公开(公告)号：US08631495B2

公开(公告)日：2014-01-14

申请号：US13305029

申请日：2011-11-28

申请人： Paul Judge

发明人： Paul Judge

IPC分类号： G06F11/00

CPC分类号： H04L63/1433 ,  G06F21/554 ,  G06F21/577 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/0263 ,  H04L63/0428 ,  H04L63/14 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： The present invention is directed to systems and methods for detecting unsolicited and threatening communications and communicating threat information related thereto. Threat information is received from one or more sources; such sources can include external security databases and threat information data from one or more application and/or network layer security systems. The received threat information is reduced into a canonical form. Features are extracted from the reduced threat information; these features in conjunction with configuration data such as goals are used to produce rules, in some embodiments, these rules are tested against one or more sets of test data and compared against the same or different goals; if one or more tests fail, the rules are refined until the tests succeed within ah acceptable margin of error. The hues are then propagated to one or more application layer security systems.

摘要翻译： 本发明涉及用于检测未经请求和威胁通信并传达与之有关的威胁信息的系统和方法。 从一个或多个来源收到威胁信息; 这样的源可以包括来自一个或多个应用和/或网络层安全系统的外部安全数据库和威胁信息数据。 收到的威胁信息被缩减为规范的形式。 特征是从减少的威胁信息中提取出来的; 这些特征与诸如目标的配置数据结合使用来产生规则，在一些实施例中，这些规则针对一组或多组测试数据进行测试，并与相同或不同的目标进行比较; 如果一个或多个测试失败，规则将被改进，直到测试在可接受的误差范围内成功。 然后将色调传播到一个或多个应用层安全系统。

公开(公告)号：US07694128B2

公开(公告)日：2010-04-06

申请号：US10384924

申请日：2003-03-06

申请人： Paul Judge ,  Guru Rajan

发明人： Paul Judge ,  Guru Rajan

IPC分类号： H04L9/00

CPC分类号： H04L51/12 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/0263 ,  H04L63/0428 ,  H04L63/1408 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： Systems and methods for secure delivery of electronic communications are provided. A communication transmitted over a communications network is received by a system processor. The system processor selects a secure delivery mechanism for delivering the communication. The system processor attempts to deliver the communication to the predetermined recipient via the selected secure delivery mechanism. Some systems can further provide for determining whether a particular received communication requires secure delivery.

摘要翻译： 提供了用于安全传送电子通信的系统和方法。 通过通信网络发送的通信由系统处理器接收。 系统处理器选择用于传送通信的安全传送机制。 系统处理器尝试经由所选择的安全传递机制将通信传送到预定的接收者。 一些系统可以进一步提供确定特定接收的通信是否需要安全传送。

公开(公告)号：US07519994B2

公开(公告)日：2009-04-14

申请号：US11456803

申请日：2006-07-11

申请人： Paul Judge ,  Guru Rajan

发明人： Paul Judge ,  Guru Rajan

IPC分类号： G06F11/00 ,  H04L9/00

CPC分类号： G06F21/55 ,  H04L63/0227 ,  H04L63/102 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/20

摘要： The present invention is directed to systems and methods for enhancing electronic communication security. An electronic communication is received and stored. A plurality of risk assessments are made with respect to the received communication thereby generating a risk profile associated with the communication. The assessments are made in a sequential manner by assigning the stored communication and index and serially placing the index on queue associated with interrogation engines that perform the various assessments. The index is initially placed in a queue associated with an interrogation engine performing the first type of assessment on the communication. The index is placed in a subsequent queue only after the interrogation engine associated with the prior queue in which the index was placed has assessed the communication. This is repeated until all desired assessments have been performed. Each assessment may result in the output of an assessment indicator that indicates the results of the particular assessment.

摘要翻译： 本发明涉及用于增强电子通信安全性的系统和方法。 接收并存储电子通信。 对所接收到的通信进行多个风险评估，从而生成与通信相关联的风险简档。 通过分配存储的通信和索引并且将索引连续地放置在与执行各种评估的询问引擎相关联的队列上，以顺序的方式进行评估。 索引最初被放置在与询问引擎相关联的队列中，该询问引擎执行通信的第一类型的评估。 只有在与放置索引的先前队列相关联的询问引擎对该通信进行了评估之后，该索引才被放置在后续的队列中。 这一直是重复的，直到进行了所有的期望的评估。 每项评估可能会导致评估指标的输出显示特定评估结果。

公开(公告)号：US07089590B2

公开(公告)日：2006-08-08

申请号：US11218689

申请日：2005-09-02

申请人： Paul Judge ,  Guru Rajan

发明人： Paul Judge ,  Guru Rajan

IPC分类号： G06F11/00

CPC分类号： G06F21/55 ,  H04L63/0227 ,  H04L63/102 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/20

