公开(公告)号：US08966158B2

公开(公告)日：2015-02-24

申请号：US13324901

申请日：2011-12-13

申请人： Sanehiro Furuichi ,  Masami Tada

发明人： Sanehiro Furuichi ,  Masami Tada

IPC分类号： G06F12/00 ,  G06F21/62

CPC分类号： G06F21/6218

摘要： A data protection program for protecting data to be processed by an application, and a computer including volatile storage means and nonvolatile storage means performs a volatile file unpack function of writing, to the nonvolatile storage means, data corresponding to a data file to be read or written by the application so that the data is associated with the data file; and a volatile file repackage function of outputting the data file corresponding to the data written to the volatile storage means.

摘要翻译： 用于保护由应用程序处理的数据的数据保护程序以及包括易失性存储装置和非易失性存储装置的计算机执行易失性文件解包功能，向非易失性存储装置写入与要读取的数据文件相对应的数据， 由应用程序写入，使数据与数据文件相关联; 以及用于输出与写入到所述易失性存储装置的数据相对应的数据文件的易失性文件重新包装功能。

公开(公告)号：US08640134B2

公开(公告)日：2014-01-28

申请号：US13115498

申请日：2011-05-25

申请人： Sanehiro Furuichi ,  Masami Tada

发明人： Sanehiro Furuichi ,  Masami Tada

IPC分类号： G06F9/46

摘要： Exemplary embodiments include a method and system having resistance to a forced termination attack on a monitoring program for monitoring a predetermined resource. Aspects of the exemplary embodiment include a device that executes a predetermined process including a monitoring program that monitors a predetermined resource, wherein the predetermined process is a process for which the predetermined resource becomes unavailable in response to termination of the predetermined process; a program starting unit for starting the monitoring program in response to an execution of the predetermined process; and a terminator for terminating the predetermined process in the case where the monitoring program is forcibly terminated from the outside.

公开(公告)号：US20130219462A1

公开(公告)日：2013-08-22

申请号：US13821562

申请日：2011-07-01

申请人： Taku Aratsu ,  Sanehiro Furuichi ,  Masami Tada

发明人： Taku Aratsu ,  Sanehiro Furuichi ,  Masami Tada

IPC分类号： G06F21/10 ,  G06F21/62

CPC分类号： G06F21/10 ,  G06F21/556 ,  G06F21/62 ,  G06F2221/2119 ,  H04L63/0428 ,  H04L63/102 ,  H04L67/1097

摘要： A data distribution system, method and program for generating a distribution package for distribution data to a client. An environment of a requesting client requesting distribution data is detected. A determination is made of an access control execution program for implementing an access control mechanism and a loading unit on the requesting client. The access control execution program is adapted to the detected environment of the requesting client and control access to a resource from a process in the client. The loading unit loads the distribution data to a protected storage area of the client. A determination is made of a security policy specified for the distribution data. A distribution package is generated including the distribution data, the security policy, the loading unit, and the access control execution program adapted to the environment of the requesting client; and transmitting the generated distribution package to the requesting client.

摘要翻译： 一种用于生成用于向客户端分发数据的分发包的数据分发系统，方法和程序。 检测请求客户端请求分发数据的环境。 确定用于在请求客户端上实现访问控制机构和加载单元的访问控制执行程序。 访问控制执行程序适应于所请求的客户端的检测环境，并且控制对客户端中的进程对资源的访问。 加载单元将分发数据加载到客户端的受保护存储区域。 确定为分发数据指定的安全策略。 生成分配包，包括分发数据，安全策略，加载单元和适应请求客户端的环境的访问控制执行程序; 以及将生成的分发包传送到请求客户端。

公开(公告)号：US08359359B2

公开(公告)日：2013-01-22

申请号：US12627049

申请日：2009-11-30

申请人： Masami Tada

发明人： Masami Tada

IPC分类号： G06F15/16

CPC分类号： G06Q10/107

摘要： A device and method are described to create a reply message in which, even in a case where electronic messages are exchanged among a plurality of users, a past electronic message to be referred to as a desired reply message can be efficiently retrieved, and trouble in creating a reply message can be reduced. When a first electronic message that has been stored most recently has been extracted from history information, and when an instruction indicating that the body part of the first electronic message is necessary has been accepted, the body part of the first electronic message is temporarily stored. A second electronic message that has been stored next most recently is extracted from the history information. When information on a source in the header part of the second electronic message does not match information on the author of a reply message, the address of the source is set to the address of the destination of the reply message, the temporarily stored body part is added to the reply message, and history information preceding the second electronic message is added.

