公开(公告)号：US20050091487A1

公开(公告)日：2005-04-28

申请号：US10692843

申请日：2003-10-24

申请人： David Cross ,  Jainrong Gu ,  Duncan Bryce ,  Shishir Pardikar ,  Pradeep Madhavarapu ,  Scott Field ,  Kelvin Yiu

发明人： David Cross ,  Jainrong Gu ,  Duncan Bryce ,  Shishir Pardikar ,  Pradeep Madhavarapu ,  Scott Field ,  Kelvin Yiu

IPC分类号： G06F12/14 ,  G06F21/00 ,  H04L9/00

CPC分类号： G06F21/10

摘要： An encrypted file system (EFS) and an underlying file transfer protocol to permit a client to encrypt, decrypt, and transfer file(s) resident on a server are disclosed. A user at a client computer can open, read, and write to encrypted files, including header information associated with encrypted files, and can add users to or remove users from an encrypted file.

摘要翻译： 公开了一种加密文件系统（EFS）和底层文件传输协议，以允许客户机加密，解密和传输驻留在服务器上的文件。 客户端计算机上的用户可以打开，读取和写入加密文件，包括与加密文件相关联的标题信息，并且可以将用户添加到加密文件或从加密文件中删除用户。

公开(公告)号：US20050111664A1

公开(公告)日：2005-05-26

申请号：US10718153

申请日：2003-11-20

申请人： Andrew Ritz ,  David Cross ,  Duncan Bryce ,  James Schwartz ,  Jianrong Gu ,  Scott Field

发明人： Andrew Ritz ,  David Cross ,  Duncan Bryce ,  James Schwartz ,  Jianrong Gu ,  Scott Field

IPC分类号： G06F21/00 ,  H04K1/00

CPC分类号： G06F21/575 ,  G06F21/6209 ,  G06F2221/2107

摘要： A system and method for facilitating BIOS integrated encryption is provided. An interface is defined between the operating system and the BIOS. The operating system employs this interface to provide BIOS code information to facilitate decryption of data that is encrypted on the system. In the pre-operating system boot phase, the BIOS employs the decryption information provided from this interface in order to decrypt the data. The decrypted information can be employed to facilitate secure rebooting of a computer system from hibernate mode and/or secure access to device(s).

摘要翻译： 提供了一种用于促进BIOS集成加密的系统和方法。 在操作系统和BIOS之间定义一个接口。 操作系统采用该接口提供BIOS代码信息，以便于在系统上加密的数据的解密。 在操作前系统启动阶段，BIOS使用从该接口提供的解密信息来解密数据。 解密的信息可用于促进计算机系统从休眠模式的安全重新启动和/或安全地访问设备。

公开(公告)号：US20130117806A1

公开(公告)日：2013-05-09

申请号：US13292922

申请日：2011-11-09

申请人： Srivatsan Parthasarathy ,  Scott Field ,  Joseph Dadzie ,  David Kays

发明人： Srivatsan Parthasarathy ,  Scott Field ,  Joseph Dadzie ,  David Kays

IPC分类号： G06F21/00 ,  G06F17/00

CPC分类号： G06F21/53 ,  G06F21/604

摘要： The subject disclosure generally relates to provisioning devices via a network service, such as a cloud service. A profile component can authenticate a user of a device with a cloud service, and determine services maintained by the network service that are associated with the user. A reception component can receive a request for a set of services from the device, and a services component can obtain the set of services from the network service, and provision the device based on the set of services. Provisioning the device can include downloading the services to the device, or including the services in a virtual machine executing in the network service.

摘要翻译： 主题公开通常涉及通过诸如云服务的网络服务来提供设备。 配置文件组件可以使用云服务验证设备的用户，并确定网络服务维护的与用户相关联的服务。 接收组件可以从设备接收对一组服务的请求，并且服务组件可以从网络服务获得一组服务，并且基于该组服务来提供设备。 配置设备可以包括将服务下载到设备，或者将服务包括在网络服务中执行的虚拟机中。

公开(公告)号：US20070162975A1

公开(公告)日：2007-07-12

申请号：US11326890

申请日：2006-01-06

申请人： Adam Overton ,  Alexey Polyakov ,  Andrew Newman ,  Jason Garms ,  Ronald Franczyk ,  Scott Field ,  Sterling Reasor

发明人： Adam Overton ,  Alexey Polyakov ,  Andrew Newman ,  Jason Garms ,  Ronald Franczyk ,  Scott Field ,  Sterling Reasor

IPC分类号： G06F12/14

CPC分类号： H04L63/1416 ,  G06F21/561

摘要： Generally described, a method, software system, and computer-readable medium are provided for efficiently collecting data this useful in developing software systems to identify and protect against malware. In accordance with one embodiment, a method for collecting data to determine whether a malware is propagating in a networking environment is provided. More specifically, the method includes receiving preliminary data sets at a server computer from a plurality of client computers that describes attributes of a potential malware. Then a determination is made regarding whether secondary data is needed to implement systems for protecting against the potential malware. If secondary data is needed, the method causes the secondary data to be collected when an additional preliminary data set is received from a client computer.

