公开(公告)号：US20110314558A1

公开(公告)日：2011-12-22

申请号：US12816966

申请日：2010-06-16

申请人： Zhexuan Song ,  Jesus Molina

发明人： Zhexuan Song ,  Jesus Molina

IPC分类号： G06F21/00

CPC分类号： G06F21/316

摘要： A method for authenticating access to an electronic document. The method includes receiving an authentication request from a user, receiving an aggregate risk score, selecting an authentication mechanism based at least on the aggregate risk score, and applying the authentication mechanism to decide the authentication request from the user. The aggregate risk score may be based at least on a comparison of the user's past behavior with a plurality of context data associated with the user.

摘要翻译： 用于认证对电子文档的访问的方法。 所述方法包括从用户接收认证请求，接收聚合风险评分，至少基于所述总体风险评分选择认证机制，以及应用所述认证机制来确定来自所述用户的认证请求。 总体风险分数可以至少基于用户的过去行为与与用户相关联的多个上下文数据的比较。

公开(公告)号：US08776057B2

公开(公告)日：2014-07-08

申请号：US13151757

申请日：2011-06-02

申请人： Zhexuan Song

发明人： Zhexuan Song

IPC分类号： G06F9/46 ,  G06F15/173 ,  G06F9/455

CPC分类号： G06F11/3003 ,  G06F9/45558 ,  G06F11/3058 ,  G06F11/3093 ,  G06F11/3476 ,  G06F2009/45562 ,  G06F2009/45591 ,  G06F2201/815 ,  G06F2201/865

摘要： In accordance with some embodiments of the present disclosure a method for providing evidence of a physical location of a virtual machine comprises launching, by an information technology (IT) resource, a virtual machine from a virtual machine image. The method further comprises generating, by the IT resource, a chain entry in a physical presence chain of the virtual machine image, the chain entry including an identifier of the IT resource indicating that the IT resource launched the virtual machine.

摘要翻译： 根据本公开的一些实施例，用于提供虚拟机的物理位置的证据的方法包括通过信息技术（IT）资源从虚拟机映像发起虚拟机。 所述方法还包括由所述IT资源生成所述虚拟机映像的物理存在链中的链条目，所述链条目包括指示所述IT资源启动所述虚拟机的所述IT资源的标识符。

公开(公告)号：US20120265357A1

公开(公告)日：2012-10-18

申请号：US13085803

申请日：2011-04-13

申请人： Zhexuan Song ,  Indradeep GHOSH

发明人： Zhexuan Song ,  Indradeep GHOSH

IPC分类号： G06F1/26

CPC分类号： G06Q10/06 ,  G01D4/002 ,  Y02B70/3266 ,  Y02B90/241 ,  Y02P90/82 ,  Y04S20/242 ,  Y04S20/32

摘要： In one embodiment, one or more electronic devices access energy-consumption data at each of a plurality of electricity-consuming devices, the energy-consumption data at each of the electricity-consuming devices indicating for each of a plurality of past pre-determined time periods an aggregate energy usage by the electricity-consuming device over the past pre-determined time period, an energy-measurement unit at the electricity-consuming device having measured and recorded the aggregate energy usage by the electricity-consuming device for each of the past pre-determined time periods for later access, each of the energy-measurement units having a substantially unique identifier (ID), each of the electricity-consuming devices having its own one of the energy-measurement units; and based on the energy-consumption data, determine one or more energy-consumption patterns across the electricity-consuming devices over at least the past pre-determined time periods.

摘要翻译： 在一个实施例中，一个或多个电子设备在多个耗电设备中的每一个处访问能耗数据，每个耗电设备的能量消耗数据针对多个过去的预定时间 在耗电装置的能量测量单元测量和记录耗电设备的每一个过去的总能量使用量的时间段期间耗电装置在过去预定时间段内的总能量消耗 用于稍后进入的预定时间段，每个能量测量单元具有基本唯一的标识符（ID），每个耗电设备具有其自己的一个能量测量单元; 并且基于能量消耗数据，至少在过去的预定时间段内确定穿过耗电装置的一个或多个能量消耗模式。

公开(公告)号：US08843650B2

公开(公告)日：2014-09-23

申请号：US13346574

申请日：2012-01-09

申请人： Zhexuan Song ,  Joseph Gordon

发明人： Zhexuan Song ,  Joseph Gordon

IPC分类号： G06F15/16

CPC分类号： H04L63/10 ,  G06F9/4406 ,  G06F21/575 ,  H04L63/126

摘要： A system for trusted network booting of a server. The system may include a booting server that may contain a booting image and a network server that may boot with the booting image from the booting server. The network server may include a trust anchor that measures the booting image. The system may further include a network controller that controls access to a network. The network controller may verify the measurement of the booting image before allowing the network server to access the network.

摘要翻译： 用于服务器的可信网络引导的系统。 系统可以包括可以包含引导映像的引导服务器和可以从引导服务器引导引导映像的网络服务器。 网络服务器可以包括测量引导图像的信任锚点。 该系统还可以包括控制对网络的访问的网络控制器。 网络控制器可以在允许网络服务器访问网络之前验证引导图像的测量。

公开(公告)号：US08505103B2

公开(公告)日：2013-08-06

申请号：US12556148

申请日：2009-09-09

申请人： Zhexuan Song ,  Jesus Molina ,  Joseph Gordon

发明人： Zhexuan Song ,  Jesus Molina ,  Joseph Gordon

IPC分类号： G11C7/00

CPC分类号： H04L63/1433 ,  G06F21/53 ,  G06F21/552 ,  G06F21/57 ,  G06F2221/2105 ,  G06F2221/2149 ,  H04L63/145

摘要： A target computing environment is secured by a hardware trust anchor that provides a trust state of the target computing environment based upon a security audit of the target computing environment. And diagnosing the target computing environment can be diagnosed by the hardware trust anchor according to the security diagnostic information.

