公开(公告)号：US08341736B2

公开(公告)日：2012-12-25

申请号：US11974457

申请日：2007-10-12

申请人： Sterling Reasor ,  Jonathan Keller ,  Jason Joyce ,  Ahmed Hussain ,  Kanwaljit Marok ,  Nizan Manor ,  Santanu Chakraborty

发明人： Sterling Reasor ,  Jonathan Keller ,  Jason Joyce ,  Ahmed Hussain ,  Kanwaljit Marok ,  Nizan Manor ,  Santanu Chakraborty

IPC分类号： G06F21/00

CPC分类号： G06F21/566 ,  G06F2221/2101 ,  G06F2221/2145

摘要： An arrangement for dynamically identifying and intercepting potential software threats before they execute on a computer system is provided in which a file system filter driver (called a “mini-filter”) interfaces with an anti-malware service to selectively generate an alert event and allow the threat to run, in addition to generating an alert event and suspending the threat. The decision to suspend the threat or allow it to run is made through application of a cascading logic hierarchy that includes respective policy-defined actions, user-defined actions, and signature-defined actions. The mini-filter generates the alert event to the anti-malware service whenever a file is opened, or modified and closed. The service uses an engine to scan the file to identify potential threats which are handled though application of the logic hierarchy which provides for configurations defined in a lower tier of the hierarchy to be overridden by those contained in a higher tier.

摘要翻译： 提供了在计算机系统上执行之前动态识别和拦截潜在软件威胁的安排，其中文件系统过滤器驱动程序（称为微型过滤器）与反恶意软件服务接口以选择性地生成警报事件并允许威胁 运行，除了生成警报事件和暂停威胁。 暂停威胁或允许其运行的决定是通过应用级联逻辑层次结构来实现的，层级逻辑层次结构包括相应的策略定义的动作，用户定义的动作和签名定义的动作。 微型过滤器在打开或修改和关闭文件时，向反恶意软件服务生成警报事件。 该服务使用引擎来扫描文件，以识别通过应用逻辑层次结构处理的潜在威胁，逻辑层次结构提供在层次结构的较低层中定义的配置将被包含在较高层中的层覆盖。

公开(公告)号：US20090100520A1

公开(公告)日：2009-04-16

申请号：US11974457

申请日：2007-10-12

申请人： Sterling Reasor ,  Jonathan Keller ,  Jason Joyce ,  Ahmed Hussain ,  Kanwaljit Marok ,  Nizan Manor ,  Santanu Chakraborty

发明人： Sterling Reasor ,  Jonathan Keller ,  Jason Joyce ,  Ahmed Hussain ,  Kanwaljit Marok ,  Nizan Manor ,  Santanu Chakraborty

IPC分类号： G06F21/00

CPC分类号： G06F21/566 ,  G06F2221/2101 ,  G06F2221/2145

摘要： An arrangement for dynamically identifying and intercepting potential software threats before they execute on a computer system is provided in which a file system filter driver (called a “mini-filter”) interfaces with an anti-malware service to selectively generate an alert event and allow the threat to run, in addition to generating an alert event and suspending the threat. The decision to suspend the threat or allow it to run is made through application of a cascading logic hierarchy that includes respective policy-defined actions, user-defined actions, and signature-defined actions. The mini-filter generates the alert event to the anti-malware service whenever a file is opened, or modified and closed. The service uses an engine to scan the file to identify potential threats which are handled though application of the logic hierarchy which provides for configurations defined in a lower tier of the hierarchy to be overridden by those contained in a higher tier.

摘要翻译： 提供了一种用于在计算机系统上执行之前动态识别和拦截潜在软件威胁的布置，其中文件系统过滤器驱动程序（称为“微型过滤器”）与反恶意软件服务接口以选择性地生成警报事件并允许 除了产生警报事件和暂停威胁之外，运行的威胁。 暂停威胁或允许其运行的决定是通过应用级联逻辑层次结构来实现的，层级逻辑层次结构包括相应的策略定义的动作，用户定义的动作和签名定义的动作。 微型过滤器在打开或修改和关闭文件时，向反恶意软件服务生成警报事件。 该服务使用引擎来扫描文件，以识别通过应用逻辑层次结构处理的潜在威胁，逻辑层次结构提供在层次结构的较低层中定义的配置将被包含在较高层中的层覆盖。