摘要翻译： 描述了一种设备和方法来创建答复消息，其中即使在多个用户之间交换电子消息的情况下，可以有效地检索要被称为期望的回复消息的过去的电子消息，并且在 可以减少创建回复消息。 当从历史信息中提取最近存储的第一电子信息时，当接收到指示第一电子消息的正文部分的指令时，第一电子消息的正文部分被暂时存储。 从历史信息中提取最近存储的第二电子消息。 当关于第二电子消息的标题部分中的源的信息与回复消息的作者的信息不匹配时，源的地址被设置为回复消息的目的地的地址，临时存储的身体部分是 添加到回复消息中，并且添加第二电子消息之前的历史信息。

公开(公告)号：US20120297452A1

公开(公告)日：2012-11-22

申请号：US13560471

申请日：2012-07-27

申请人： Seiji Munetoh ,  Akira Ohkado ,  Yukihiko Sohda ,  Masami Tada

发明人： Seiji Munetoh ,  Akira Ohkado ,  Yukihiko Sohda ,  Masami Tada

IPC分类号： G06F21/20

CPC分类号： G06F21/554 ,  G06F9/45533 ,  G06F21/74 ,  G06F2221/2127 ,  H04L63/1491

摘要： A system includes a detection unit configured to detect unauthorized access to one or more information processing apparatuses that are virtually implemented by virtual machines executed by a computer; an authorized network configured to transfer authorized access to the one or more information processing apparatuses from an external network; a honeypot network configured to transfer unauthorized access to the information processing apparatuses from the external network; and a control unit configured to connect the information processing apparatuses for which no unauthorized access has been detected to the authorized network, and connect the information processing apparatuses for which unauthorized access has been detected to the honeypot network; wherein the control unit shifts, in response to detecting unauthorized access by the detection unit, the corresponding information processing apparatus into a decoy mode in which the detected unauthorized access is disconnected from a normal operation.

摘要翻译： 一种系统，包括：检测单元，被配置为检测对由计算机执行的虚拟机虚拟实现的一个或多个信息处理设备的未授权访问; 授权网络，被配置为从外部网络传送对所述一个或多个信息处理设备的授权访问; 蜜罐网络，被配置为从外部网络传送对信息处理设备的未经授权的访问; 以及控制单元，被配置为将没有未经授权的访问的信息处理设备连接到授权网络，并且将已经检测到未经授权的访问的信息处理设备连接到蜜罐网络; 其中所述控制单元响应于检测到所述检测单元的未经授权的访问而将所述对应的信息处理设备移动到所述检测到的未授权访问与正常操作断开的诱饵模式。

公开(公告)号：US20120254951A1

公开(公告)日：2012-10-04

申请号：US13419554

申请日：2012-03-14

申请人： Seiji Munetoh ,  Akira Ohkado ,  Yukihiko Sohda ,  Masami Tada

发明人： Seiji Munetoh ,  Akira Ohkado ,  Yukihiko Sohda ,  Masami Tada

IPC分类号： G06F21/00

CPC分类号： G06F21/554 ,  G06F9/45533 ,  G06F21/74 ,  G06F2221/2127 ,  H04L63/1491

摘要： A system includes a detection unit configured to detect unauthorized access to one or more information processing apparatuses that are virtually implemented by virtual machines executed by a computer; an authorized network configured to transfer authorized access to the one or more information processing apparatuses from an external network; a honeypot network configured to transfer unauthorized access to the information processing apparatuses from the external network; and a control unit configured to connect the information processing apparatuses for which no unauthorized access has been detected to the authorized network, and connect the information processing apparatuses for which unauthorized access has been detected to the honeypot network; wherein the control unit shifts, in response to detecting unauthorized access by the detection unit, the corresponding information processing apparatus into a decoy mode in which the detected unauthorized access is disconnected from a normal operation.

公开(公告)号：US08250160B2

公开(公告)日：2012-08-21

申请号：US12762651

申请日：2010-04-19

申请人： Kenji Hirota ,  Tomonori Sugiura ,  Masami Tada ,  Hidekuni Ueda

发明人： Kenji Hirota ,  Tomonori Sugiura ,  Masami Tada ,  Hidekuni Ueda

IPC分类号： G06F15/16 ,  G06F15/173

CPC分类号： G06Q10/107 ,  H04L51/16 ,  H04L51/28

摘要： An email is created that includes one or more destination email addresses, plus historical information regarding previously exchanged emails. Before sending this email, each of the destination email addresses is checked against the email addresses in the historical information and, if a destination email address (or the domain name of that destination address) is not found in the historical information, then a warning is displayed to alert the user to the fact that this historical information may be sent to an unintended recipient. In response to this warning, which may include a list of unapproved destination email address, the user may approve a previously unapproved destination email address, change the unapproved destination email address to one that has been previously approved, or enter a new distribution email to be substituted for the unapproved one. When creating the email, the user may also specify other approved email addresses.

摘要翻译： 创建一个包含一个或多个目标电子邮件地址的电子邮件，以及有关以前交换的电子邮件的历史信息。 在发送此电子邮件之前，根据历史信息中的电子邮件地址检查每个目的地电子邮件地址，如果在历史信息中找不到目的地电子邮件地址（或该目的地址的域名），则警告是 显示以提醒用户这个历史信息可能被发送到非预期接收者的事实。 为响应此警告，可能包含未经批准的目的地电子邮件地址列表，用户可以批准以前未经批准的目标电子邮件地址，将未经批准的目标电子邮件地址更改为之前已批准的目标电子邮件地址，或输入新的发行电子邮件地址 代替未经批准的。 创建电子邮件时，用户还可以指定其他已批准的电子邮件地址。

