公开(公告)号：USD654928S1

公开(公告)日：2012-02-28

申请号：US29379284

申请日：2010-11-17

Applicant: Greg Morrow ,  Rishi Kumar ,  Scott Field ,  Peter Tracy

Designer： Greg Morrow ,  Rishi Kumar ,  Scott Field ,  Peter Tracy

公开(公告)号：US20070006304A1

公开(公告)日：2007-01-04

申请号：US11172373

申请日：2005-06-30

Applicant: Michael Kramer ,  Scott Field ,  Marc Seinfeld

Inventor： Michael Kramer ,  Scott Field ,  Marc Seinfeld

IPC: G06F12/14

CPC classification number: G06F21/554 ,  G06F21/55 ,  G06F21/568 ,  H04L63/1416 ,  H04L63/1441

Abstract: Malware recovery optimization is provided in which malware detection processes and protocol processes on a device are monitored for events indicating a breach of security of the device, such as the presence of an infection or other evidence of a malware attack. The devices report the events for collection on a centralized event collector that issues alerts of the events to other devices that may have been compromised as a result of the breach of security. Upon receipt of the alert, the receiving devices may initiate malware recovery optimization, including activating anti-virus software to initiate a targeted scan of those resources that may have been compromised. In this manner, malware recovery processes are optimized to recover the receiving device and/or resources when indicated.

Abstract translation: 提供了恶意软件恢复优化，其中监视设备上的恶意软件检测过程和协议进程，以指示违反设备安全性的事件，例如是否存在感染或其他恶意软件攻击证据。 这些设备会报告在集中式事件收集器上收集的事件，从而将事件的警报发送到可能由于违反安全性而受到威胁的其他设备。 在接收到警报之后，接收设备可以启动恶意软件恢复优化，包括激活防病毒软件以对可能已经被泄露的那些资源进行有针对性的扫描。 以这种方式，恶意软件恢复过程被优化以在指示时恢复接收设备和/或资源。

公开(公告)号：US20060230452A1

公开(公告)日：2006-10-12

申请号：US11450608

申请日：2006-06-09

Applicant: Scott Field

Inventor： Scott Field

IPC: G06F12/14

CPC classification number: G06F21/56 ,  G06F21/562

Abstract: A system and method for providing enhanced security with regard to obtained files is presented. Upon obtaining a file from an external location, the obtained file is tagged with tagging information regarding the origin of the obtained file. Additionally, an operating system suitable for execution on a computing device is also presented. The operating system includes at least one application-callable function (API) for obtaining content from an external location. Each application-callable function for obtaining content from an external location is configured to associate tagging information with each obtained file, the tagging information comprising the origin of the obtained file. The origin of the obtained file can be used for subsequent security policy decisions, such as whether to allow or block execution or rendering of the content, as well as whether the content will be accessed in a constrained environment such as a “sandbox” or virtual machine.

公开(公告)号：US20060230451A1

公开(公告)日：2006-10-12

申请号：US11100770

申请日：2005-04-07

Applicant: Michael Kramer ,  Kenneth Ray ,  Paul England ,  Scott Field ,  Jonathan Schwartz

Inventor： Michael Kramer ,  Kenneth Ray ,  Paul England ,  Scott Field ,  Jonathan Schwartz

IPC: G06F12/14

CPC classification number: G06F21/51 ,  G06F21/56

Abstract: Systems and methods for validating integrity of an executable file are described. In one aspect, the systems and methods determine that an executable file is being introduced into a path of execution. The executable file is then automatically evaluated in view of multiple malware checks to detect if the executable file represents a type of malware. The multiple malware checks are integrated into an operating system trust verification process along the path of execution.

公开(公告)号：US20060218635A1

公开(公告)日：2006-09-28

申请号：US11090679

申请日：2005-03-25

Applicant: Michael Kramer ,  Art Shelest ,  Carl Carter-Schwendler ,  Gary Henderson ,  Scott Field ,  Sterling Reasor

Inventor： Michael Kramer ,  Art Shelest ,  Carl Carter-Schwendler ,  Gary Henderson ,  Scott Field ,  Sterling Reasor

IPC: G06F12/14

CPC classification number: G06F21/56 ,  G06F21/57 ,  H04L41/0659 ,  H04L41/0816 ,  H04L63/02 ,  H04L63/1441 ,  H04L69/40

Abstract: A system and method for protecting a computer system connected to a communication network from a potential vulnerability. The system and method protects a computer system that is about to undergo or has just undergone a change in state that may result in placing the computer system at risk to viruses, and the like, over a communication network. The system and method first detect an imminent or recent change in state. A security component and a fixing component react to the detection of the change in state. The security component may raise the security level to block incoming network information, other than information from a secure or known location, or information requested by the computer system. The fixing component implements a fixing routine, such as installing missing updates or patches, and on successfully completing the fixing routine, the security level is relaxed or lowered.