公开(公告)号：US07600019B2

公开(公告)日：2009-10-06

申请号：US12108321

申请日：2008-04-23

申请人： Sterling Reasor ,  Christopher A. Evans ,  Jason Christensen ,  John Brezak

发明人： Sterling Reasor ,  Christopher A. Evans ,  Jason Christensen ,  John Brezak

IPC分类号： G06F15/16 ,  G06F15/173 ,  G06F15/177

CPC分类号： H04L67/22 ,  G06F21/552 ,  H04N7/163 ,  H04N21/43615 ,  H04N21/44222 ,  H04N21/4667 ,  H04N21/4751 ,  H04N21/4755

摘要： A system and method for aggregating and extending parental controls auditing in an unmanaged computing network are provided. A parental control system, including a parental control database, logging interface, and audit process, resides on each host computing device in an unmanaged computing network that is capable of synchronizing data residing on one of the host computing devices with data residing on the other devices in the network. The parental control system facilitates the logging and reporting of parental control audit information in a manner that allows parents to aggregate the audit information to obtain a comprehensive audit report of their children's use of all computers in the home, and is extensible and customizable by the applications from which the parental control audit information originates.

摘要翻译： 提供了一种用于在非管理计算网络中聚合和扩展家长控制审计的系统和方法。 家长控制系统（包括家长控制数据库，记录接口和审核过程）驻留在非托管计算网络中的每个主机计算设备上，其能够将驻留在主机计算设备之一上的数据与驻留在其他设备上的数据进行同步 在网络中。 父母控制系统有助于父母控制审计信息的记录和报告，允许父母汇总审核信息，以获得他们孩子在家中使用所有计算机的全面审核报告，并且可由应用程序进行扩展和定制 父母控制审计信息来自哪里。

公开(公告)号：US20070038677A1

公开(公告)日：2007-02-15

申请号：US11190749

申请日：2005-07-27

申请人： Sterling Reasor ,  Andrew Newman ,  Ronald Franczyk ,  Jason Garms ,  Christopher Jones

发明人： Sterling Reasor ,  Andrew Newman ,  Ronald Franczyk ,  Jason Garms ,  Christopher Jones

IPC分类号： G06F17/30

CPC分类号： G06F21/565

摘要： Embodiments of a feedback-driven malware detector are directed to protecting a computer from programs that perform actions that are malicious or not expected by a user. In one embodiment, the feedback-driven malware detector performs a method that initially determines whether the state of an application program scheduled to be added to an extensibility point on a computer is already known. If the state of the object is not already known, the user is informed that an application program is being installed on the computer and that the application program is being added to an extensibility point. Then, input is obtained from the user that assists in determining whether the application program is malware.

摘要翻译： 反馈驱动的恶意软件检测器的实施例旨在保护计算机不执行由用户恶意或不期望的动作的程序。 在一个实施例中，反馈驱动的恶意软件检测器执行一种方法，该方法最初确定计划添加到计算机上的可扩展点的应用程序的状态是否已知。 如果对象的状态尚未知道，则通知用户计算机上正在安装应用程序，并将应用程序添加到可扩展点。 然后，从用户获得有助于确定应用程序是否是恶意软件的输入。

公开(公告)号：US20050188313A1

公开(公告)日：2005-08-25

申请号：US10783380

申请日：2004-02-20

申请人： David Matthews ,  Kanwal VedBrat ,  Hillel Cooperman ,  Sterling Reasor ,  Charles Cummins ,  J. Hally ,  Mark Ligameri ,  Timothy McKee ,  Giampiero Sierra ,  Timothy Noonan ,  Eric Flo ,  Charles Stabb

发明人： David Matthews ,  Kanwal VedBrat ,  Hillel Cooperman ,  Sterling Reasor ,  Charles Cummins ,  J. Hally ,  Mark Ligameri ,  Timothy McKee ,  Giampiero Sierra ,  Timothy Noonan ,  Eric Flo ,  Charles Stabb

IPC分类号： G06F3/00 ,  G06F9/44

CPC分类号： G06F9/451

摘要： In an implementation of user interface transition, a user interface logon page is displayed with selectable logon controls that each have a corresponding user-identifiable indicator. A transition from the user interface logon page to a user interface desktop page is initiated in response to a selectable logon control being selected. The transition displays the user-identifiable indicator corresponding to the selectable logon control uninterrupted throughout the transition, and the user-identifiable indicator corresponding to the selectable logon control is displayed on the user interface desktop page.

