-
31.发明申请公开(公告)号:US20120159589A1
公开(公告)日:2012-06-21
申请号:US13409087
申请日:2012-02-29
Applicant: Bin Benjamin Zhu , Min Feng
Inventor: Bin Benjamin Zhu , Min Feng
IPC: G06F21/00
CPC classification number: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
Abstract: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret, keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
-
公开(公告)号:US20120158626A1
公开(公告)日:2012-06-21
申请号:US12969209
申请日:2010-12-15
Applicant: Bin Benjamin Zhu , Hyunsang Choi , Heejo Lee
Inventor: Bin Benjamin Zhu , Hyunsang Choi , Heejo Lee
CPC classification number: G06F21/56 , H04L63/1408
Abstract: This document describes techniques for using features extracted from a URL to detect a malicious URL and categorize the malicious URL as one of a phishing URL, a spamming URL, a malware URL or a multi-type attack URL. The techniques employ one or more machine learning algorithms to train classification models using a set of training data which includes a known set of benign URLs and a known set of malicious URLs. The classification models are then employed to detect and/or categorize a malicious URL.
Abstract translation: 本文档描述了使用从URL提取的功能来检测恶意URL并将恶意URL分类为网络钓鱼URL,垃圾邮件URL,恶意软件URL或多类型攻击URL之一的技术。 该技术采用一种或多种机器学习算法来训练使用包括一组已知的良性URL和一组已知的恶意URL的一组训练数据的分类模型。 然后使用分类模型来检测和/或分类恶意URL。
-
公开(公告)号:US20090260077A1
公开(公告)日:2009-10-15
申请号:US12101166
申请日:2008-04-11
Applicant: Bin Benjamin Zhu , Min Feng , Aimin Pan , Yuan Kong , Nathan C. Sherman , Hui Fan , Rui Guo , Josh Benaloh
Inventor: Bin Benjamin Zhu , Min Feng , Aimin Pan , Yuan Kong , Nathan C. Sherman , Hui Fan , Rui Guo , Josh Benaloh
CPC classification number: G06F21/34 , G06F21/40 , G06F21/41 , G06F21/46 , H04L63/083
Abstract: A security-enhanced login technique that provides a convenient and easy-to-use two factor technique to enhance the security of passwords without requiring any changes on the server side of a client-server network. The technique employs a convenient and easy-to-use two-factor technique to generate strong passwords for Web and other applications. In this technique, a convenient or personal device such as a mouse is used as the other factor besides a user password. A secret stored in the mouse or other personal device is hashed together with the password entered by a user and the server ID, to generate a strong, server-specific password which is used to authenticate the user to the server. This password enhancement operation is carried out inside the personal device.
Abstract translation: 一种安全增强的登录技术,提供了一种方便易用的双因素技术来增强密码的安全性,而不需要在客户端 - 服务器网络的服务器端进行任何更改。 该技术采用方便易用的双因素技术为Web和其他应用程序生成强大的密码。 在这种技术中,除了用户密码之外,还使用诸如鼠标之类的便利的或个人的设备作为另一个因素。 存储在鼠标或其他个人设备中的秘密与用户输入的密码和服务器ID一起被散列,以生成用于向服务器认证用户的强大的服务器专用密码。 该密码增强操作在个人设备内部进行。
-
公开(公告)号:US20090175442A1
公开(公告)日:2009-07-09
申请号:US11970161
申请日:2008-01-07
Applicant: Min Feng , Bin Benjamin Zhu
Inventor: Min Feng , Bin Benjamin Zhu
CPC classification number: H04L63/0407 , G06F21/10 , G06F21/6245 , H04L9/0833 , H04L9/302 , H04L9/3073 , H04L9/3257 , H04L63/0442 , H04L63/126 , H04L2209/56 , H04L2209/603 , H04L2463/062 , H04L2463/101 , Y10S705/901 , Y10S705/902 , Y10S705/904 , Y10S705/908
Abstract: Technologies for a Consumer Privacy Digital Rights Management system based on stable partially blind signatures that enable a license server to provide licenses for delivery to users without knowing the corresponding digital contents that users access with the license. Therefore consumer privacy is protected during license acquisition. Further, if the client DRM module in the DRM system does not disclose any information about a user's digital content access, and the messages that the client DRM module sends out are in plain text enabling verification that the client DRM module is not disclosing such information, then consumer privacy is fully protected by the DRM system.