公开(公告)号：US20110125857A1

公开(公告)日：2011-05-26

申请号：US12946931

申请日：2010-11-16

申请人： Katsuyuki Shiga ,  Takeyuki Shimura ,  Masami Tada ,  Yuhichi Takahashi

发明人： Katsuyuki Shiga ,  Takeyuki Shimura ,  Masami Tada ,  Yuhichi Takahashi

IPC分类号： G06F15/16

CPC分类号： G06Q10/107

摘要： To allow a receiver of e-mail addressed to a plurality of destination addresses to readily specify a message of his/her interest included therein. A device for processing e-mail containing a plurality of destination addresses, contents corresponding respectively to the destination addresses, and display attributes for displaying the corresponding contents on a display device is provided. The e-mail processing device includes a unit for acquiring the degree of association between a first destination address, which is one of the plurality of destination addresses and at least one of the other destination addresses, and a unit for modifying the display attributes for the contents in accordance with the degree of association.

摘要翻译： 允许寻址到多个目的地地址的电子邮件的接收者容易地指定其中包含的他/她的兴趣的消息。 提供一种用于处理包含多个目的地址的电子邮件的装置，分别对应于目的地地址的内容，以及用于在显示装置上显示相应的内容的显示属性。 电子邮件处理装置包括用于获取作为多个目的地地址之一的第一目的地地址与其他目的地地址中的至少一个的关联度的单元，以及用于修改该目的地地址的显示属性的单元 内容按照协会的程度。

公开(公告)号：US20100250963A1

公开(公告)日：2010-09-30

申请号：US12719072

申请日：2010-03-08

申请人： Sanehiro Furuichi ,  Yasuhide Niimura ,  Masami Tada

发明人： Sanehiro Furuichi ,  Yasuhide Niimura ,  Masami Tada

IPC分类号： G06F13/12 ,  G06F12/14

CPC分类号： G06F21/10

摘要： An external storage device connectable to an information processing apparatus is provided. The storage device includes: an input/output interface via which data is exchanged with an information processing apparatus; a first storage region where data associated with first and second validity periods is stored; and a second storage region where a control program is stored. While the first validity period is used when the external storage device is connected to one information processing apparatus, the second validity period is used when the external storage device is connected to another information processing apparatus. The control program causes a processor to execute the steps of: establishing connection of the external storage device to an information processing apparatus; identifying any one of the validity periods as a validity period to be used for the data; and executing predetermined security protection processing on the data in accordance with the identified validity period.

摘要翻译： 提供可连接到信息处理装置的外部存储装置。 存储装置包括：与信息处理装置交换数据的输入/输出接口; 存储与第一和第二有效期相关联的数据的第一存储区域; 以及存储控制程序的第二存储区域。 虽然当外部存储装置连接到一个信息处理装置时使用第一有效期，但是当外部存储装置连接到另一信息处理装置时，使用第二有效期。 控制程序使处理器执行以下步骤：建立外部存储装置与信息处理装置的连接; 将任何一个有效期识别为要用于数据的有效期; 以及根据所识别的有效期对数据执行预定的安全保护处理。

公开(公告)号：US07412440B2

公开(公告)日：2008-08-12

申请号：US11002537

申请日：2004-12-02

申请人： Aya Mori ,  Hirobumi Toyoshima ,  Masami Tada

发明人： Aya Mori ,  Hirobumi Toyoshima ,  Masami Tada

IPC分类号： G06F17/30 ,  G06F17/27

CPC分类号： G06F17/30864 ,  Y10S707/99931 ,  Y10S707/99934

摘要： To enable a user to perform, by using an ontology, an information search utilizing a meaning given to information on a network by Semantic Web without being required to perform complicated operations for forming an inquiry sentence in conformity with the ontology.In a stage before a search engine for performing an information search by using an ontology is provided an information search supporting system having a morpheme analysis section, a syntactic and semantic analysis section, and a conversion execution section which converts a natural language sentence on which syntactic analysis and semantic analysis have been performed into an inquiry sentence described in an ontology description language by referring to a case frame ontology dictionary in which are stored information indicating to which property in an ontology does the relationship among a predicate, a subject and an object in the natural language sentence correspond and the case frame of the natural language sentence in the property. A natural language sentence is input and an inquiry sentence described in the ontology language is formed on the basis of the results of syntactic analysis and semantic analysis on the natural language sentence and is provided to the search engine.

摘要翻译： 为了使用户能够通过使用本体来执行利用语义Web给网络上的信息赋予的意义的信息搜索，而不需要执行用于形成符合本体的查询语句的复杂操作。 在通过使用本体进行信息搜索的搜索引擎之前的阶段提供了一种信息搜索支持系统，其具有语素分析部分，语法和语义分析部分以及转换执行部分，其转换语法 分析和语义分析已经被执行到在本体描述语言中描述的查询语句中，通过参考案例框架本体词典，其中存储有指示本体中哪个属性在谓词，对象和对象之间的关系的信息 自然语言句子对应于属性中自然语言句子的案例框架。 输入自然语言句子，并根据自然语言句子的句法分析和语义分析结果形成本体语言中描述的查询语句，并提供给搜索引擎。