摘要翻译： 在用户界面转换的实现中，显示用户界面登录页面，其中可选择的登录控件各自具有相应的用户可识别的指示符。 响应于所选择的可选登录控制，启动从用户界面登录页面到用户界面桌面页面的转换。 该转换在整个转换期间显示对应于可选择登录控制的用户可识别指示符，并且在用户界面桌面页面上显示与可选登录控制对应的用户可识别指示符。

公开(公告)号：US20050091673A1

公开(公告)日：2005-04-28

申请号：US10692014

申请日：2003-10-24

申请人： Matthew Rhoten ,  Suresh Velagapudi ,  Ravipal Soin ,  Sterling Reasor ,  John Stephens ,  William Mak ,  Jerry Hughson ,  Krishna Kotipalli ,  Piero Sierra

发明人： Matthew Rhoten ,  Suresh Velagapudi ,  Ravipal Soin ,  Sterling Reasor ,  John Stephens ,  William Mak ,  Jerry Hughson ,  Krishna Kotipalli ,  Piero Sierra

IPC分类号： G06F15/02 ,  G06F1/00 ,  G06F3/00 ,  G06F9/00 ,  G06F9/24 ,  G06F9/445 ,  G06F12/14 ,  G06F13/00 ,  G06F13/14 ,  G06F15/00 ,  G06F17/00 ,  G06F17/30 ,  G06F21/00

CPC分类号： G06F21/31 ,  G06F21/6218 ,  G06F21/74 ,  G06F2221/2105 ,  G06F2221/2141

摘要： A system and process for interacting with a system in an insecure state is described. Before logging into a secure state of a computer system, a user is able to access limited information including calendar information regarding meetings for that day and the like. In some aspects of the invention, a user may interact with a displayed note pad for receiving handwritten or typed notes. Aspects of the described system and method permit a user to quickly review or interact with a computer prior to logging into a secured state of the computer system.

摘要翻译： 描述了与处于不安全状态的系统进行交互的系统和过程。 在登录到计算机系统的安全状态之前，用户能够访问有限的信息，包括关于当天的会议的日历信息等。 在本发明的一些方面，用户可以与显示的便签板交互以接收手写或打字的笔记。 所描述的系统和方法的方面允许用户在登录到计算机系统的安全状态之前快速地查看或与计算机交互。

公开(公告)号：US20060174308A1

公开(公告)日：2006-08-03

申请号：US11044713

申请日：2005-01-28

申请人： Andrew Fuller ,  Issa Khoury ,  Allen Marshall ,  Vikram Madan ,  Sterling Reasor ,  Ravipal Soin ,  Tse-Ching Yu

发明人： Andrew Fuller ,  Issa Khoury ,  Allen Marshall ,  Vikram Madan ,  Sterling Reasor ,  Ravipal Soin ,  Tse-Ching Yu

IPC分类号： H04N7/173 ,  H04N7/16

CPC分类号： H04N7/163 ,  H04N21/42646 ,  H04N21/4325 ,  H04N21/4751 ,  H04N21/4753 ,  Y10S707/99945 ,  Y10S707/99948

摘要： In response to a user instruction to initiate media playback, which instruction may come from a dedicated media playback hardware button or from a user interface on a display screen, a computer operating system activates a predesignated media playback user account. The account may be limited to access of media playback applications and files located within shared directories. The operating system also launches a media playback application in response to the user instruction to initiate media playback. Instead of activating an account in response to a media playback instruction, the operating system can execute a media player application within a login screen.