Abstract translation: 基于稳定的部分盲签名的消费者隐私数字版权管理系统的技术,使得许可证服务器能够在不知道用户使用许可证访问的相应数字内容的情况下,向用户提供许可证。 因此,许可证获取期间保护消费者的隐私。 此外,如果DRM系统中的客户端DRM模块没有透露关于用户的数字内容访问的任何信息,并且客户端DRM模块发送的消息是纯文本的,使得能够验证客户端DRM模块没有公开这样的信息, 那么消费者隐私就被DRM系统完全保护。
-
35.发明授权公开(公告)号:US09083514B2
公开(公告)日:2015-07-14
申请号:US13371427
申请日:2012-02-11
Applicant: Bin Benjamin Zhu , Min Feng
Inventor: Bin Benjamin Zhu , Min Feng
CPC classification number: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
Abstract: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret, keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
-
Patent Agency Ranking
公开(公告)号:US09009657B2
公开(公告)日:2015-04-14
申请号:US12106300
申请日:2008-04-20
Applicant: Bin Benjamin Zhu , Rui Guo , Min Feng , Aimin Pan
Inventor: Bin Benjamin Zhu , Rui Guo , Min Feng , Aimin Pan
CPC classification number: G06F21/53 , G06F2221/2119 , H04L63/10 , H04L63/168 , H04L67/02
Abstract: A component-oriented web mashup system and method for communicating between component-oriented Web gadgets to facilitate secure Web mashups. Embodiments of the system and method redefine the traditional definition of gadget to mean a Web component having a verifiable controlled communication channel (a CompoWeb gadget). A CompoWeb gadget is created and defined using new HTML tags and global script objects and functions that extend the functions of the browser. CompoWeb gadget content is treated as a component that is isolated from other gadgets and frames by a browser, and only those allowed access can view data and code therein. Called functions of a CompoWeb gadget are run in the callee's environment instead of the caller's environment. This adds security, because all the requesting CompoWeb gadget receives is the run result. Embodiments of the system and method also include delayed binding of CompoWeb gadgets, such that binding is performed at run time.
Abstract translation: 面向组件的Web混搭系统和方法,用于在面向组件的Web小配件之间进行通信,以促进安全的Web混搭。 系统和方法的实施例重新定义了小工具的传统定义,意味着具有可验证的受控通信通道(CompoWeb小工具)的Web组件。 使用新的HTML标签和扩展浏览器功能的全局脚本对象和功能来创建和定义CompoWeb小工具。 CompoWeb小工具内容被视为与浏览器与其他小工具和框架隔离的组件,只有那些允许的访问可以在其中查看数据和代码。 调用CompoWeb小工具的功能是在被调用者的环境中运行,而不是调用者的环境。 这增加了安全性,因为所有请求的CompoWeb小工具都是运行结果。 系统和方法的实施例还包括CompoWeb小工具的延迟绑定,使得在运行时执行绑定。
-
公开(公告)号:US08957868B2
公开(公告)日:2015-02-17
申请号:US13152272
申请日:2011-06-03
Applicant: Bin Benjamin Zhu , Maowei Yang , Xuyong Yang , Shipeng Li
Inventor: Bin Benjamin Zhu , Maowei Yang , Xuyong Yang , Shipeng Li
IPC: G09G3/30 , G06F3/0488
CPC classification number: G06F3/04886 , G06F3/0233 , G06F3/041 , G06F3/04883 , G06F2203/04104 , G06F2203/04808
Abstract: This document describes tools associated with symbol entry control functions. In some implementations, the tools identify a first finger that is in tactile contact with a touch screen. The first finger can select a subset of symbols from a plurality of symbols that can be entered via the touch screen. The tools can also identify whether one or more other fingers are in concurrent tactile contact with the first finger on the touch screen. The tools can select an individual symbol from the subset based on whether the one or more other fingers are in concurrent tactile contact with the first finger on the touch screen.
Abstract translation: 本文档描述与符号输入控制功能相关的工具。 在一些实施方式中,工具识别与触摸屏触觉接触的第一手指。 第一手指可以从可以经由触摸屏输入的多个符号中选择符号子集。 工具还可以识别一个或多个其他手指是否与触摸屏上的第一手指同时触觉地接触。 所述工具可以基于所述一个或多个其他手指是否与所述触摸屏上的所述第一手指同时触觉地接触来从所述子集中选择单个符号。
-
公开(公告)号:US08539338B2
公开(公告)日:2013-09-17
申请号:US13083835
申请日:2011-04-11
Applicant: Bin Benjamin Zhu , Aimin Pan , Kaimin Zhang , Shipeng Li
Inventor: Bin Benjamin Zhu , Aimin Pan , Kaimin Zhang , Shipeng Li
IPC: G06F17/00
CPC classification number: H04L67/1095 , G06F17/30902 , H04L67/2842
Abstract: A cooperative rendering cache browser (CRC-Browser) for a mobile device may cooperatively manage cached content with a proxy server to reduce redundant transmissions of processed Web data. Additionally, the CRC-Browser may provide stateful, thin-client Web browsing to maintain synchronized information about rendering objects of a Web page. Further, the CRC-Browser may cache only stable and/or visible document object model (DOM) elements and communicate a list of IDs of the cached elements to the proxy. Such stateful thin-client browsers may be useful for reducing battery drain, poor responsiveness, and high wireless network costs of mobile Web browsing.