摘要翻译： 通常描述，提供了一种方法，软件系统和计算机可读介质，用于有效地收集在开发软件系统中有用的数据，以识别和防止恶意软件。 根据一个实施例，提供了一种用于收集数据以确定恶意软件是否在网络环境中传播的方法。 更具体地说，该方法包括从描述潜在恶意软件的属性的多个客户端计算机在服务器计算机处接收初始数据集。 然后确定是否需要辅助数据来实施防止潜在恶意软件的系统。 如果需要辅助数据，则当从客户端计算机接收到附加的初始数据集时，该方法将导致辅助数据被收集。

公开(公告)号：US20070016675A1

公开(公告)日：2007-01-18

申请号：US11181376

申请日：2005-07-13

申请人： Pradeep Bahl ,  Ramesh Chinta ,  Narasimha Nagampalli ,  Scott Field

发明人： Pradeep Bahl ,  Ramesh Chinta ,  Narasimha Nagampalli ,  Scott Field

IPC分类号： G06F15/173

CPC分类号： H04L63/1441 ,  H04L63/101

摘要： A computer system having secured network services is presented. The computer system comprises a processor, a memory, and a network action processing module. The network action processing module processes network actions from one or more network services executing on the computer system. The computer system is further configured to execute at least network service performing network actions in conjunction with the network action processing module. Upon receiving a network action from a network service, the network action processing module determines whether the network action is a valid network action according to a network action control list. If the network action is determined to not be a valid network action, the network action is blocked. Alternatively, if the network action is determined to be a valid network action, the network action is permitted to be completed.

摘要翻译： 提出了一种具有安全网络服务的计算机系统。 计算机系统包括处理器，存储器和网络动作处理模块。 网络动作处理模块处理来自在计算机系统上执行的一个或多个网络服务的网络动作。 该计算机系统进一步被配置为至少执行网络服务，与网络动作处理模块一起执行网络动作。 网络动作处理模块从网络服务接收到网络动作后，根据网络动作控制列表判断网络动作是否为有效的网络动作。 如果网络动作被确定为不是有效的网络动作，则网络动作被阻止。 或者，如果网络动作被确定为有效的网络动作，则允许网络动作被完成。

公开(公告)号：US20060236122A1

公开(公告)日：2006-10-19

申请号：US11106756

申请日：2005-04-15

申请人： Scott Field ,  Jonathan Schwartz

发明人： Scott Field ,  Jonathan Schwartz

IPC分类号： G06F12/14

CPC分类号： H04L9/3247 ,  G06F21/575 ,  H04L2209/80

摘要： Systems and methods for performing integrity verifications for computer programs to run on computing systems are provided. An integrity check is completed before passing execution control to the next level of an operating system or before allowing a program to run. The integrity check involves the use of a locally stored key to determine if a program has been modified or tampered with prior to execution. If the check shows that the program has not been altered, the program will execute and, during the boot process, allow execution control to be transferred to the next level. If, however, the check confirms that the program has been modified, the computing system does not allow the program to run.

摘要翻译： 提供了用于执行计算机程序在计算系统上运行的完整性校验的系统和方法。 在将执行控制传递到操作系统的下一个级别之前或允许程序运行之前，完整性检查完成。 完整性检查涉及使用本地存储的密钥来确定在执行之前程序是否被修改或篡改。 如果检查显示程序未被更改，则程序将执行，并且在引导过程中允许将执行控制转移到下一级。 但是，如果检查确认程序已被修改，则计算系统不允许程序运行。

公开(公告)号：US20060212439A1

公开(公告)日：2006-09-21

申请号：US11086163

申请日：2005-03-21

申请人： Scott Field

发明人： Scott Field

IPC分类号： G06F17/30

CPC分类号： G06F11/1453 ,  G06F11/1451 ,  G06F11/1464

摘要： The present invention is directed to a system, methods, and a computer-readable medium for efficiently performing a backup of data in a networking environment. In embodiments of the present invention, a backup of a file from a local computing device to a remote computing device is performed. However, the file may not be transmitted to the remote computing device in all instances. Instead, aspects of the present invention determine whether the file is already stored on the remote computing device by another user or by an operating system and/or application program provider. In this regard, a signature of the file is generated and compared to signatures of files stored on the back end computing device. Only in instances when a match to the signature is not found is the complete file transmitted to the back end computing device and stored in a database.