摘要： The present invention is directed to systems and methods for enhancing electronic communication security. An electronic communication is received and stored. A plurality of risk assessments are made with respect to the received communication thereby generating a risk profile associated with the communication. The assessments are made in a sequential manner by assigning the stored communication and index and serially placing the index on queue associated with interrogation engines that perform the various assessments. The index is initially placed in a queue associated with an interrogation engine performing the first type of assessment on the communication. The index is placed in a subsequent queue only after the interrogation engine associated with the prior queue in which the index was placed has assessed the communication. This is repeated until all desired assessments have been performed. Each assessment may result in the output of an assessment indicator that indicates the results of the particular assessment.

公开(公告)号：US20060174341A1

公开(公告)日：2006-08-03

申请号：US11388575

申请日：2006-03-24

申请人： Paul Judge

发明人： Paul Judge

IPC分类号： G06F12/14

CPC分类号： H04L63/1433 ,  G06F21/554 ,  G06F21/577 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/0263 ,  H04L63/0428 ,  H04L63/14 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： The present invention is directed to systems and methods for detecting unsolicited and threatening communications and communicating threat information related thereto. Threat information is received from one or more sources; such sources can include external security databases and threat information data from one or more application and/or network layer security systems. The received threat information is reduced into a canonical form. Features are extracted from the reduced threat information; these features in conjunction with configuration data such as goals are used to produce rules. In some embodiments, these rules are tested against one or more sets of test data and compared against the same or different goals; if one or more tests fail, the rules are refined until the tests succeed within an acceptable margin of error. The rules are then propagated to one or more application layer security systems.

公开(公告)号：US08069481B2

公开(公告)日：2011-11-29

申请号：US11456960

申请日：2006-07-12

申请人： Paul Judge

发明人： Paul Judge

IPC分类号： G06F11/00

CPC分类号： H04L63/1433 ,  G06F21/554 ,  G06F21/577 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/0263 ,  H04L63/0428 ,  H04L63/14 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： The present invention is directed to systems and methods for detecting unsolicited and threatening communications and communicating threat information related thereto. Threat information is received from one or more sources; such sources can include external security databases and threat information data from one or more application and/or network layer security systems. The received threat information is reduced into a canonical form. Features are extracted from the reduced threat information; these features in conjuntion with configuration data such as goals are used to produce rules. In some embodiments, these rules are tested against one or more sets of test data and compared against the same or different goals; if one or more tests fail, the rules are refined until the tests succeed within an acceptable margin of error. The rules are then propagated to one or more application layer security systems.

摘要翻译： 本发明涉及用于检测未经请求和威胁通信并传达与之有关的威胁信息的系统和方法。 从一个或多个来源收到威胁信息; 这样的源可以包括来自一个或多个应用和/或网络层安全系统的外部安全数据库和威胁信息数据。 收到的威胁信息被缩减为规范的形式。 特征是从减少的威胁信息中提取出来的; 这些功能与配置数据（如目标）结合使用来生成规则。 在一些实施例中，这些规则针对一组或多组测试数据进行测试，并与相同或不同的目标进行比较; 如果一个或多个测试失败，则规则将被改进，直到测试在可接受的误差范围内成功。 然后将规则传播到一个或多个应用层安全系统。

公开(公告)号：US20070300286A1

公开(公告)日：2007-12-27

申请号：US11754669

申请日：2007-05-29

申请人： Paul Judge

发明人： Paul Judge

IPC分类号： H04L9/00

CPC分类号： H04L63/1433 ,  G06F21/554 ,  G06F21/577 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/0263 ,  H04L63/0428 ,  H04L63/14 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： The present invention is directed to systems and methods for detecting unsolicited and threatening communications and communicating threat information related thereto. Threat information is received from one or more sources; such sources can include external security databases and threat information data from one or more application and/or network layer security systems. The received threat information is reduced into a canonical form. Features are extracted from the reduced threat information; these features in conjunction with configuration data such as goals are used to produce rules. In some embodiments, these rules are tested against one or more sets of test data and compared against the same or different goals; if one or more tests fail, the rules are refined until the tests succeed within an acceptable margin of error. The rules are then propagated to one or more application layer security systems.

