公开(公告)号：US08434143B2

公开(公告)日：2013-04-30

申请号：US13491346

申请日：2012-06-07

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F9/00 ,  H04L29/06

CPC分类号： H04L63/0281 ,  H04L29/06027 ,  H04L29/12094 ,  H04L61/1529 ,  H04L61/2521 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/029 ,  H04L65/1006 ,  H04L65/1009 ,  H04L65/1043 ,  H04L65/1066 ,  H04L69/22

摘要： Methods and systems for an intelligent network protection gateway (NPG) and network architecture are provided. According to one embodiment, a firewall provides network-layer protection to internal hosts against unauthorized access by hosts of an external network by performing network address translation (NAT) processing of Internet Protocol (IP) addresses. The firewall changes data in headers of VoIP packets and corresponding data contents of the VoIP packets, to enable bi-directional VoIP communications. An external VoIP interface of the firewall receives incoming VoIP packets having a user alias (e.g., an email address) and an indication regarding a VoIP port of external interface. The packets are directed to an appropriate internal host by the firewall performing port address forwarding based on the port indication to a Media Gateway Control Protocol (MGCP) media gateway within the internal network that maintains a mapping of user aliases to private addresses of the internal hosts.

摘要翻译： 提供了智能网络保护网关（NPG）和网络架构的方法和系统。 根据一个实施例，防火墙通过执行因特网协议（IP）地址的网络地址转换（NAT）处理，为内部主机提供网络层保护，防止外部网络的主机的未经授权的访问。 防火墙改变VoIP报文头部的数据和VoIP数据包的相应数据内容，实现双向VoIP通信。 防火墙的外部VoIP接口接收具有用户别名（例如，电子邮件地址）的传入VoIP分组以及关于外部接口的VoIP端口的指示。 数据包被防火墙根据端口指示执行端口地址转发指向适当的内部主机，内部网络中的媒体网关控制协议（MGCP）媒体网关将用户别名映射到内部主机的私有地址 。

公开(公告)号：US08286246B2

公开(公告)日：2012-10-09

申请号：US11837053

申请日：2007-08-10

申请人： Xu Zhou ,  Lin Huang ,  Michael Xie

发明人： Xu Zhou ,  Lin Huang ,  Michael Xie

IPC分类号： G06F11/00 ,  G06F11/30

CPC分类号： G06F21/568 ,  G06F12/1009 ,  G06F21/562 ,  G06F21/564 ,  G06F21/565 ,  G06F21/567 ,  G06F2212/1052 ,  G06F2212/152 ,  G06F2212/657

摘要： Various embodiments of the present invention provide circuits and methods for improved virus processing. As one example, such methods may include providing a system memory, a general purpose processor and a virus co-processor. The methods further include receiving a data segment at the general purpose processor, and storing the data segment to the system memory using virtual addresses. The data segment is accessed from the system memory by the virus co-processor using the virtual addresses. The virus co-processor then scans the data segment for viruses and returns a result.

摘要翻译： 本发明的各种实施例提供了用于改进病毒处理的电路和方法。 作为一个示例，这样的方法可以包括提供系统存储器，通用处理器和病毒协处理器。 所述方法还包括在通用处理器处接收数据段，并使用虚拟地址将数据段存储到系统存储器。 使用虚拟地址由病毒协处理器从系统存储器访问数据段。 病毒协处理器然后扫描数据段的病毒并返回结果。

公开(公告)号：US08201236B2

公开(公告)日：2012-06-12

申请号：US13229134

申请日：2011-09-09

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F9/00 ,  G06F7/04 ,  H04L29/06

CPC分类号： H04L63/0281 ,  H04L29/06027 ,  H04L29/12094 ,  H04L61/1529 ,  H04L61/2521 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/029 ,  H04L65/1006 ,  H04L65/1009 ,  H04L65/1043 ,  H04L65/1066 ,  H04L69/22

