公开(公告)号：US20160315974A1

公开(公告)日：2016-10-27

申请号：US15051130

申请日：2016-02-23

Applicant: Intel Corporation

Inventor： Tarun Viswanathan ,  Uri Kahana ,  Alan D. Ross ,  Eran Birk

IPC: H04L29/06

CPC classification number: H04L63/205 ,  H04L63/08 ,  H04L63/105

Abstract: Technologies for providing policy-based secure containers for multiple enterprise applications include a client computing device and an enterprise policy server. The client computing device sends device attribute information and a request for access to an enterprise application to the enterprise policy server. The enterprise policy server determines a device trust level based on the device attribute information and a data sensitivity level based on the enterprise application, and sends a security policy to the client computing device based on the device trust level and the data sensitivity level. The client computing device references or creates a secure container for the security policy, adds the enterprise application to the secure container, and enforces the security policy while executing the enterprise application in the secure container. Multiple enterprise applications may be added to each secure container. Other embodiments are described and claimed.

Abstract translation: 为多个企业应用程序提供基于策略的安全容器的技术包括客户端计算设备和企业策略服务器。 客户端计算设备向企业策略服务器发送设备属性信息和企业应用访问请求。 企业策略服务器根据设备属性信息和基于企业应用的数据敏感性级别来确定设备信任级别，并根据设备信任级别和数据敏感级别向客户端计算设备发送安全策略。 客户端计算设备引用或创建用于安全策略的安全容器，将企业应用程序添加到安全容器，并在安全容器中执行企业应用程序时实施安全策略。 可以向每个安全容器添加多个企业应用程序。 描述和要求保护其他实施例。

公开(公告)号：US09836614B2

公开(公告)日：2017-12-05

申请号：US14508519

申请日：2014-10-07

Applicant: Intel Corporation

Inventor： Hong Li ,  Tobias M. Kohlenberg ,  Rita H. Wouhaybi ,  Alan D. Ross

IPC: G06F21/62

CPC classification number: G06F21/62 ,  G06F21/6263

Abstract: Systems and methods may provide for receiving web content and detecting an access control attribute associated with the web content. Additionally, the access control attribute may be monitored for a disablement condition. In one example, the disablement condition may be detected, an access policy may be determined in response to the disablement condition, and the access policy may be implemented. Other embodiments are described and claimed.

公开(公告)号：US10511638B2

公开(公告)日：2019-12-17

申请号：US16168273

申请日：2018-10-23

Applicant: Intel Corporation

Inventor： Tarun Viswanathan ,  Uri Kahana ,  Alan D. Ross ,  Eran Birk

IPC: H04L29/06

Abstract: Technologies for providing policy-based secure containers for multiple enterprise applications include a client computing device and an enterprise policy server. The client computing device sends device attribute information and a request for access to an enterprise application to the enterprise policy server. The enterprise policy server determines a device trust level based on the device attribute information and a data sensitivity level based on the enterprise application, and sends a security policy to the client computing device based on the device trust level and the data sensitivity level. The client computing device references or creates a secure container for the security policy, adds the enterprise application to the secure container, and enforces the security policy while executing the enterprise application in the secure container. Multiple enterprise applications may be added to each secure container. Other embodiments are described and claimed.

公开(公告)号：US20190058737A1

公开(公告)日：2019-02-21

申请号：US16168273

申请日：2018-10-23

Applicant: Intel Corporation

Inventor： Tarun Viswanathan ,  Uri Kahana ,  Alan D. Ross ,  Eran Birk

IPC: H04L29/06

CPC classification number: H04L63/205 ,  H04L63/08 ,  H04L63/105

Abstract: Technologies for providing policy-based secure containers for multiple enterprise applications include a client computing device and an enterprise policy server. The client computing device sends device attribute information and a request for access to an enterprise application to the enterprise policy server. The enterprise policy server determines a device trust level based on the device attribute information and a data sensitivity level based on the enterprise application, and sends a security policy to the client computing device based on the device trust level and the data sensitivity level. The client computing device references or creates a secure container for the security policy, adds the enterprise application to the secure container, and enforces the security policy while executing the enterprise application in the secure container. Multiple enterprise applications may be added to each secure container. Other embodiments are described and claimed.

公开(公告)号：US10162842B2

公开(公告)日：2018-12-25

申请号：US14593907

申请日：2015-01-09

Applicant: Intel Corporation

Inventor： Alan D. Ross ,  Grant Babb

IPC: G06F17/30

Abstract: Apparatuses, methods and storage medium associated with processing data are disclosed herewith. In embodiments, an apparatus may include a data pre-processor to partition a collection of scalar data associated with unidirectional relationships of a plurality of two endpoint pairs into a plurality of workloads of directional data associated with the plurality of two endpoint pairs. In embodiment, the partition operation may include partition of the two endpoint pairs into a plurality of bins, where each bin includes a plurality of quantiles of the two endpoint pairs. Other embodiments may be described and/or claimed.

