公开(公告)号：US20090222663A1

公开(公告)日：2009-09-03

申请号：US12039946

申请日：2008-02-29

申请人： Stanley Chow ,  Christophe Gustave ,  Brad McFarlane ,  Bassem Abdel-Aziz

发明人： Stanley Chow ,  Christophe Gustave ,  Brad McFarlane ,  Bassem Abdel-Aziz

IPC分类号： H04L9/00

CPC分类号： H04L9/3263 ,  H04L2209/60

摘要： A system and method of authenticating the identity of a remote fax machine during a faxing operation is provided. An X.509-type Certificate received from the remote fax machine is validated to affirm it can be properly associated with the remote machine. The Certificate's public key is used to verify the remote fax machine has the corresponding private key. A Certificate's Common Name then compared to an Expected Name to authenticate the identity of the remote fax machine prior to sending a fax to prevent an unwanted misdirection of faxed information and to screen incoming faxes for unwanted spam.

摘要翻译： 提供了在传真操作期间认证远程传真机的身份的系统和方法。 从远程传真机接收到的X.509型证书被验证，以确认它可以与远程机器正确关联。 证书的公钥用于验证远程传真机具有相应的私钥。 然后将证书的通用名称与预期名称进行比较，以在发送传真之前对远程传真机的身份进行身份验证，以防止传真信息的不必要的误导，并屏蔽传入的传真以获取垃圾邮件。

公开(公告)号：US20070067848A1

公开(公告)日：2007-03-22

申请号：US11366319

申请日：2006-03-02

申请人： Christophe Gustave ,  Stanley Chow ,  Douglas Wiemer

发明人： Christophe Gustave ,  Stanley Chow ,  Douglas Wiemer

IPC分类号： G06F15/18

CPC分类号： H04L63/1433 ,  G06F21/577

摘要： Security vulnerability information aggregation techniques are disclosed. Vulnerability information associated with one or more security vulnerabilities is obtained from multiple sources and aggregated into respective unified vulnerability definitions for the one or more security vulnerabilities. Aggregation may involve format conversion, content aggregation, or both in some embodiments. Unified vulnerability definitions may be distributed to vulnerability information consumers in accordance with consumer-specific policies. Storage of vulnerability information received from the sources may allow the aggregation process to be performed on existing vulnerability information “retro-actively”. Related data structures and Graphical User Interfaces (GUIs) are also disclosed.

摘要翻译： 公开了安全漏洞信息聚合技术。 与一个或多个安全漏洞相关联的漏洞信息是从多个来源获得的，并且被聚合到针对一个或多个安全漏洞的相应的统一漏洞定义中。 在一些实施例中，聚合可以涉及格式转换，内容聚合或两者。 可以根据消费者特定的策略将统一的漏洞定义分发给漏洞信息消费者。 从源接收到的漏洞信息的存储可能允许针对现有漏洞信息“复原”执行聚合过程。 还公开了相关数据结构和图形用户界面（GUI）。

公开(公告)号：US20070067847A1

公开(公告)日：2007-03-22

申请号：US11366101

申请日：2006-03-02

申请人： Douglas Wiemer ,  Christophe Gustave ,  Stanley Chow ,  Bradley McFarlane

发明人： Douglas Wiemer ,  Christophe Gustave ,  Stanley Chow ,  Bradley McFarlane

IPC分类号： G06F11/00

CPC分类号： H04L63/1433 ,  G06F21/577

摘要： Information system service-level security risk analysis systems, methods, and Graphical User Interfaces are disclosed. Assets of an information system that have relationships with a service provided by the information system are identified, and at least one security risk to the service is determined by analyzing security vulnerabilities associated with the identified assets. A consolidated representation of the service is provided, and includes an indication of the determined security risk(s) and an indication of a relationship between the service and at least one of the identified assets. The security risk indication may include indications of multiple security parameters. Security risks may be represented differently depending on whether they arise from a security vulnerability of an asset that has a relationship with the service or a security vulnerability of an asset that has a relationship with the service only through a relationship with an asset that has a relationship with the service.

