-
公开(公告)号:US20110164506A1
公开(公告)日:2011-07-07
申请号:US12835228
申请日:2010-07-13
IPC分类号: H04L12/56
CPC分类号: H04L43/12 , H04L41/0803
摘要: Embodiments of the present invention include a system or method for inferring packet management rules of a packet management device. A probing device is used to extract at least one of port number and IP address from a packet management configuration file. The probing device classifies extracted numbers and selectively transmits packets to a packet management device. A packet analyzer notifies the probing device when a packet passes through the packet management device. Based on the notification, the probing device is able to transmit packets to the packet management device in a non-exhaustive manner and determine a port range corresponding to a packet management rule.
摘要翻译: 本发明的实施例包括用于推断分组管理设备的分组管理规则的系统或方法。 探测设备用于从分组管理配置文件中提取端口号和IP地址中的至少一个。 探测设备对提取的号码进行分类,并选择性地将数据包发送到数据包管理设备。 分组分析器在分组通过分组管理设备时通知探测设备。 基于该通知,探测装置能够以非穷尽的方式向分组管理装置发送分组,并且确定与分组管理规则相对应的端口范围。
-
公开(公告)号:US20110069721A1
公开(公告)日:2011-03-24
申请号:US12894808
申请日:2010-09-30
申请人: Sushil Jajodia , Shlping Chen , Xinyuan Wang
发明人: Sushil Jajodia , Shlping Chen , Xinyuan Wang
IPC分类号: H04J3/06
CPC分类号: H04L65/607
摘要: A packet flow side channel encoder and decoder embeds and extracts a side channel communication in an overt communication data stream transmitted over a network. The encoder selects more than one group of related packets being transmitted on the network, relates a packet of one group to a packet of another group to form a pair of packets; and delays the timing of at least one packet from each pair of packets The decoder determines inter-packet delays that are the difference in timing between two packets in a pair of packets; determines at least one inter-packet delay difference between two or more determined inter-packet delays; and extracts a bit using the at least one interpacket delay difference.
摘要翻译: 分组流侧信道编码器和解码器在通过网络传输的公开通信数据流中嵌入和提取侧信道通信。 编码器选择在网络上发送的多组相关数据包,将一组数据包与另一组数据包相连,形成一对数据包; 并且延迟来自每对分组的至少一个分组的定时。解码器确定作为一对分组中的两个分组之间的定时差的分组间延迟; 确定两个或多个确定的分组间延迟之间的至少一个分组间延迟差异; 并且使用所述至少一个间隔延迟差提取位。
-
公开(公告)号:US20080137841A1
公开(公告)日:2008-06-12
申请号:US11947164
申请日:2007-11-29
申请人: Sushil Jajodia
发明人: Sushil Jajodia
CPC分类号: H04L9/0894
摘要: Sensitive data associations for related data values are protected. A set of related data values is received. The set of related data values include at least a first data value and a second data value. The first data value is associated with a first data field and the second data value is associated to a second data field. First encrypted data is created by encrypting the first data value using a first encryption key and a second encrypted data is created by encrypting the second data value using a second encryption key. The first data value is stored in a first data table, the second data value is stored in a second data table, the first encrypted data is stored in the second table, and the second encrypted data is stored in the first table.
摘要翻译: 相关数据值的敏感数据关联被保护。 接收一组相关数据值。 所述相关数据值集合包括至少第一数据值和第二数据值。 第一数据值与第一数据字段相关联,并且第二数据值与第二数据字段相关联。 通过使用第一加密密钥加密第一数据值来创建第一加密数据,并且通过使用第二加密密钥加密第二数据值来创建第二加密数据。 将第一数据值存储在第一数据表中,将第二数据值存储在第二数据表中,将第一加密数据存储在第二表中,将第二加密数据存储在第一表中。
-
公开(公告)号:US07127106B1
公开(公告)日:2006-10-24
申请号:US10281191
申请日:2002-10-28
申请人: Johnson Neil , Zoran Duric , Sushil Jajodia
发明人: Johnson Neil , Zoran Duric , Sushil Jajodia
IPC分类号: G06K9/00
CPC分类号: G06K9/4609 , G06K9/527
摘要: Disclosed is a method and apparatus for fingerprinting a first and second image and using the fingerprints of the first and second image to determine if the second image is derived from the first image.
