-
公开(公告)号:US10061785B2
公开(公告)日:2018-08-28
申请号:US15657973
申请日:2017-07-24
申请人: VERISIGN, INC.
CPC分类号: G06F16/21 , H04L61/302
摘要: A system and method for modifying a bulk set of domain names through bulk operations. A request to modify a bulk set of data associated with domain names is received by a registry. A bulk processing engine associated with the registry can analyze the requested update job, and enforce compliance with a set of policies governing the operation of registry. A priority level can also be assigned to the requested job, so that it will be executed before or after other pending jobs. The user can likewise provide user-supplied policies, which can also be validated against the set of registry policies. Data faults can be reduced or eliminated, and update operations can be performed by comparatively inexperienced personnel.
-
公开(公告)号:US09935771B2
公开(公告)日:2018-04-03
申请号:US14860885
申请日:2015-09-22
申请人: VERISIGN, INC.
发明人: Ramakant Pandrangi , Eric Osterweil , Paul Livesay
CPC分类号: H04L9/321 , H04L9/3263 , H04L61/1511 , H04L63/123 , H04L63/126 , H04L63/20
摘要: The disclosure is directed to securely bootstrapping devices in a network environment. Methods and systems include hardware and/or operations for receiving, based on an identifier provisioned at a relying entity, instances of a security credential of an information system, wherein the instances are associated with respective certifying entities. The operations also include verifying the authenticity of the instances of the security credential using information of the certifying entities provisioned at the relying entity. The operations further includes determining matches between the instances of the security credential. Additionally, the operations include determining based on the matches that a first instance of the security credential satisfies a policy provisioned at the relying entity. Further, the operations include verifying the authenticity of information requested from the information system using the first instance of the security credential. In various implementations, the information system may be the domain name system.
-
公开(公告)号:US09613146B2
公开(公告)日:2017-04-04
申请号:US14699600
申请日:2015-04-29
申请人: VERISIGN, INC.
发明人: Lambert Arians , Anirban Mukherjee
CPC分类号: G06F17/30864 , G06F17/30631 , G06F17/30867 , G06Q10/08
摘要: Systems and methods for searching domain names and owner information in a search tool involve networked databases, indexers, text indexes, and a server. The networked databases store domain names and owner information associated with the domain names. The indexers index suffixes of the domain names and of text-searchable portions of the owner information that have a minimum length of characters, and the text indexes store the indexed suffixes. In response to a search request, the server searches the text indexes for a matching domain name and/or matching owner information that satisfy the search request, queries the networked databases for corresponding owner information associated with the matching domain name and/or corresponding domain names associated with the matching owner information, and provides search results that include the matching domain name and the corresponding owner information and/or the matching owner information and the corresponding domain names.
-
公开(公告)号:US09473530B2
公开(公告)日:2016-10-18
申请号:US14095712
申请日:2013-12-03
申请人: VERISIGN, INC.
发明人: Suresh Bhogavilli , Roberto Guimaraes , Yujie Zhao
CPC分类号: H04L63/1458 , G06F21/55 , G06F2221/2103 , H04L63/0236 , H04L63/0281 , H04L63/10 , H04L63/101 , H04L63/1441 , H04L2463/144
摘要: Methods and systems for mitigating denial-of-service attacks include a proxy server that monitors a set of application servers configured to receive and service requests from clients. The proxy server intercepts the requests, and in response, provides the clients with customized client-side scripts embedded in markup language. The client-side scripts may include random strings to generate follow-through random uniform resource identifier redirection requests expected by the proxy server. The client-side scripts, upon execution, may challenge the clients by demanding user interaction within a specified period of time, requesting a delay before responding, and/or attempting to set a challenge cookie multiple times. If a client provides the demanded user interaction within the specified time, honors the delay, and/or sets the challenge cookie with the correct value, then the client-side scripts may generate a redirection request expected by the proxy server for that client and the proxy servers may whitelist that client for a configurable duration and forward that client's subsequent requests to the application servers without challenge.