摘要： Methods and systems for an intelligent network protection gateway (NPG) are provided. According to one embodiment, a firewall prevents unauthorized network-lawyer access to internal hosts by hosts of an external network by performing network address translation (NAT) processing of Internet Protocol (IP) addresses. The firewall changes data in headers of VoIP packets and corresponding data contents of the VoIP packets, to enable bi-directional VoIP communications. An external VoIP interface of the firewall facilitates concurrent management of multiple incoming VoIP calls by providing multiple VoIP ports and advertising multiple IP address/VoIP port pairs corresponding to internal hosts. When incoming VoIP packets are received, the packets are directed to an appropriate internal host by the firewall performing port forwarding based on a port indication contained within the packets to a server or gatekeeper within the internal network that maintains a mapping of user aliases to private addresses of the internal hosts.

摘要翻译： 提供了智能网络保护网关（NPG）的方法和系统。 根据一个实施例，防火墙通过执行因特网协议（IP）地址的网络地址转换（NAT）处理来防止未授权的网络律师通过外部网络的主机访问内部主机。 防火墙改变VoIP报文头部的数据和VoIP数据包的相应数据内容，实现双向VoIP通信。 防火墙的外部VoIP接口通过提供多个VoIP端口和广告对应于内部主机的多个IP地址/ VoIP端口对来促进多个传入VoIP呼叫的并发管理。 当接收到传入的VoIP数据包时，防火墙将数据包通过防火墙执行端口转发指向适当的内部主机，该端口转发将包含在数据包中的端口指示发送给维护用户别名映射到专用地址的内部网络内的服务器或网守 的内部主机。

公开(公告)号：US20120102196A1

公开(公告)日：2012-04-26

申请号：US13343780

申请日：2012-01-05

申请人： Joseph Wells ,  Michael Xie

发明人： Joseph Wells ,  Michael Xie

IPC分类号： G06F15/16

CPC分类号： H04L63/1416 ,  H04L43/04 ,  H04L43/10 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： A device for detecting network traffic content is provided. The device includes a processor configured to receive a signature associated with content desired to be detected, and execute one or more functions based on the signature to determine whether network traffic content matches the content desired to be detected. The signature is defined by one or more predicates. A computer readable medium for use to detect network traffic content is also provided. The computer readable medium includes a memory storing one or more signatures, each of the one or more signatures associated with content desired to be detected. Each of the one or more signatures is defined by one or more predicates, and each of the one or more predicates can be compiled into a byte code stream that controls a logic of a network traffic screening device.

摘要翻译： 提供了一种用于检测网络流量内容的设备。 该设备包括被配置为接收与期望被检测的内容相关联的签名的处理器，并且基于该签名来执行一个或多个功能，以确定网络流量内容是否与期望被检测的内容匹配。 签名由一个或多个谓词定义。 还提供了一种用于检测网络流量内容的计算机可读介质。 计算机可读介质包括存储一个或多个签名的存储器，所述一个或多个签名中的每一个与期望被检测的内容相关联。 一个或多个签名中的每一个由一个或多个谓词定义，并且一个或多个谓词中的每一个可以被编译成控制网络流量筛选设备的逻辑的字节码流。

公开(公告)号：US08166547B2

公开(公告)日：2012-04-24

申请号：US11220762

申请日：2005-09-06

申请人： Stephen John Bevan ,  Michael Xie ,  Hongwei Li ,  Wenping Luo ,  Shaohong Wei

发明人： Stephen John Bevan ,  Michael Xie ,  Hongwei Li ,  Wenping Luo ,  Shaohong Wei

IPC分类号： H04L29/06

CPC分类号： H04L67/2814 ,  H04L12/66 ,  H04L41/0893 ,  H04L47/10 ,  H04L47/20 ,  H04L63/0281 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/20 ,  H04L67/10 ,  H04L67/146

摘要： A method and apparatus for managing a transfer of data in a data network identifies data associated with a communication session between a first node and a second node in the data network. Further processing of the communication session occurs when a portion of the communication session meets a criterion and the communication session is permitted to continue when the portion of the communication session does not meet the criterion.