摘要翻译： 公开了信息系统服务级安全风险分析系统，方法和图形用户界面。 识别与由信息系统提供的服务有关系的信息系统的资产，并且通过分析与所识别的资产相关联的安全漏洞来确定对服务的至少一个安全风险。 提供了该服务的综合表示，并且包括确定的安全风险的指示以及该服务与至少一个所识别的资产之间的关系的指示。 安全风险指示可以包括多个安全参数的指示。 安全风险可能会有所不同，具体取决于它们是否来自与服务关系的资产的安全漏洞或与服务关系的资产的安全漏洞，只能通过与具有关系的资产的关系 与服务。

公开(公告)号：US08516259B2

公开(公告)日：2013-08-20

申请号：US12231430

申请日：2008-09-03

申请人： Christophe Gustave ,  Stanley Chow ,  Shu-Lin Chen

发明人： Christophe Gustave ,  Stanley Chow ,  Shu-Lin Chen

IPC分类号： H04M1/64 ,  H04L9/08

CPC分类号： H04M3/533 ,  H04L63/0823

摘要： A method includes receiving an authentication certificate of a voice mail account holder and/or an authentication certificate of a caller wanting to leave a voice mail message the holders' voice mail account. A voice mail apparatus that provides voice mail service for the voice mail account holder performs such receiving. The account holder and/or the caller are authenticated after receiving the authentication certificate of the party being authenticated. Authenticating the account holder and/or the caller is performed using authentication information contained within the respective certificate. After such authentication is successfully performed, a voice mail message record can be created in the account of the account holder. Such creating includes allowing the caller to store the message in the account of the account holder in addition to associating authenticated identification information of the caller with the message and/or providing authenticated identification of the account holder to the caller.

摘要翻译： 一种方法包括：接收语音邮件账户持有人的认证证书和/或想要留下语音邮件消息的呼叫者的认证证书持有人的语音邮件账号。 为语音邮件帐户持有者提供语音邮件服务的语音邮件装置进行这种接收。 收到认证方认证证书后，账号持有人和/或主叫方进行认证。 使用包含在相应证书内的认证信息来执行帐户持有人和/或呼叫者的认证。 在成功执行认证之后，可以在帐户持有人的帐户中创建语音邮件消息记录。 这样的创建包括允许呼叫者将消息存储在帐户持有者的帐户中，除了将呼叫者的认证身份信息与消息相关联和/或向呼叫者提供帐户持有人的认证身份。

公开(公告)号：US08176328B2

公开(公告)日：2012-05-08

申请号：US12211980

申请日：2008-09-17

申请人： Shu-Lin Chen ,  Stanley Chow ,  Christophe Gustave

发明人： Shu-Lin Chen ,  Stanley Chow ,  Christophe Gustave

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06F7/04

CPC分类号： H04L9/3263 ,  H04L63/0823 ,  H04L2209/80 ,  H04W12/06 ,  H04W84/12 ,  H04W88/08

摘要： A method for authenticating an operator of an AP includes: registering the operator's identity with a CA, by providing the operator's identification information and public key; creating a certificate including the foregoing; signing the certificate with the CA's private key; provisioning the AP with the signed certificate; provisioning a client with the CA's public key; sending a request from the client to the AP; generating a signature with the operator's private key; returning a reply to the client, including the AP provisioned certificate signed with the generated signature; using the client provisioned CA's public key to obtain the operator's public key from the certificate received in the reply; and, using the operator's public key obtained from the certificate received in the reply to verify the signature generated with the operator's private key and used by the AP to sign the certificate received in the reply.