摘要翻译: 公开了一种用于对第一和第二图像进行指纹识别并使用第一和第二图像的指纹以确定第二图像是否从第一图像导出的方法和装置。
-
公开(公告)号:US08935773B2
公开(公告)日:2015-01-13
申请号:US12757675
申请日:2010-04-09
CPC分类号: H04L63/1416 , G06F21/566 , G06F2221/2103 , G06F2221/2119 , H04L63/08 , H04L63/0884 , H04L63/145 , H04L67/02
摘要: A transparent proxy for malware detection includes a monitor module, a protocol determination module, a challenge generation module, a response determination module, and a data control module. The monitor module examines data originating from an application towards a remote server. The protocol determination module identifies the protocol type used for the data. The challenge generation module produces a challenge for the application based upon the protocol type, sends the challenge to the application, and maintains a state related to the data and the challenge. The response determination module makes a determination if an automatic non-interactive application response is received in response to the challenge from the application. The data control module allows the first data to continue to the remote server when the determination is valid. The data control module reports malware detection and blocks the data to continue to the remote server when the determination is invalid.
摘要翻译: 用于恶意软件检测的透明代理包括监视器模块,协议确定模块,质询生成模块,响应确定模块和数据控制模块。 监视器模块将从应用程序发送到远程服务器的数据进行检查。 协议确定模块识别用于数据的协议类型。 挑战生成模块基于协议类型为应用程序产生挑战,向应用程序发送挑战,并维护与数据和挑战相关的状态。 响应确定模块确定响应于来自应用的挑战是否接收到自动非交互式应用响应。 当确定有效时,数据控制模块允许第一数据继续到远程服务器。 当确定无效时,数据控制模块报告恶意软件检测并阻止数据继续到远程服务器。
-
公开(公告)号:US08839422B2
公开(公告)日:2014-09-16
申请号:US12827203
申请日:2010-06-30
申请人: Anup K Ghosh , Sushil Jajodia , Yih Huang , Jiang Wang
发明人: Anup K Ghosh , Sushil Jajodia , Yih Huang , Jiang Wang
CPC分类号: G06F21/53 , G06F9/54 , G06F21/56 , G06F21/568 , G06F2209/541 , G06F2221/034 , H04L63/1408 , H04L63/1483
摘要: An embodiment for providing a secure virtual browsing environment includes creating a virtual browsing environment with a virtualized operating system sharing an operating system kernel of a supporting operating system and executing the browser application within the virtual browsing environment. Another embodiment includes receiving a website selection within a browser application, determining if the website selection corresponds to a secure bookmark, and creating a second virtual browsing environment and executing the browser application within the second virtual browsing environment to access the website selection when the website selection corresponds to a website specified as a secure bookmark. Yet another embodiment includes monitoring operation of the operating system within the at least one virtual browsing environment, determining when the operation of the operating system includes potential malicious activity, and terminating the virtual browsing environment when the operation includes potential malicious activity.
摘要翻译: 用于提供安全虚拟浏览环境的实施例包括利用共享支持操作系统的操作系统内核并在虚拟浏览环境中执行浏览器应用的虚拟操作系统创建虚拟浏览环境。 另一个实施例包括在浏览器应用程序内接收网站选择,确定网站选择是否对应于安全书签,以及创建第二虚拟浏览环境并在第二虚拟浏览环境中执行浏览器应用程序以在网站选择时访问网站选择 对应于指定为安全书签的网站。 另一个实施例包括在至少一个虚拟浏览环境中监视操作系统的操作,确定操作系统的操作何时包括潜在的恶意活动,以及当操作包括潜在的恶意活动时终止虚拟浏览环境。
-
公开(公告)号:US08082452B2
公开(公告)日:2011-12-20
申请号:US11947164
申请日:2007-11-29
申请人: Sushil Jajodia
发明人: Sushil Jajodia
IPC分类号: G06F11/30
CPC分类号: H04L9/0894
摘要: Sensitive data associations for related data values are protected. A set of related data values is received. The set of related data values include at least a first data value and a second data value. The first data value is associated with a first data field and the second data value is associated to a second data field. First encrypted data is created by encrypting the first data value using a first encryption key and a second encrypted data is created by encrypting the second data value using a second encryption key. The first data value is stored in a first data table, the second data value is stored in a second data table, the first encrypted data is stored in the second table, and the second encrypted data is stored in the first table.