公开(公告)号：US10122766B2

公开(公告)日：2018-11-06

申请号：US15051130

申请日：2016-02-23

Applicant: Intel Corporation

Inventor： Tarun Viswanathan ,  Uri Kahana ,  Alan D. Ross ,  Eran Birk

IPC: H04L29/06

Abstract: Technologies for providing policy-based secure containers for multiple enterprise applications include a client computing device and an enterprise policy server. The client computing device sends device attribute information and a request for access to an enterprise application to the enterprise policy server. The enterprise policy server determines a device trust level based on the device attribute information and a data sensitivity level based on the enterprise application, and sends a security policy to the client computing device based on the device trust level and the data sensitivity level. The client computing device references or creates a secure container for the security policy, adds the enterprise application to the secure container, and enforces the security policy while executing the enterprise application in the secure container. Multiple enterprise applications may be added to each secure container. Other embodiments are described and claimed.

公开(公告)号：US20160226906A1

公开(公告)日：2016-08-04

申请号：US14968178

申请日：2015-12-14

Applicant: Intel Corporation

Inventor： Hong Li ,  Alan D. Ross ,  Rita H. Wouhaybi ,  Tobias M. Kohlenberg

IPC: H04L29/06

CPC classification number: H04L63/1433 ,  G06F21/51 ,  H04L67/02

Abstract: Systems and methods may provide for detecting a browser request for web content. Additionally, interaction information associated with a plurality of sources may be determined in response to the browser request, and a risk profile may be generated based on the interaction. The risk profile may include at least a portion of the interaction information as well as recommended control actions to mitigate the identified risk. In one example, the risk profile is presented to a user associated with the browser request as well as to a security control module associated with the platform.

Abstract translation: 系统和方法可以提供用于检测对web内容的浏览器请求。 此外，可以响应于浏览器请求来确定与多个源相关联的交互信息，并且可以基于交互来生成风险简档。 风险简档可以包括交互信息的至少一部分以及推荐的控制动作以减轻所识别的风险。 在一个示例中，将风险简档呈现给与浏览器请求相关联的用户以及与该平台相关联的安全控制模块。

公开(公告)号：US10609053B2

公开(公告)日：2020-03-31

申请号：US15085730

申请日：2016-03-30

Applicant: INTEL CORPORATION

Inventor： Michael R. Alton ,  Grant Babb ,  Alan D. Ross

IPC: H04L29/06 ,  G06N20/00 ,  G06N7/00

Abstract: Apparatuses, methods and storage medium associated with techniques to identify suspicious network connections. In embodiments, an apparatus may include an analysis function to be operated by the one or more processors to receive a collection of network data records, and apply a latent factor model to the network data records to identify a subset of the network data records as suspicious network connections. Other embodiments may be disclosed or claimed.

公开(公告)号：US09426274B2

公开(公告)日：2016-08-23

申请号：US13629119

申请日：2012-09-27

Applicant: Intel Corporation

Inventor： Dennis M. Morgan ,  Alan D. Ross

IPC: B60R16/037 ,  H04M1/725

CPC classification number: H04M1/72533 ,  B60R16/037 ,  G08C17/02 ,  G08C2201/93

Abstract: A device, method, and system for portable configuration of vehicle controls includes a mobile communication device configured to communicate with an in-vehicle computing system of a vehicle. The mobile communication device stores user vehicle configuration settings, which are selectively transmitted to the in-vehicle computing system to cause the in-vehicle computing system to adjust vehicle controls based on the user vehicle configuration settings.

Abstract translation: 用于车辆控制的便携式配置的装置，方法和系统包括被配置为与车辆的车载计算系统通信的移动通信装置。 移动通信装置存储用户车辆配置设置，其被选择性地发送到车载计算系统，以使车载计算系统基于用户车辆配置设置来调整车辆控制。

公开(公告)号：US09213827B2

公开(公告)日：2015-12-15

申请号：US13628219

申请日：2012-09-27

Applicant: Intel Corporation

Inventor： Hong Li ,  Alan D. Ross ,  Rita H. Wouhaybi ,  Tobias M. Kohlenberg

IPC: G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00 ,  G06F21/51

CPC classification number: H04L63/1433 ,  G06F21/51 ,  H04L67/02

Abstract: Systems and methods may provide for detecting a browser request for web content. Additionally, interaction information associated with a plurality of sources may be determined in response to the browser request, and a risk profile may be generated based on the interaction. The risk profile may include at least a portion of the interaction information as well as recommended control actions to mitigate the identified risk. In one example, the risk profile is presented to a user associated with the browser request as well as to a security control module associated with the platform.

Abstract translation: 系统和方法可以提供用于检测对web内容的浏览器请求。 此外，可以响应于浏览器请求来确定与多个源相关联的交互信息，并且可以基于交互来生成风险简档。 风险简档可以包括交互信息的至少一部分以及推荐的控制动作以减轻所识别的风险。 在一个示例中，将风险简档呈现给与浏览器请求相关联的用户以及与该平台相关联的安全控制模块。