摘要翻译： 用于认证AP的运营商的方法包括：通过提供运营商的识别信息和公钥来向CA注册运营商的身份; 创建包括上述的证书; 用CA的私钥签名证书; 为AP提供签名证书; 为客户端提供CA的公钥; 向客户端发送请求; 用操作员的私钥生成签名; 返回给客户的答复，包括使用生成的签名签名的AP配置证书; 使用客户端提供CA的公钥从答复中收到的证书获取运营商的公钥; 并使用从答复中收到的证书获得的运营商的公钥来验证由运营商的私钥生成的签名，并由AP使用签名对答复中收到的证书进行签名。

公开(公告)号：US20080181380A1

公开(公告)日：2008-07-31

申请号：US11898393

申请日：2007-09-12

申请人： Christophe Gustave ,  Stanley Chow

发明人： Christophe Gustave ,  Stanley Chow

IPC分类号： H04M1/56

CPC分类号： H04W12/06 ,  H04L63/0281 ,  H04L63/0823 ,  H04L63/0884 ,  H04L63/1441 ,  H04L63/1483 ,  H04L65/105 ,  H04L65/1069 ,  H04L65/1079 ,  H04M1/57 ,  H04M3/382 ,  H04M3/42059 ,  H04M3/42314 ,  H04M7/006 ,  H04Q3/0045 ,  H04Q2213/13095 ,  H04Q2213/13196 ,  H04Q2213/13339 ,  H04Q2213/13389

摘要： A method of completing a telephone call based on an authenticated caller name proxy, and related proxy, including one or more of the following: a caller dialing the authenticated caller name proxy on behalf of a RealName entity; verifying that the RealName entity is a registered RealName entity; retrieving a list of combinations of user identifications and passwords associated with an appropriate certificate corresponding to the RealName entity; the caller providing a combination of user identification and password to the authenticated caller name proxy; determining that the combination of user identification and password provided to the authenticated caller name proxy by the caller matches an entry in the list of combinations of user identifications and passwords associated with the appropriate certificate corresponding to the RealName entity; the caller providing a called party phone number to the authenticated caller name proxy; the authenticated caller name proxy establishing an authenticated telephone call with the called party on behalf of the RealName entity using the appropriate certificate for the RealName; and means for accomplishing the same.

摘要翻译： 一种基于经认证的呼叫者名称代理和相关代理完成电话呼叫的方法，包括以下一个或多个：呼叫者代表RealName实体拨打经认证的呼叫者名称代理; 验证RealName实体是注册的RealName实体; 检索与与RealName实体相对应的适当证书相关联的用户标识和密码的组合的列表; 呼叫者向认证的呼叫者名称代理提供用户识别和密码的组合; 确定由呼叫者提供给经认证的呼叫者名称代理的用户标识和密码的组合与在与RealName实体相对应的适当证书相关联的用户标识和密码的组合列表中的条目匹配; 呼叫者向被认证的呼叫者名称代理提供被叫方电话号码; 经认证的呼叫者名称代理人使用RealName的适当证书，代表RealName实体建立与被叫方的认证电话; 和完成相同的手段。

公开(公告)号：US20060236353A1

公开(公告)日：2006-10-19

申请号：US11222905

申请日：2005-09-09

申请人： Chun Cheng ,  Jiangtao Wen ,  Michael Rider ,  Stanley Chow

发明人： Chun Cheng ,  Jiangtao Wen ,  Michael Rider ,  Stanley Chow

IPC分类号： H04N7/173

CPC分类号： H04N21/27 ,  H04N7/17318 ,  H04N21/2665 ,  H04N21/47202 ,  H04N21/6125

摘要： The present invention relates generally to multimedia, and more specifically, to a system and method of improved television viewing using automatic parallel recording of television channels. The invention continuously captures and records multimedia content for a set of “channels” in a central location, buffering all available channels for a number of days or weeks on a continuous basis. The buffered programming may then be streamed over a network such as the Internet on request, to the viewer's premises where it can be viewed on request via an appropriate display device such as a television equipped with an IP-enabled set top box or on a personal computer.

