exchange server within the threat exchange community; and in response to receiving from a first participant from the plurality of participants security data associated with a security occurrence, identifying at the threat exchange server the first participant and a second participant from the plurality of participants for collaboration based on characteristics of the first participant and the second participant.

Abstract translation: 识别在威胁交换社区中协作的参与者可以包括从威胁交换社区内的威胁交换服务器处接收多个参与者的安全数据; 并且响应于来自所述多个参与者的与所述安全事件相关联的第一参与者的接收，基于所述第一参与者的特征，在所述威胁交换服务器处识别来自所述多个参与者的所述第一参与者和第二参与者进行协作， 第二名参赛者。

公开(公告)号：US09456001B2

公开(公告)日：2016-09-27

申请号：US13755007

申请日：2013-01-31

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Sandeep N. Bhatt ,  Tomas Sander ,  Anurag Singla

IPC: H04L29/06 ,  G06F21/55

CPC classification number: H04L63/1441 ,  G06F21/554 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/1466

Abstract: Systems, methods, and machine-readable and executable instructions are provided for attack notification. Attack notification can include receiving security-related data from a number of computing devices that are associated with a number of entities through a communication link and analyzing a first portion of the security-related data that is associated with a first entity from the number of entities to determine whether the first entity has experienced an attack. Attack notification can include analyzing a second portion of the security-related data that is associated with a second entity from the number of entities and the first portion of the security-related data that is associated with the first entity to determine whether the second entity is experiencing the attack. Attack notification can include notifying, through the communication link, the second entity that the second entity is experiencing the attack if it is determined that the second entity is experiencing the attack.

Abstract translation: 提供系统，方法和机器可读和可执行指令用于攻击通知。 攻击通知可以包括通过通信链路从多个计算设备接收与多个实体相关联的安全相关数据，并从实体数目分析与第一实体相关联的安全相关数据的第一部分 以确定第一实体是否经历了攻击。 攻击通知可以包括从实体的数量和与第一实体相关联的安全相关数据的第一部分分析与第二实体相关联的安全相关数据的第二部分，以确定第二实体是否是 遇到攻击 攻击通知可以包括通过通信链路通知如果确定第二实体正在经历攻击，则第二实体正在经历攻击的第二实体。