摘要翻译: 相关数据值的敏感数据关联被保护。 接收一组相关数据值。 所述相关数据值集合包括至少第一数据值和第二数据值。 第一数据值与第一数据字段相关联,并且第二数据值与第二数据字段相关联。 通过使用第一加密密钥加密第一数据值来创建第一加密数据,并且通过使用第二加密密钥加密第二数据值来创建第二加密数据。 将第一数据值存储在第一数据表中,将第二数据值存储在第二数据表中,将第一加密数据存储在第二表中,将第二加密数据存储在第一表中。
-
公开(公告)号:US20110099620A1
公开(公告)日:2011-04-28
申请号:US12757675
申请日:2010-04-09
IPC分类号: G06F21/00
CPC分类号: H04L63/1416 , G06F21/566 , G06F2221/2103 , G06F2221/2119 , H04L63/08 , H04L63/0884 , H04L63/145 , H04L67/02
摘要: A transparent proxy for malware detection includes a monitor module, a protocol determination module, a challenge generation module, a response determination module, and a data control module. The monitor module examines data originating from an application towards a remote server. The protocol determination module identifies the protocol type used for the data. The challenge generation module produces a challenge for the application based upon the protocol type, sends the challenge to the application, and maintains a state related to the data and the challenge. The response determination module makes a determination if an automatic non-interactive application response is received in response to the challenge from the application. The data control module allows the first data to continue to the remote server when the determination is valid. The data control module reports malware detection and blocks the data to continue to the remote server when the determination is invalid.
摘要翻译: 用于恶意软件检测的透明代理包括监视器模块,协议确定模块,质询生成模块,响应确定模块和数据控制模块。 监视器模块将从应用程序发送到远程服务器的数据进行检查。 协议确定模块识别用于数据的协议类型。 挑战生成模块基于协议类型为应用程序产生挑战,向应用程序发送挑战,并维护与数据和挑战相关的状态。 响应确定模块确定响应于来自应用的挑战是否接收到自动非交互式应用响应。 当确定有效时,数据控制模块允许第一数据继续到远程服务器。 当确定无效时,数据控制模块报告恶意软件检测并阻止数据继续到远程服务器。
-
公开(公告)号:US07720250B2
公开(公告)日:2010-05-18
申请号:US11419800
申请日:2006-05-23
申请人: Sushil Jajodia , Huiping Guo , YingJiu Li
发明人: Sushil Jajodia , Huiping Guo , YingJiu Li
CPC分类号: H04L9/12 , G06T1/005 , G06T2201/0065 , H04L9/3236 , H04L2209/608
摘要: A watermarking system embeds a watermark into data values that may be streamed. A data hash is calculated using data values and a hash key. The data values are grouped. The groups include a first group and a second group. A first group hash is calculated using data values in the first group and a first group hash key. A second group hash is calculated using data values in the second group and a second group hash key. A watermark is constructed based on the first group hash and the second group hash. The value of at least one of the data values in the first group is modified using the watermark.
摘要翻译: 水印系统将水印嵌入到可以流式传输的数据值中。 使用数据值和散列密钥计算数据散列。 数据值被分组。 这些组包括第一组和第二组。 使用第一组中的数据值和第一组散列密钥计算第一组散列。 使用第二组中的数据值和第二组散列密钥来计算第二组散列。 基于第一组散列和第二组散列构造水印。 使用水印修改第一组中的至少一个数据值的值。
-
公开(公告)号:US20060095775A1
公开(公告)日:2006-05-04
申请号:US11250460
申请日:2005-10-17
申请人: Sushil Jajodia , Huiping Guo , Yingjiu Li
发明人: Sushil Jajodia , Huiping Guo , Yingjiu Li
IPC分类号: H04L9/00
CPC分类号: G06F21/64 , G06F17/30483
摘要: Disclosed is a fragile watermarking scheme for detecting and localizing malicious alterations made to a database relation with categorical attributes without introducing distortions to cover data. A watermark for a tuple group may be inserted by selectively switching the position of tuples in tuple pairs using a tuple hash associated with each tuple in the tuple pair; and a corresponding bit in a watermark derived from the tuple group using a embedding key, a primary key and hash functions.
摘要翻译: 公开了一种脆弱的水印方案,用于检测和定位对具有分类属性的数据库关系进行的恶意更改,而不引入失真来覆盖数据。 可以使用与元组对中的每个元组相关联的元组哈希选择性地切换元组中的元组的位置来插入元组的水印; 以及使用嵌入密钥,主键和散列函数从元组组导出的水印中的对应位。
-
-
-
-
-
-
-
-
-
搜索结果
32 条记录 (耗时 0.023 秒)