公开(公告)号：US20050188317A1

公开(公告)日：2005-08-25

申请号：US10784003

申请日：2004-02-20

申请人： David Matthews ,  Kanwal VedBrat ,  Hillel Cooperman ,  Sterling Reasor ,  Charles Cummins ,  J. Hally ,  Mark Ligameri ,  Timothy McKee ,  Giampiero Sierra ,  Timothy Noonan ,  Eric Flo ,  Charles Stabb

发明人： David Matthews ,  Kanwal VedBrat ,  Hillel Cooperman ,  Sterling Reasor ,  Charles Cummins ,  J. Hally ,  Mark Ligameri ,  Timothy McKee ,  Giampiero Sierra ,  Timothy Noonan ,  Eric Flo ,  Charles Stabb

IPC分类号： G06F3/00 ,  G06F3/048

CPC分类号： G06F3/0482

摘要： In an implementation of initiate multiple applications, a user interface includes a user-selectable control to initiate that multiple applications start together at approximately a same time. The user interface includes user-selectable configurations to designate a multiple application start-up configuration.

摘要翻译： 在启动多个应用的​​实现中，用户界面包括用户可选择的控制，以启动多个应用程序在大约相同的时间一起开始。 用户界面包括用户可选择的配置以指定多应用程序启动配置。

公开(公告)号：US20050091337A1

公开(公告)日：2005-04-28

申请号：US10691872

申请日：2003-10-23

申请人： Sterling Reasor ,  John Brezak ,  Eric Flo ,  Mohammed Samji

发明人： Sterling Reasor ,  John Brezak ,  Eric Flo ,  Mohammed Samji

IPC分类号： G06F20060101 ,  G06F15/16 ,  G06F15/173 ,  H04L29/06 ,  H04L29/08

CPC分类号： H04L63/102 ,  G06F17/30106 ,  G06F17/30194 ,  H04L67/1097 ,  H04L67/2838 ,  H04L67/289 ,  Y10S707/99931 ,  Y10S707/99933

摘要： A system and method for generating aggregated content views in a computing network are provided. A host computing device obtains a request for an aggregated view of content corresponding to a set of criteria. The host computing device queries itself and each computing device in a defined network for locally stored content matching the set of criteria. The query results are merged and displayed to a user at the host computing device as an aggregated list view.

摘要翻译： 提供了一种用于在计算网络中生成聚合内容视图的系统和方法。 主计算设备获得对与一组标准相对应的内容的聚合视图的请求。 主机计算设备在定义的网络中查询本身和每个计算设备，用于与该组标准匹配的本地存储的内容。 查询结果被合并并显示给主计算设备上的用户作为聚合列表视图。

公开(公告)号：US20050091213A1

公开(公告)日：2005-04-28

申请号：US10693585

申请日：2003-10-24

申请人： Klaus Schutz ,  Stefan Richards ,  Eric Perlin ,  Cristian Ilac ,  Sterling Reasor ,  Eric Flo ,  John Stephens ,  Benjamin Hutz

发明人： Klaus Schutz ,  Stefan Richards ,  Eric Perlin ,  Cristian Ilac ,  Sterling Reasor ,  Eric Flo ,  John Stephens ,  Benjamin Hutz

IPC分类号： G06F21/20 ,  G06F21/00 ,  G09C1/00 ,  H04L9/32 ,  G06F7/00

CPC分类号： G06F21/31 ,  Y10S707/99938 ,  Y10S707/99939

摘要： A credential is translated with one of different credential provider modules each translating a corresponding different type of credential into a common protocol. The translated credential is communicated through an API to a logon UI module to an operating system (OS) of a local machine. An OS logon module is called by the logon UI module to authenticate the translated credential against a credential database. A user identified by the translated credential is logged on to access the local machine when the authentication is successful. The credential can also be used with a selection received from the logon UI module via a corresponding one of different pre-log access provider (PLAP) modules that each communicate with the API. The API establishes a network session with an access service specified by the selected PLAP module when the credential is authenticated with the credential database.

摘要翻译： 用不同凭证提供者模块之一翻译凭证，每个凭证提供者模块将相应的不同类型的凭证翻译成公共协议。 翻译的凭证通过API传送到登录UI模块到本地机器的操作系统（OS）。 登录UI模块调用操作系统登录模块，以根据凭据数据库验证转换的凭据。 当认证成功时，由登录的凭证登录的用户访问本地计算机。 证书还可以与从登录UI模块通过每个与API进行通信的不同预登录访问提供程序（PLAP）模块中的相应一个模块接收到的选择一起使用。 当凭证凭证凭证数据库进行身份验证时，API与所选择的PLAP模块指定的访问服务建立网络会话。