Abstract translation: 用于移动设备的协作呈现缓存浏览器(CRC-Browser)可以与代理服务器协同地管理高速缓存的内容,以减少已处理的Web数据的冗余传输。 另外,CRC浏览器可以提供有状态的瘦客户端Web浏览以维护关于网页的呈现对象的同步信息。 此外,CRC-Browser可以仅缓存稳定和/或可见的文档对象模型(DOM)元素,并将缓存的元素的ID列表传递给代理。 这种有状态的瘦客户机浏览器可能有助于减少电池消耗,响应速度差以及移动网页浏览的高无线网络成本。
-
39.发明申请MACHINE-LEARNING BASED CLASSIFICATION OF USER ACCOUNTS BASED ON EMAIL ADDRESSES AND OTHER ACCOUNT INFORMATION 有权基于电子邮件地址和其他帐户信息的用户账户的基于机器学习的分类公开(公告)号:US20130185230A1
公开(公告)日:2013-07-18
申请号:US13349306
申请日:2012-01-12
Applicant: Bin Benjamin Zhu , Fei Xue
Inventor: Bin Benjamin Zhu , Fei Xue
CPC classification number: G06N99/005 , G06F21/31 , G06F21/41 , G06F21/552 , G06F21/57 , G06F2221/2113 , G06F2221/2117 , G06Q10/107 , H04L51/12
Abstract: A trust level of an account is determined at least partly based on a degree of the memorability of an email address associated with the account. Additional features such as those based on the domain of the email address and those from the additional information such as name, phone number, and address associated with the account may also be used to determine the trust level of the account. A machine learning process may be used to learn a classification model based on one or more features that distinguish a malicious account from a benign account from training data. The classification model is used to determine a trust level of the account, and/or if the account is malicious or benign, and may be continuously improved by incrementally adapting or improving the model with new accounts.
Abstract translation: 至少部分地基于与帐户相关联的电子邮件地址的可记忆度来确定帐户的信任级别。 诸如那些基于电子邮件地址域的附加功能以及来自附加信息(例如姓名,电话号码和与该帐户相关联的地址)的功能也可用于确定该帐户的信任级别。 可以使用机器学习过程来基于将恶意帐户与良性帐户与训练数据区分开的一个或多个特征来学习分类模型。 分类模型用于确定帐户的信任级别和/或帐户是恶意的还是良性的,并且可以通过使用新帐户逐步适应或改进模型来不断地改进。
-
公开(公告)号:US20130060726A1
公开(公告)日:2013-03-07
申请号:US13666814
申请日:2012-11-01
Applicant: Shipeng Li , Yang Yang , Bin Benjamin Zhu , Rui Guo , Linjun Yang
Inventor: Shipeng Li , Yang Yang , Bin Benjamin Zhu , Rui Guo , Linjun Yang
IPC: G06N5/02
CPC classification number: G06N5/022 , G06F2221/2133 , G06N3/12 , G06N3/126 , G06N5/04 , H04L63/1416
Abstract: Technologies for a human computation framework suitable for answering common sense questions that are difficult for computers to answer but easy for humans to answer. The technologies support solving general common sense problems without a priori knowledge of the problems; support for determining whether an answer is from a bot or human so as to screen out spurious answers from bots; support for distilling answers collected from human users to ensure high quality solutions to the questions asked; and support for preventing malicious elements in or out of the system from attacking other system elements or contaminating the solutions produced by the system, and preventing users from being compensated without contributing answers.
Abstract translation: 适用于人类计算框架的技术,适用于回答计算机难以回答但易于人类回答的常识问题。 这些技术支持解决普通常识问题,而无需事先知晓的问题; 支持确定答案是来自机器人还是人类,以便从机器人中筛选出错误的答案; 支持从人类用户收集的答案,以确保问题的高质量解决方案; 并且支持防止系统内部或外部的恶意元件攻击其他系统元件或污染系统产生的解决方案,并防止用户在没有贡献答案的情况下进行补偿。
-
-
-
-
-
-
-
-
-
Search Results
44
records
(took 0.024 seconds)