摘要翻译: 用于减轻拒绝服务攻击的方法和系统包括一个代理服务器,用于监视配置为接收和服务客户机请求的一组应用程序服务器。 代理服务器拦截请求,作为响应,为客户端提供嵌入标记语言的自定义客户端脚本。 客户端脚本可以包括随机字符串,以产生由代理服务器期望的后续随机均匀资源标识符重定向请求。 客户端脚本在执行时可能会通过在指定的时间段内要求用户交互,在响应之前请求延迟和/或尝试多次设置挑战cookie来挑战客户端。 如果客户端在指定时间内提供所请求的用户交互,对延迟进行评估和/或设置具有正确值的挑战cookie,则客户端脚本可以生成代理服务器为该客户端预期的重定向请求,并且 代理服务器可能会将该客户端列入可配置的持续时间,并将该客户端的后续请求转发给应用程序服务器,而无需挑战。
-
公开(公告)号:US09473520B2
公开(公告)日:2016-10-18
申请号:US14571983
申请日:2014-12-16
申请人: Verisign, Inc.
CPC分类号: H04L63/1491 , G06F21/53 , G06F21/566 , G06F2221/034 , H04L63/1416 , H04L63/1433
摘要: Systems and methods for tracking malware operator behavior patterns in a network environment simulated for an extended period of time include a processor that causes the system to receive organizational data that describes a virtual organization, obtain additional data related to the organizational data, and provide a simulated computer network of the virtual organization based on the organizational data. The process can further cause the system to install at least one malware on the simulated computer network, monitor one or more interactions between the simulated computer network and an operator of the malware, and build a malware operator profile that characterizes the operator of the malware based on the one or more interactions, with which the operator of the malware can be identified in subsequent interactions.
摘要翻译: 用于跟踪长时间模拟的网络环境中的恶意软件操作员行为模式的系统和方法包括使系统接收描述虚拟组织的组织数据的处理器,获得与组织数据相关的附加数据,并提供模拟 基于组织数据的虚拟组织的计算机网络。 该过程可以进一步导致系统在模拟计算机网络上安装至少一个恶意软件,监视模拟的计算机网络和恶意软件的操作者之间的一个或多个交互,并构建以恶意软件为基础的操作者的特征的恶意软件操作员简档 在一个或多个交互中,可以在随后的交互中识别恶意软件的操作者。
-
公开(公告)号:US09448897B2
公开(公告)日:2016-09-20
申请号:US14319027
申请日:2014-06-30
申请人: Verisign, Inc.
发明人: Rohit Kinra
CPC分类号: G06F11/2007 , G06F17/30864
摘要: Methods and systems for intelligently choosing an authoritative name server from among a group of name servers for resolving Domain Name System requests. Systems and methods are provided that enable choosing of a first server associated with and/or operated by a first service provider based on a first measurement associated with that first server. The systems and methods further comprise requesting first data from that first server, determining that the first server is unresponsive, and choosing a second server. The second server is chosen based on a second measurement, and chosen contingent on it being associated with and/or operated by to a different service provider than that associated with the first server. The systems and methods then comprise requesting second data from the second server.
摘要翻译: 用于从一组名称服务器中智能选择权威名称服务器以解决域名系统请求的方法和系统。 提供了系统和方法,其能够基于与该第一服务器相关联的第一测量来选择与第一服务提供商相关联和/或由第一服务提供商操作的第一服务器。 所述系统和方法还包括从所述第一服务器请求第一数据,确定所述第一服务器不响应,以及选择第二服务器。 第二服务器是基于第二测量来选择的,并且根据与第一服务器相关联的不同服务提供商相关联和/或操作的选择。 然后,系统和方法包括从第二服务器请求第二数据。
-
公开(公告)号:US09299386B2
公开(公告)日:2016-03-29
申请号:US13570588
申请日:2012-08-09
IPC分类号: G11B20/00 , H04L29/06 , G06F21/12 , G06F21/16 , G10L19/018 , G06F17/30 , G06Q30/02 , G06Q30/06 , G06F21/10
CPC分类号: G11B20/00739 , G06F17/30861 , G06F21/10 , G06F21/121 , G06F21/16 , G06Q30/02 , G06Q30/06 , G10L19/018 , G11B20/00688 , G11B20/00891 , H04L63/107
摘要: Systems and methods are provided for using a hidden audio signal. In one exemplary embodiment, the method includes registering, at a central database, one or more of an identifier and a destination resource associated with the identifier, and encoding the one or more of the identifier and the destination resource in a hidden audio signal. The method further includes transmitting the hidden audio signal, including the one or more of the identifier and the destination resource, in connection with an acoustic signal, and receiving the acoustic signal at a user device. In addition, the method includes decoding the encoded one or more of the identifier and the destination resource at the user device; and requesting, from the central database, information associated with the one or more of the identifier and the destination resource. Further, the method includes receiving, at the user device, the requested information.
