公开(公告)号：US20170161120A1

公开(公告)日：2017-06-08

申请号：US15327563

申请日：2015-07-17

Applicant: NEC Corporation

Inventor： Takayuki SASAKI ,  Takeo HAYASHI ,  Kentaro SONODA ,  Yoichi HATANO ,  Toshiki WATANABE

IPC: G06F9/54

CPC classification number: G06F9/541 ,  G06F9/468 ,  G06F21/629

Abstract: This invention provides an information processing system for controlling, in the management of network resources, with a desired accuracy and at a lower cost, whether to perform operations for the network resources. The information processing system comprises a means that performs a determination as to whether to execute an Application Programming (API) called up by an operating subject and used for controlling the network resources, said determination being performed on the basis of a correspondence among the operating subject, a tenant that is a set consisting of the network resources for which the operating subject has been permitted to perform operations, and the API for which the execution by the operating subject has been permitted. This means then controls the execution of the API on the basis of a result of the determination.

公开(公告)号：US20240031412A1

公开(公告)日：2024-01-25

申请号：US18038959

申请日：2020-12-03

Applicant: NEC Corporation

Inventor： Kentaro SONODA

IPC: H04L9/40

CPC classification number: H04L63/20 ,  H04L63/126

Abstract: In order to appropriately ensure authenticity of a security inspection execution terminal and provide an environment for executing security inspection, even when address information of the security inspection execution terminal is changed, an address management apparatus includes: an obtaining unit configured to obtain address information related to one or more security inspection execution terminals accessing a security inspection target system for security inspection; and a disclosure processing unit configured to disclose, in response to a request from a network node managing the security inspection target system, to the network node, address information related to the one or more security inspection execution terminals.

公开(公告)号：US20200050757A1

公开(公告)日：2020-02-13

申请号：US16656735

申请日：2019-10-18

Applicant: NEC Corporation

Inventor： Kentaro SONODA ,  Kayato SEKIYA

IPC: G06F21/55 ,  G08B23/00 ,  G07C9/00

Abstract: Action instruction information includes action procedure information. The action procedure information defines an action procedure of a person including a plurality of action steps. Log information is information with respect to access to an object to be monitored and is acquired from a security apparatus for monitoring the object to be monitored. An action trace unit traces advance of the action step in the action procedure based on the action instruction information and the log information. A trace display unit associates the advance of the action step with access to the security apparatus based on the log information and the advance of the action step traced by the action trace unit and displays them on a display device.

公开(公告)号：US20180191614A1

公开(公告)日：2018-07-05

申请号：US15909087

申请日：2018-03-01

Applicant: NEC Corporation

Inventor： Kentaro SONODA ,  Hideyuki SHIMONISHI ,  Toshio KOIDE ,  Yoichi HATANO ,  Masayuki NAKAE ,  Masaya YAMAGATA ,  Yoichiro MORITA ,  Takayuki SASAKI ,  Yuki ASHINO ,  Takeo OHNO

IPC: H04L12/741 ,  H04L12/721 ,  H04L12/717 ,  G06F9/455 ,  H04L12/751 ,  H04L12/24

CPC classification number: H04L45/74 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L41/04 ,  H04L45/02 ,  H04L45/42 ,  H04L45/70

Abstract: A communication system includes a communication apparatus configured to process a packet, and a controller configured to set the communication apparatus for processing a packet. The controller includes a memory storing instructions, and a processor configured to execute program instructions to determine a forwarding path for a packet addressed to a virtual machine based on an access rule indicating connectivity between virtual machines in accordance with an arrangement of the virtual machine, and set the communication apparatus for processing the packet.

公开(公告)号：US20220414248A1

公开(公告)日：2022-12-29

申请号：US17781116

申请日：2019-12-20

Applicant: NEC Corporation

Inventor： Kentaro SONODA

IPC: G06F21/62

Abstract: In order to efficiently perform security inspection, an inspection support apparatus includes a reception processing section configured to receive information related to a plurality of activity histories for security inspections performed by a plurality of inspection apparatuses, a specifying section configured to specify a conforming activity history meeting a predetermined correlation condition, from the plurality of activity histories, and a generating section configured to generate information related to the conforming activity history.