摘要翻译： 本发明涉及一种用于在网络环境中有效执行数据备份的系统，方法和计算机可读介质。 在本发明的实施例中，执行将文件从本地计算设备备份到远程计算设备。 但是，在所有情况下，文件可能不会传输到远程计算设备。 相反，本发明的方面确定该文件是否已由另一用户或操作系统和/或应用程序提供者存储在远程计算设备上。 在这方面，生成文件的签名并与存储在后端计算设备上的文件的签名进行比较。 只有在没有找到与签名匹配的情况下，才将完整的文件传输到后端计算设备并存储在数据库中。

公开(公告)号：US20060117106A1

公开(公告)日：2006-06-01

申请号：US11275711

申请日：2006-01-25

申请人： Nadim Abdo ,  Adam Overton ,  Jason Garms ,  John Parsons ,  Alvin Loh ,  Scott Field

发明人： Nadim Abdo ,  Adam Overton ,  Jason Garms ,  John Parsons ,  Alvin Loh ,  Scott Field

IPC分类号： G06F15/16 ,  G06F15/173

CPC分类号： G06F13/107 ,  H04L63/08 ,  H04L63/126 ,  H04L67/14

摘要： Upon successfully authenticating a client device with a server system, the client device and server system share auto-reconnect data. Upon subsequently losing and re-establishing communications with the server system, the client sends an auto-authenticate request to the server. The auto-authenticate request includes a session verifier that is based at least in part on the shared auto-reconnect data. The server validates the session verifier. If the validation is successful, the server automatically re-authenticates the client device.

摘要翻译： 当客户端设备与服务器系统成功认证后，客户端设备和服务器系统共享自动重新连接数据。 随后丢失并重新建立与服务器系统的通信，客户端向服务器发送自动认证请求。 自动认证请求包括至少部分地基于共享的自动重连接数据的会话验证器。 服务器验证会话验证器。 如果验证成功，服务器将自动重新认证客户端设备。

公开(公告)号：US20060101505A1

公开(公告)日：2006-05-11

申请号：US11275681

申请日：2006-01-24

申请人： Nadim Abdo ,  Adam Overton ,  Jason Garms ,  John Parsons ,  Alvin Loh ,  Scott Field

发明人： Nadim Abdo ,  Adam Overton ,  Jason Garms ,  John Parsons ,  Alvin Loh ,  Scott Field

IPC分类号： H04L9/32

CPC分类号： G06F13/107 ,  H04L63/08 ,  H04L63/126 ,  H04L67/14

摘要： Upon successfully authenticating a client device with a server system, the client device and server system share auto-reconnect data. Upon subsequently losing and re-establishing communications with the server system, the client sends an auto-authenticate request to the server. The auto-authenticate request includes a session verifier that is based at least in part on the shared auto-reconnect data. The server validates the session verifier. If the validation is successful, the server automatically re-authenticates the client device.

公开(公告)号：US20050257208A1

公开(公告)日：2005-11-17

申请号：US10880848

申请日：2004-06-30

申请人： Anthony Blumfield ,  Gilad Golan ,  Jason Garms ,  Saud Alshibani ,  Scott Field

发明人： Anthony Blumfield ,  Gilad Golan ,  Jason Garms ,  Saud Alshibani ,  Scott Field

IPC分类号： G06F11/00 ,  G06F9/445 ,  G06F9/44

CPC分类号： G06F8/65 ,  G06F8/60 ,  G06F8/61 ,  G06F8/656 ,  G06F8/71 ,  G06F9/44505

摘要： A facility for applying a software patch is described. Using an automatic patching agent, the facility receives the software patch. In response to receiving the software patch, without user intervention, the facility performs the following acts: First, the facility identifies an instance of an executable module that is currently loaded, and to which the received software patch pertains. Second, the facility applies the received software patch to the identified loaded executable module instance to modify the behavior of the identified executable module instance.

摘要翻译： 描述了应用软件补丁的设施。 使用自动修补代理，该工具接收软件补丁。 响应于接收到软件补丁而无需用户干预，设备执行以下动作：首先，设备识别当前加载的可执行模块的实例，并且所接收的软件补丁所属的实例。 其次，设备将接收到的软件补丁应用到所识别的可加载的可执行模块实例，以修改所识别的可执行模块实例的行为。