摘要翻译： 用于管理数据网络中的数据传输的方法和装置识别与数据网络中的第一节点和第二节点之间的通信会话相关联的数据。 当通信会话的一部分满足标准时，进行通信会话的进一步处理，并且当通信会话的该部分不符合标准时允许通信会话继续进行通信会话的进一步处理。

公开(公告)号：US08051483B2

公开(公告)日：2011-11-01

申请号：US11000703

申请日：2004-11-30

申请人： Yu Fang ,  Michael Xie

发明人： Yu Fang ,  Michael Xie

IPC分类号： G06F11/30 ,  G06F12/14 ,  G06F9/44

CPC分类号： H04L63/145 ,  G06F21/56 ,  G06F21/567 ,  H04L63/02 ,  H04L63/0227 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441

摘要： A method of updating a content detection module includes obtaining content detection data, and transmitting the content detection data to a content detection module, wherein the transmitting is performed not in response to a request from the content detection module. A method of sending content detection data includes obtaining content detection data, selecting an update station from a plurality of update stations, and sending the content detection data to the selected update station. A method of building a content detection system includes establishing a first communication link between a central station and an update station, the central station configured to transmit content detection data to the update station, and establishing a second communication link between the update station and a content detection module.

摘要翻译： 更新内容检测模块的方法包括：获得内容检测数据，以及将内容检测数据发送到内容检测模块，其中不响应来自内容检测模块的请求来执行发送。 发送内容检测数据的方法包括获取内容检测数据，从多个更新站中选择更新站，并将内容检测数据发送到所选择的更新站。 构建内容检测系统的方法包括建立中心站和更新站之间的第一通信链路，所述中心站被配置为向所述更新站发送内容检测数据，以及在所述更新站和内容之间建立第二通信链路 检测模块。

公开(公告)号：US20110231402A1

公开(公告)日：2011-09-22

申请号：US13153889

申请日：2011-06-06

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F17/30 ,  G06F15/16

CPC分类号： H04L63/1425 ,  H04L41/00 ,  H04L43/08 ,  H04L51/04 ,  H04L51/046 ,  H04L51/12 ,  H04L51/22 ,  H04L63/0245 ,  H04L63/12 ,  H04L67/02

摘要： A method for categorizing network traffic content includes determining a first characterization of the network traffic content determining a first probability of accuracy associated with the first characterization, and categorizing the network traffic content based at least in part on the first characterization and the first probability of accuracy. A method for use in a process to categorize network traffic content includes obtaining a plurality of data, each of the plurality of data representing a probability of accuracy of a characterization of network traffic content, and associating each of the plurality of data with a technique for characterizing network traffic content. A method for categorizing network traffic content includes determining a characterization of the network traffic content, determining a weight value associated with the characterization, and categorizing network traffic content based at least in part on the characterization of the network traffic content and the weight value.

摘要翻译： 用于对网络业务内容进行分类的方法包括：确定网络业务内容的第一表征，确定与第一表征相关联的第一准确概率，以及至少部分地基于第一表征和第一准确概率对网络业务内容进行分类 。 用于分类网络业务内容的过程中使用的方法包括获得多个数据，所述多个数据中的每一个表示网络业务内容的表征的精度的概率，并且将所述多个数据中的每一个与用于 表征网络流量内容。 用于分类网络业务内容的方法包括：至少部分地基于网络业务内容和权重值的表征来确定网络业务内容的表征，确定与表征相关联的权重值，以及对网络业务内容进行分类。

公开(公告)号：US20110219086A1

公开(公告)日：2011-09-08

申请号：US13110266

申请日：2011-05-18

申请人： Kunhua Lin ,  Michael Xie

发明人： Kunhua Lin ,  Michael Xie

IPC分类号： G06F15/16 ,  G06F21/00

CPC分类号： G06Q10/107 ,  H04L51/12 ,  H04L51/34

摘要： Systems and methods for tracking electronic messages and data are provided. According to one embodiment, a linking object insertion routine identifies an electronic mail (email) message as a candidate for user feedback based on the email message having been previously classified as spam by a real-time email spam scanning routine associated with a commercial anti-spam service. The linking object insertion routine facilitates user submission of the user feedback regarding the email message to the commercial anti-spam service by embedding a linking object within the email message. The linking object is configured to automate communication of one or more digital signatures of the email message generated by the real-time email spam scanning routine to the commercial anti-spam service by performing out-of-band signaling with the commercial anti-spam service.

