中科微点-全球专利检索

  1. Login
  2. Sign Up

Search Results

63 records (took 0.023 seconds)

    Extraction and comparison of hybrid program binary features
    53.
    发明授权
    Extraction and comparison of hybrid program binary features 有权

    公开(公告)号:US10289843B2

    公开(公告)日:2019-05-14

    申请号:US15479928

    申请日:2017-04-05

    Applicant: NEC Laboratories America, Inc.

    Inventor: Junghwan Rhee Zhichun Li Zhenyu Wu Kangkook Jee Guofei Jiang

    IPC: G06F21/56 G06F11/36

    Abstract: Systems and methods for identifying similarities in program binaries, including extracting program binary features from one or more input program binaries to generate corresponding hybrid features. The hybrid features include a reference feature, a resource feature, an abstract control flow feature, and a structural feature. Combinations of a plurality of pairs of binaries are generated from the extracted hybrid features, and a similarity score is determined for each of the pairs of binaries. A hybrid difference score is generated based on the similarity score for each of the binaries combined with input hybrid feature parameters. A likelihood of malware in the input program is identified based on the hybrid difference score.

    HOST BEHAVIOR AND NETWORK ANALYTICS BASED AUTOMOTIVE SECURE GATEWAY
    54.
    发明申请
    HOST BEHAVIOR AND NETWORK ANALYTICS BASED AUTOMOTIVE SECURE GATEWAY 审中-公开

    公开(公告)号:US20190104108A1

    公开(公告)日:2019-04-04

    申请号:US16146166

    申请日:2018-09-28

    Applicant: NEC Laboratories America, Inc. NEC Corporation

    Inventor: Junghwan Rhee Hongyu Li Shuai Hao Chung Hwan Kim Zhenyu Wu Zhichun Li Kangkook Jee Lauri Korts-Parn

    IPC: H04L29/06

    Abstract: Systems and methods for an automotive security gateway include an in-gateway security system that monitors local host behaviors in vehicle devices to identify anomalous local host behaviors using a blueprint model trained to recognize secure local host behaviors. An out-of-gateway security system monitors network traffic across remote hosts, local devices, hotspot network, and in-car network to identify anomalous behaviors using deep packet inspection to inspect packets of the network. A threat mitigation system issues threat mitigation instructions corresponding to the identified anomalous local host behaviors and the anomalous remote host behaviors to secure the vehicle devices by removing the identified anomalous local host behaviors and the anomalous remote host behaviors. Automotive security gateway services and vehicle electronic control units operate the vehicle devices according to the threat mitigation instructions.

    Hybrid network management
    58.
    发明授权
    Hybrid network management 有权
    混合网络管理

    公开(公告)号:US09450823B2

    公开(公告)日:2016-09-20

    申请号:US14453054

    申请日:2014-08-06

    Applicant: NEC Laboratories America, Inc.

    Inventor: Nipun Arora Hui Zhang Cristian Lumezanu Junghwan Rhee Guofei Jiang Hui Lu

    IPC: H04L12/24 H04L12/46

    CPC classification number: H04L41/082 H04L12/4675 H04L41/0226 H04L41/0803 H04L41/12 H04L41/20

    Abstract: Method and systems for controlling a hybrid network having software-defined network (SDN) switches and legacy switches include initializing a hybrid network topology by retrieving information on a physical and virtual infrastructure of the hybrid network; generating a path between two nodes on the hybrid network based on the physical and virtual infrastructure of the hybrid network; generating a virtual local area network by issuing remote procedure call instructions to legacy switches in accordance with a network configuration request; and generating an SDN network slice by issuing SDN commands to SDN switches in accordance with the network configuration request.

    Abstract translation: 用于控制具有软件定义网络(SDN)交换机和传统交换机的混合网络的方法和系统包括通过检索混合网络的物理和虚拟基础设施上的信息来初始化混合网络拓扑; 基于混合网络的物理和虚拟基础设施,在混合网络上生成两个节点之间的路径; 通过根据网络配置请求向传统交换机发出远程过程呼叫指令来产生虚拟局域网; 以及根据网络配置请求向SDN交换机发出SDN命令来生成SDN网络切片。

    System and method for profiling requests in service systems
    59.
    发明授权
    System and method for profiling requests in service systems 有权
    在服务系统中分析请求的系统和方法

    公开(公告)号:US09367821B2

    公开(公告)日:2016-06-14

    申请号:US14839363

    申请日:2015-08-28

    Applicant: NEC Laboratories America, Inc.

    Inventor: Hui Zhang Xia Ning Junghwan Rhee Guofei Jiang Hongteng Xu

    IPC: G06N99/00 G06F9/50

    CPC classification number: G06N99/005 G06F9/5011 G06F11/00 G06F11/34 G06F11/36 G06N7/005

    Abstract: A system and method for profiling a request in a service system with kernel events including a pre-processing module configured to obtain kernel event traces from the service system and determine starting and ending communication pairs of a request path for a request. A learning module is configured to learn pairwise relationships between the starting and ending communication pairs of training traces of sequential requests. A generation module is configured to generate communication paths for the request path from the starting and ending communication pairs of testing traces of concurrent requests using a heuristic procedure that is guided by the learned pairwise relationships and generate the request path for the request from the communication paths. The system and method precisely determine request paths for applications in a distributed system from kernel event traces even when there are numerous concurrent requests.

    Abstract translation: 一种用于在具有内核事件的服务系统中对请求进行分析的系统和方法,所述内核事件包括预处理模块,所述预处理模块被配置为从所述服务系统获取内核事件跟踪并且确定请求的请求路径的起始和结束通信对。 学习模块被配置为学习顺序请求的训练轨迹的开始和结束通信对之间的成对关系。 生成模块被配置为使用由所学习的成对关系指导的启发式过程从并发请求的测试跟踪的起始和结束通信对生成针对请求路径的通信路径,并且从通信路径生成针对请求的请求路径 。 即使有许多并发请求,系统和方法也可以精确地确定来自内核事件跟踪的分布式系统中应用程序的请求路径。

Patent Agency Ranking