摘要翻译： 目标计算环境由硬件信任锚保护，所述硬件信任锚基于目标计算环境的安全审核来提供目标计算环境的信任状态。 根据安全诊断信息可以通过硬件信任锚来诊断目标计算环境。

公开(公告)号：US20130055228A1

公开(公告)日：2013-02-28

申请号：US13220298

申请日：2011-08-29

申请人： Zhexuan Song ,  Seigo Kotani

发明人： Zhexuan Song ,  Seigo Kotani

IPC分类号： G06F9/445 ,  G06F9/44

CPC分类号： G06F8/654

摘要： According to one embodiment, a system includes a memory and a processor. The processor receives a message that includes a patch for installation and one or more requirements to be satisfied before the patch can be installed. The patch is configured to update the computing system. The processor also repeatedly collects information from one or more sensors until it is determined, based on the collected information, that the one or more requirements have been satisfied. Upon determining that the one or more requirements have been satisfied, the processor further conducts an installation process of the patch on the computing system. Upon determining that the installation process of the patch is finished, the processor further transmits a confirmation report indicating whether the patch was successfully installed. The confirmation report is generated and signed by a unique element associated with the computing system.

摘要翻译： 根据一个实施例，系统包括存储器和处理器。 处理器收到包含用于安装的补丁的消息，以及在安装补丁之前要满足的一个或多个要求。 该补丁配置为更新计算系统。 处理器还从一个或多个传感器重复地收集信息，直到基于所收集的信息确定满足一个或多个要求。 当确定满足一个或多个要求时，处理器进一步在计算系统上执行补丁的安装过程。 在确定补丁的安装过程完成后，处理器进一步发送指示补丁是否已成功安装的确认报告。 确认报告由与计算系统相关联的唯一元素生成和签名。

公开(公告)号：US08745747B2

公开(公告)日：2014-06-03

申请号：US12651269

申请日：2009-12-31

申请人： Zhexuan Song ,  Jesus Molina ,  Joseph Gordon

发明人： Zhexuan Song ,  Jesus Molina ,  Joseph Gordon

IPC分类号： H04L29/06

CPC分类号： H04L63/1416 ,  G06F21/554 ,  G06F21/86 ,  G06F2221/2105 ,  G06F2221/2129 ,  G06F2221/2143 ,  G06F2221/2151

摘要： An event condition is checked, using a computer and data content of the computer is additionally protected in relation to a normal data protection according to the event condition. The event condition is detecting by the computer a remote command and/or detecting a state according to a policy.

摘要翻译： 使用计算机检查事件条件，并根据事件条件对计算机的数据内容进行相对于正常数据保护的附加保护。 事件条件是由计算机检测远程命令和/或根据策略检测状态。

公开(公告)号：US08689342B2

公开(公告)日：2014-04-01

申请号：US12651269

申请日：2009-12-31

申请人： Zhexuan Song ,  Jesus Molina ,  Joseph Gordon

发明人： Zhexuan Song ,  Jesus Molina ,  Joseph Gordon

IPC分类号： H04L29/06

摘要： An event condition is checked, using a computer and data content of the computer is additionally protected in relation to a normal data protection according to the event condition. The event condition is detecting by the computer a remote command and/or detecting a state according to a policy.

公开(公告)号：US20130262265A1

公开(公告)日：2013-10-03

申请号：US13431392

申请日：2012-03-27

申请人： Zhexuan Song ,  Hengliang Zhang

发明人： Zhexuan Song ,  Hengliang Zhang

IPC分类号： G06Q30/06 ,  G06F21/00

CPC分类号： G06Q20/1235 ,  G06F21/105 ,  G06F21/629 ,  G06F2221/0735 ,  G06Q10/0631 ,  G06Q20/127 ,  G06Q50/184 ,  G06Q2220/18 ,  H04L2209/56

摘要： A method for managing software licenses in a cloud environment includes receiving, by a license services system associated with the cloud environment, a request to use a first application from a first user associated with a first subscribing entity, and receiving, by the license services system, a request to use a second application from a second user associated with a second subscribing entity. The method also includes permitting, by the license services system, the first user to execute the first application if a license for the first application is available to the first subscribing entity, and permitting, by the license service system, the second user to execute the second application if a license for the second application is available to the second subscribing entity.

公开(公告)号：US20130064365A1

公开(公告)日：2013-03-14

申请号：US13228786

申请日：2011-09-09

申请人： Zhexuan Song

发明人： Zhexuan Song

IPC分类号： H04L9/14

CPC分类号： H04L9/088

摘要： In one embodiment, receive a first request in connection with accessing a set of encrypted data, wherein the set of encrypted data has an expiration date; the first request comprises a first key associated with the expiration date; and the set of encrypted data has been encrypted using the first key. Validate the first key by comparing the expiration date against a current time. Generate a second key for decrypting the set of encrypted data using the first key only if the expiration date has not passed.

摘要翻译： 在一个实施例中，接收与访问一组加密数据有关的第一请求，其中所述一组加密数据具有到期日期; 所述第一请求包括与所述到期日期相关联的第一密钥; 并且该加密数据集已经使用第一密钥加密。 通过将有效期与当前时间进行比较来验证第一个密钥。 只有在到期日期尚未通过时，才能使用第一个密钥生成用于解密加密数据集的第二个密钥。