-
58.发明授权Systems and methods for transparently monitoring network traffic for denial of service attacks 有权用于透明地监控拒绝服务攻击的网络流量的系统和方法公开(公告)号:US09288227B2
公开(公告)日:2016-03-15
申请号:US13687841
申请日:2012-11-28
申请人: Sanjay Rao , Suresh Bhogavilli
发明人: Sanjay Rao , Suresh Bhogavilli
IPC分类号: H04L29/06
CPC分类号: H04L63/1458 , H04L63/0281
摘要: A mitigation service can monitor network traffic in one direction between a client computer and a server computer. The mitigation service can receive a request from a client computer to establish a network connection with a server computer. The mitigation service can reply to the client computer with an acknowledgment that is configured to cause the client computer to issue a request to reset the connection. The acknowledgement is configured not to affect the establishment of the network connection with the server computer. The mitigation service can compare the details of the reset request with the request to establish the network connection. If the details match, the mitigation service can forward the request to establish the network connection to the server computer.
摘要翻译: 缓解服务可以在客户端计算机和服务器计算机之间的一个方向上监视网络流量。 缓解服务可以从客户端计算机接收与服务器计算机建立网络连接的请求。 缓解服务可以用配置为使客户端计算机发出重置连接的请求的确认来答复客户端计算机。 配置确认不影响与服务器计算机建立网络连接。 缓解服务可以将重置请求的细节与建立网络连接的请求进行比较。 如果细节匹配,缓解服务可以转发建立到服务器计算机的网络连接的请求。
-
公开(公告)号:US09245114B2
公开(公告)日:2016-01-26
申请号:US13219208
申请日:2011-08-26
申请人: Ralph Thomas , Michael Ligh
发明人: Ralph Thomas , Michael Ligh
CPC分类号: H04L63/1433 , G06F3/0623 , G06F3/0643 , G06F3/067 , G06F3/0679 , G06F9/4405 , G06F21/55 , G06F21/56 , G06F21/565 , G06F21/566 , G06F2221/2101 , G06F2221/2115 , G06F2221/2119 , H04L63/1416 , H04L63/1425 , H04L63/1441
摘要: A method of detecting malicious software (malware) includes receiving a file and storing a memory baseline for a system. The method also includes copying the file to the system, executing the file on the system, terminating operation of the system, and storing a post-execution memory map. The method further includes analyzing the memory baseline and the post-execution memory map and determining that the file includes malware.
摘要翻译: 检测恶意软件(恶意软件)的方法包括接收文件并存储系统的存储基准。 该方法还包括将文件复制到系统,在系统上执行文件,终止系统的操作,以及存储执行后的存储器映射。 该方法还包括分析存储器基线和执行后存储器映射并确定该文件包括恶意软件。
-
公开(公告)号:US09235829B2
公开(公告)日:2016-01-12
申请号:US13534732
申请日:2012-06-27
申请人: John K. Gallant , Karl M. Henderson , Brad Verd
发明人: John K. Gallant , Karl M. Henderson , Brad Verd
CPC分类号: G06Q10/107 , H04L12/1854 , H04L67/327
摘要: A method for publishing a message includes receiving, at a first relay, a subscription request from a first client, wherein the subscription request includes a target. The method also includes: recording, at the first relay, subscription information of the first client based on the subscription request; receiving, at the first relay, a publication request from a second client, wherein the publication request includes a message string characterized by a pattern; determining, by the first relay, that the target matches at least a portion of the pattern; determining, by the first relay, if the publication request is a local publication request based on a predetermined policy rule; and transmitting the message string to the first client if the publication request is determined to be a local publication request.
摘要翻译: 用于发布消息的方法包括在第一中继处接收来自第一客户端的订阅请求,其中订阅请求包括目标。 该方法还包括:在第一中继处,基于订阅请求记录第一客户端的订阅信息; 在所述第一中继处接收来自第二客户端的发布请求,其中所述发布请求包括由模式表征的消息串; 由所述第一继电器确定所述目标匹配所述模式的至少一部分; 由所述第一中继确定所述发布请求是否是基于预定策略规则的本地发布请求; 以及如果所述发布请求被确定为本地发布请求,则将所述消息字符串发送到所述第一客户端。
-
-
-
-
-
-
-
-
-
搜索结果
637 条记录 (耗时 0.036 秒)