摘要翻译： 本发明涉及用于检测未经请求和威胁通信并传达与之有关的威胁信息的系统和方法。 从一个或多个来源收到威胁信息; 这样的源可以包括来自一个或多个应用和/或网络层安全系统的外部安全数据库和威胁信息数据。 收到的威胁信息被缩减为规范的形式。 特征是从减少的威胁信息中提取出来的; 这些功能与配置数据（如目标）结合使用来生成规则。 在一些实施例中，这些规则针对一组或多组测试数据进行测试，并与相同或不同的目标进行比较; 如果一个或多个测试失败，则规则将被改进，直到测试在可接受的误差范围内成功。 然后将规则传播到一个或多个应用层安全系统。

公开(公告)号：US20060253447A1

公开(公告)日：2006-11-09

申请号：US11456954

申请日：2006-07-12

申请人： Paul Judge

发明人： Paul Judge

IPC分类号： G06F17/30

CPC分类号： H04L63/1433 ,  G06F21/554 ,  G06F21/577 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/0263 ,  H04L63/0428 ,  H04L63/14 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： The present invention is directed to systems and methods for detecting unsolicited and threatening communications and communicating threat information related thereto. Threat information is received from one or more sources; such sources can include external security databases and threat information data from one or more application and/or network layer security systems. The received threat information is reduced into a canonical form. Features are extracted from the reduced threat information; these features in conjunction with configuration data such as goals are used to produce rules. In some embodiments, these rules are tested against one or more sets of test data and compared against the same or different goals; if one or more tests fail, the rules are refined until the tests succeed within an acceptable margin of error. The rules are then propagated to one or more application layer security systems.

摘要翻译： 本发明涉及用于检测未经请求和威胁通信并传达与之有关的威胁信息的系统和方法。 从一个或多个来源收到威胁信息; 这样的源可以包括来自一个或多个应用和/或网络层安全系统的外部安全数据库和威胁信息数据。 收到的威胁信息被缩减为规范的形式。 特征是从减少的威胁信息中提取出来的; 这些功能与配置数据（如目标）结合使用来生成规则。 在一些实施例中，这些规则针对一组或多组测试数据进行测试，并与相同或不同的目标进行比较; 如果一个或多个测试失败，则规则将被改进，直到测试在可接受的误差范围内成功。 然后将规则传播到一个或多个应用层安全系统。

公开(公告)号：US06941467B2

公开(公告)日：2005-09-06

申请号：US10093553

申请日：2002-03-08

申请人： Paul Judge ,  Guru Rajan

发明人： Paul Judge ,  Guru Rajan

IPC分类号： H04L29/06 ,  H04L9/00

CPC分类号： G06F21/55 ,  H04L63/0227 ,  H04L63/102 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/20

摘要： The present invention is directed to systems and methods for enhancing electronic communication security. An electronic communication is received and stored. A plurality of risk assessments are made with respect to the received communication thereby generating a risk profile associated with the communication. The assessments are made in a sequential manner by assigning the stored communication and index and serially placing the index on queue associated with interrogation engines that perform the various assessments. The index is initially placed in a queue associated with an interrogation engine performing the first type of assessment on the communication. The index is placed in a subsequent queue only after the interrogation engine associated with the prior queue in which the index was placed has assessed the communication. This is repeated until all desired assessments have been performed. Each assessment may result in the output of an assessment indicator that indicates the results of the particular assessment.

摘要翻译： 本发明涉及用于增强电子通信安全性的系统和方法。 接收并存储电子通信。 对所接收到的通信进行多个风险评估，从而生成与通信相关联的风险简档。 通过分配存储的通信和索引并且将索引连续地放置在与执行各种评估的询问引擎相关联的队列上，以顺序的方式进行评估。 索引最初被放置在与询问引擎相关联的队列中，该询问引擎执行通信的第一类型的评估。 只有在与放置索引的先前队列相关联的询问引擎对该通信进行了评估之后，该索引才被放置在后续的队列中。 这一直是重复的，直到进行了所有的期望的评估。 每项评估可能会导致评估指标的输出显示特定评估结果。

公开(公告)号：US08789178B2

公开(公告)日：2014-07-22

申请号：US13152269

申请日：2011-06-03

申请人： Nidhi Govindram Kejriwal ,  Paul Judge

发明人： Nidhi Govindram Kejriwal ,  Paul Judge

IPC分类号： G06F12/14 ,  H04L29/06

CPC分类号： H04L63/14 ,  G06F21/566 ,  G06F2221/2119 ,  H04L63/1416 ,  H04L63/168

摘要： An apparatus and system for scoring and grading websites and method of operation. An apparatus receives one or more Uniform Resource Identifiers (URI), requests and receives a resource such as a webpage, and observes the behaviors of an enhanced browser emulator as controlled by javascript provided by the webpage. The enhanced browser emulator tracks behaviors which when aggregated imply malicious intent.

摘要翻译： 网站评分分级和操作方法的设备和系统。 一种装置接收一个或多个统一资源标识符（URI），请求并接收诸如网页的资源，并且观察由网页提供的JavaScript控制的增强浏览器模拟器的行为。 增强的浏览器模拟器跟踪当聚合时意味着恶意的行为。