公开(公告)号：US20180131754A1

公开(公告)日：2018-05-10

申请号：US15860712

申请日：2018-01-03

Applicant: NEC Corporation

Inventor： Yoichi HATANO ,  Hideyuki SHIMONISHI ,  Kentaro SONODA ,  Masayuki NAKAE ,  Masaya YAMAGATA ,  Yoichiro MORITA ,  Takayuki SASAKI ,  Takeo OHNO

IPC: H04L29/08 ,  H04L29/14 ,  H04L12/24

CPC classification number: H04L67/10 ,  H04L41/12 ,  H04L41/22 ,  H04L69/40

Abstract: A visualization device is communicable with one or a plurality of host servers for hosting a virtual system, and includes an information acquisition unit for collecting configuration information on the virtual system and the host server, a storage unit for storing the configuration information therein, and a drawing unit for expressing a virtual machine and a virtual network configuring the virtual system with different axes based on the configuration information stored in the storage unit, expressing a connection relationship between a virtual machine and a virtual network by linking the lines extending from the respective axes, and grouping virtual machines in units of server on which the virtual machines operate thereby to generate drawing information for expressing the configuration of the virtual system and the host server.

公开(公告)号：US20160182510A1

公开(公告)日：2016-06-23

申请号：US14905687

申请日：2014-07-16

Applicant: NEC CORPORATION

Inventor： Kentaro SONODA ,  Hideyuki SHIMONISHI ,  Yoichi HATANO ,  Takayuki SASAKI

IPC: H04L29/06 ,  H04L12/24

CPC classification number: H04L63/0876 ,  H04L41/0893

Abstract: A apparatus management system includes: a forwarding node(s) that supplies identification information that uniquely identifies an individual terminal to a terminal management apparatus that manages the identification information; and the terminal management apparatus that discloses the identification information about a terminal to a corresponding user, requests the user to register himself/herself as a user of the terminal from a second terminal different from the terminal, and holds associates the terminal in association with the user.

Abstract translation: 一种装置管理系统，包括：向管理该识别信息的终端管理装置提供唯一地识别各个终端的识别信息的转发节点; 以及将终端的识别信息公开给对应的用户的终端管理装置，请求用户从与终端不同的第二终端自己注册为终端的用户，并且保持与终端相关联 用户。

公开(公告)号：US20230134937A1

公开(公告)日：2023-05-04

申请号：US17918157

申请日：2020-04-24

Applicant: NEC Corporation

Inventor： Kentaro SONODA

IPC: G06F21/57

Abstract: In order to appropriately detect flaws in a structure related to security of a system related to at least one of software and hardware, a security inspection apparatus includes an obtaining unit that obtains one or more pieces of configuration information related to configuration of a system to be inspected in security inspection, the system being related to at least one of software and hardware, a determining unit that determines whether or not each of the one or more pieces of configuration information is associated with any of one or more types of security functions set as inspection items for the security inspection, and a generating unit that generates information related to the determination.

公开(公告)号：US20200050756A1

公开(公告)日：2020-02-13

申请号：US16656725

申请日：2019-10-18

Applicant: NEC Corporation

Inventor： Kentaro SONODA ,  Kayato SEKIYA

IPC: G06F21/55 ,  G08B23/00 ,  G07C9/00

Abstract: Action instruction information includes action procedure information. The action procedure information defines an action procedure of a person including a plurality of action steps. Log information is information with respect to access to an object to be monitored and is acquired from a security apparatus for monitoring the object to be monitored. An action trace unit traces advance of the action step in the action procedure based on the action instruction information and the log information. A trace display unit associates the advance of the action step with access to the security apparatus based on the log information and the advance of the action step traced by the action trace unit and displays them on a display device.

公开(公告)号：US20170329967A1

公开(公告)日：2017-11-16

申请号：US15529803

申请日：2015-11-30

Applicant: NEC CORPORATION

Inventor： Kentaro SONODA ,  Kayato SEKIYA ,  Yoshiya KIZU

IPC: G06F21/56 ,  H04L12/58

Abstract: Provided is a more versatile technique that makes it possible to input dummy information in response to an attacker seeking to collect normal information that cannot be replaced with dummy information. In the present invention, a dummy information insertion device inserts dummy information into a second location that is determined using: first location information indicating a first location that contains normal information, from among all normal information in a computer, which cannot be replaced with other information; and insertion condition information that indicates conditions for determining the second location into which dummy information is to be inserted, with such dummy information resembling the normal information that cannot be replaced and not being present in the computer or in a local network connected to the computer.