公开(公告)号：US20060174318A1

公开(公告)日：2006-08-03

申请号：US11045733

申请日：2005-01-28

Applicant: Art Shelest ,  Pradeep Bahl ,  Scott Field

Inventor： Art Shelest ,  Pradeep Bahl ,  Scott Field

IPC: H04L9/00 ,  G06F17/00 ,  H04K1/00 ,  G06F12/14 ,  G06F11/00 ,  G06F11/22 ,  G06F11/30 ,  G06F11/32 ,  G06F11/34 ,  G06F11/36 ,  G06F12/16 ,  G06F15/18 ,  G08B23/00

CPC classification number: H04L63/10 ,  G06F11/079 ,  G06F21/53 ,  G06F21/554

Abstract: A method and system for selectively excluding a program from a security policy is provided. The security system receives from a user an indication of a program with a problem that is to be excluded from the security policy. When the program executes and a security enforcement event occurs, the security system does not apply the security policy. If the problem appears to be resolved as a result of excluding the program from the security policy, then the user may assume that the security policy is the cause of the problem.

Abstract translation: 提供了一种用于从安全策略中选择性地排除程序的方法和系统。 安全系统从用户接收到具有要从安全策略中排除的问题的程序的指示。 当程序执行并发生安全执行事件时，安全系统不应用安全策略。 如果由于从安全策略中排除程序，问题似乎得到解决，那么用户可能认为安全策略是问题的原因。

公开(公告)号：US20050262342A1

公开(公告)日：2005-11-24

申请号：US11190376

申请日：2005-07-26

Applicant: Scott Field

Inventor： Scott Field

IPC: G06F12/12 ,  G06F12/14 ,  G06F21/00

CPC classification number: G06F12/14 ,  G06F12/126 ,  G06F21/6218 ,  G06F21/78

Abstract: The inventive methods and systems provide an approach to protecting unencrypted sensitive information from being paged out to secondary storage, such as a hard disk, during paging operations. In the described embodiment, a key is provided and is maintained in the main memory of a virtual memory system. Measures are taken to protect the key such as page-locking the key in the main memory to ensure that it never gets paged out to the secondary storage. The described key is a desirably large key that is randomly generated by the operating system. When sensitive information is to be placed in the main memory, it is encrypted with the page-locked key. The encrypted sensitive information can then be paged out to secondary storage without concern about its security. When the encrypted sensitive information is needed by a process or application, it is retrieved from secondary storage and decrypted using the page-locked key. For further protection, the sensitive information can be decrypted into a page-locked page of main memory. More than one key can be used to encrypt and/or decrypt the sensitive information.

公开(公告)号：US20050091487A1

公开(公告)日：2005-04-28

申请号：US10692843

申请日：2003-10-24

Applicant: David Cross ,  Jainrong Gu ,  Duncan Bryce ,  Shishir Pardikar ,  Pradeep Madhavarapu ,  Scott Field ,  Kelvin Yiu

Inventor： David Cross ,  Jainrong Gu ,  Duncan Bryce ,  Shishir Pardikar ,  Pradeep Madhavarapu ,  Scott Field ,  Kelvin Yiu

IPC: G06F12/14 ,  G06F21/00 ,  H04L9/00

CPC classification number: G06F21/10

Abstract: An encrypted file system (EFS) and an underlying file transfer protocol to permit a client to encrypt, decrypt, and transfer file(s) resident on a server are disclosed. A user at a client computer can open, read, and write to encrypted files, including header information associated with encrypted files, and can add users to or remove users from an encrypted file.

Abstract translation: 公开了一种加密文件系统（EFS）和底层文件传输协议，以允许客户机加密，解密和传输驻留在服务器上的文件。 客户端计算机上的用户可以打开，读取和写入加密文件，包括与加密文件相关联的标题信息，并且可以将用户添加到加密文件或从加密文件中删除用户。

公开(公告)号：US10043008B2

公开(公告)日：2018-08-07

申请号：US10977484

申请日：2004-10-29

Applicant: Mihai Costea ,  Scott Field ,  Damodharan Ulagaratchagan

Inventor： Mihai Costea ,  Scott Field ,  Damodharan Ulagaratchagan

IPC: G06F21/56

CPC classification number: G06F21/56 ,  G06F21/562

Abstract: A system and method for efficiently determining that a received file is not malware is presented. In operation, when a file is received at a computing device, an evaluation is made as to whether the file includes user-modifiable, or superficial, data areas, i.e., areas of the file that by their nature do not typically carry or embed malware. If the file includes superficial data areas, those superficial data areas are filtered out and a file signature is generated based on the remaining portions of the received file. The file can then be compared to a list of know malware to determine if the file is malware. Alternatively, the file can be compared to a list of known, trusted files to determine whether the file is trustworthy.

公开(公告)号：USD665422S1

公开(公告)日：2012-08-14

申请号：US29410750

申请日：2012-01-11

Applicant: Greg Morrow ,  Rishi Kumar ,  Scott Field ,  Peter Tracy

Designer： Greg Morrow ,  Rishi Kumar ,  Scott Field ,  Peter Tracy