摘要翻译： 本发明一般涉及多媒体，更具体地，涉及使用电视频道的自动并行记录来改进电视观看的系统和方法。 本发明在中心位置连续地捕获并记录一组“频道”的多媒体内容，以连续的方式缓冲所有可用频道数天或数周。 缓冲的节目然后可以根据请求在诸如因特网的网络上流式传输到观众的场所，其中可以根据请求通过适当的显示设备（例如配备有启用IP的机顶盒的电视机或个人 电脑。

公开(公告)号：US08181249B2

公开(公告)日：2012-05-15

申请号：US12039817

申请日：2008-02-29

申请人： Stanley Chow ,  Bassem Abdel-Aziz ,  Faud Khan

发明人： Stanley Chow ,  Bassem Abdel-Aziz ,  Faud Khan

IPC分类号： G06F12/14

CPC分类号： H04L63/145 ,  G06F21/566 ,  H04L63/1491

摘要： Methods and systems are presented for detection of malware such as worms in which a network switch entices the malware into sending scan packets by allocating one or more ports as bait addresses, sending outgoing bait packets, and identifying compromised hosts that send unexpected incoming packets to a bait address.

摘要翻译： 提出了用于检测蠕虫的方法和系统，其中网络交换机通过将一个或多个端口分配为诱饵地址，发送传出诱饵分组以及将发送意外的传入分组的受损主机识别到 诱饵地址

公开(公告)号：US20110047032A1

公开(公告)日：2011-02-24

申请号：US12545633

申请日：2009-08-21

申请人： Bharat Kumar ,  Stanley Chow

发明人： Bharat Kumar ,  Stanley Chow

IPC分类号： G06Q30/00

CPC分类号： G06Q30/02 ,  G06Q30/0269

摘要： Various exemplary embodiments relate to a method and related network element including one or more of the following: receiving a plurality of advertisement messages via the communications network, each advertisement message of the plurality of advertisement messages including a set of meta-information which describes the content of an advertisement associated with the advertisement message; determining whether each advertisement message is relevant to the user by comparing the set of meta-information to a set of user preferences associated with the user, the set of user preferences stored locally on the user node; when an advertisement message is determined to not be relevant to the user, discarding the advertisement message; and when an advertisement message is determined to be relevant to the user, providing the user with access to the advertisement associated with the advertisement message.

摘要翻译： 各种示例性实施例涉及包括以下一个或多个的方法和相关网络元件：经由通信网络接收多个广告消息，所述多个广告消息中的每个广告消息包括描述内容的一组元信息 与广告消息相关联的广告; 通过将所述元信息的集合与与所述用户相关联的一组用户偏好进行比较来确定每个广告消息是否与所述用户相关，所述用户偏好集合存储在所述用户节点上; 当确定广告消息与用户不相关时，丢弃广告消息; 并且当确定广告消息与用户相关时，向用户提供对与广告消息相关联的广告的访问。

公开(公告)号：US20090293122A1

公开(公告)日：2009-11-26

申请号：US12124431

申请日：2008-05-21

申请人： Bassem Abdel-Aziz ,  Stanley Chow ,  Shu-Lin Chen

发明人： Bassem Abdel-Aziz ,  Stanley Chow ,  Shu-Lin Chen

IPC分类号： G06F11/00

CPC分类号： H04L63/1416

摘要： Malware detection systems are presented in which a list is constructed of enterprise hosts to or from which each given enterprise network host sends or receives packets within a current measurement period and statistics are accumulated based on two or more measurement period lists, with a count value being derived from the statistics to indicate the number of other hosts to or from which each monitored host sent or received packets, and one or more monitored hosts may be identified as suspected of being infected with slow and/or distributed scanning malware for which the count value exceeds a threshold value.

摘要翻译： 提供了恶意软件检测系统，其中列表是由企业主机构成的，每个企业主机在每个给定的企业网络主机在当前测量周期内发送或接收分组，并且基于两个或更多个测量周期列表累积统计信息，计数值为 从统计信息中导出，以指示每个受监视主机发送或接收的数据包的其他主机的数量，以及一个或多个受监控主机可能被识别为怀疑被慢扫描和/或分布式扫描恶意软件感染，计数值 超过阈值。