摘要翻译： 提供了跟踪电子信息和数据的系统和方法。 根据一个实施例，链接对象插入例程基于已经被预先分类为垃圾邮件的电子邮件消息来识别电子邮件（电子邮件）消息作为用户反馈的候选者，其通过与商业抗辩的相关联的实时电子邮件垃圾邮件扫描例程， 垃圾邮件服务。 链接对象插入例程通过在电子邮件消息内嵌入链接对象来促进用户将关于电子邮件消息的反馈提交给商业反垃圾邮件服务。 链接对象被配置为通过使用商业反垃圾邮件服务执行带外信令来自动将由实时电子邮件垃圾邮件扫描例程生成的电子邮件消息的一个或多个数字签名通信到商业反垃圾邮件服务 。

公开(公告)号：US07979543B2

公开(公告)日：2011-07-12

申请号：US12403996

申请日：2009-03-13

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F15/173

CPC分类号： H04L63/1425 ,  H04L41/00 ,  H04L43/08 ,  H04L51/04 ,  H04L51/046 ,  H04L51/12 ,  H04L51/22 ,  H04L63/0245 ,  H04L63/12 ,  H04L67/02

摘要： A method for categorizing network traffic content includes determining a first characterization of the network traffic content determining a first probability of accuracy associated with the first characterization, and categorizing the network traffic content based at least in part on the first characterization and the first probability of accuracy. A method for use in a process to categorize network traffic content includes obtaining a plurality of data, each of the plurality of data representing a probability of accuracy of a characterization of network traffic content, and associating each of the plurality of data with a technique for characterizing network traffic content. A method for categorizing network traffic content includes determining a characterization of the network traffic content, determining a weight value associated with the characterization, and categorizing network traffic content based at least in part on the characterization of the network traffic content and the weight value.

摘要翻译： 用于对网络业务内容进行分类的方法包括：确定网络业务内容的第一表征，确定与第一表征相关联的第一准确概率，以及至少部分地基于第一表征和第一准确概率对网络业务内容进行分类 。 用于分类网络业务内容的过程中使用的方法包括获得多个数据，所述多个数据中的每一个表示网络业务内容的表征的精度的概率，并且将所述多个数据中的每一个与用于 表征网络流量内容。 用于分类网络业务内容的方法包括：至少部分地基于网络业务内容和权重值的表征来确定网络业务内容的表征，确定与表征相关联的权重值，以及对网络业务内容进行分类。

公开(公告)号：US20090168651A1

公开(公告)日：2009-07-02

申请号：US12403839

申请日：2009-03-13

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： H04J1/16 ,  G06F15/173

CPC分类号： H04L63/1416 ,  H04L43/04 ,  H04L43/10 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： A method for managing network traffic flow is provided. The method includes receiving network traffic content, storing at least a portion of the network traffic content to a memory, sending a copy of the network traffic content to a processor, which determines whether the network traffic content contains content desired to be detected. Another method for managing network traffic flow includes receiving network traffic content, flagging the network traffic content, sending the flagged network traffic content to a module, which is configured to pass unflagged data to a user and prevent flagged data from being sent to the user, and sending a copy of the network traffic content to a processor, which determines whether the network traffic content contains content desired to be detected.

摘要翻译： 提供了一种管理网络流量的方法。 该方法包括接收网络业务内容，将至少一部分网络业务内容存储到存储器，向处理器发送网络业务内容的副本，该处理器确定网络业务内容是否包含期望被检测的内容。 用于管理网络流量流的另一种方法包括接收网络流量内容，标记网络流量内容，将标记的网络业务内容发送到模块，该模块被配置为将未标记的数据传递给用户，并防止标记的数据被发送给用户， 以及将网络业务内容的副本发送到处理器，处理器确定网络业务内容是否包含期望被检测的内容。