公开(公告)号：US20140282816A1

公开(公告)日：2014-09-18

申请号：US13803871

申请日：2013-03-14

申请人： Michael Xie ,  Xin Gu

发明人： Michael Xie ,  Xin Gu

IPC分类号： H04L29/06

CPC分类号： H04L63/0227 ,  H04L67/02 ,  H04L67/06

摘要： Systems and methods are provided for notifying users within protected network about various events and information. According to one embodiment, a method includes receiving, by a filtering device, a request originated by an application running on a client device. The method further includes making a determination, by the filtering device, whether the request is to be blocked or allowed, based on the one or more policies. If the request is to be blocked, a notification is provided to a user of the client device regarding the determination by causing the application to display a predefined message.

摘要翻译： 提供系统和方法，用于通知受保护网络中的用户关于各种事件和信息。 根据一个实施例，一种方法包括由过滤设备接收由客户端设备上运行的应用程序发起的请求。 所述方法还包括基于所述一个或多个策略，由所述过滤设备确定所述请求是否被阻止或允许。 如果请求被阻止，则通过使应用程序显示预定义的消息来向客户端设备的用户提供关于确定的通知。

公开(公告)号：US08646083B2

公开(公告)日：2014-02-04

申请号：US13567183

申请日：2012-08-06

申请人： Lin Huang ,  Xu Zhou ,  Michael Xie

发明人： Lin Huang ,  Xu Zhou ,  Michael Xie

IPC分类号： G06F12/16

CPC分类号： G06F21/564 ,  G06F21/56 ,  G06F21/561 ,  G06F21/567 ,  G06F21/71 ,  G06F2221/034 ,  H04L63/145

摘要： Circuits and methods for detecting, identifying and/or removing undesired content are provided. According to one embodiment, a method for virus processing is provided. A general purpose processor receives and stores a data segment to a first memory at a virtual address. The first memory contains paging data structures for translating virtual addresses to physical addresses. The general purpose processor directs a virus processing hardware accelerator to scan the data segment based on virus signatures compiled for the virus processing hardware accelerator and stored in a second memory. The first memory includes a first virus signature compiled for the general purpose processor. The virus processing hardware accelerator retrieves the data segment by accessing the first memory based on the virtual address and cached information, stored within one or more translation lookaside buffers local to the virus processing hardware accelerator, relating to most recently used entries of the paging data structures.

摘要翻译： 提供了用于检测，识别和/或去除不需要的内容的电路和方法。 根据一个实施例，提供了一种用于病毒处理的方法。 通用处理器以虚拟地址接收并存储数据段到第一存储器。 第一个存储器包含用于将虚拟地址转换为物理地址的寻呼数据结构。 通用处理器指示病毒处理硬件加速器基于为病毒处理硬件加速器编译并存储在第二存储器中的病毒签名来扫描数据段。 第一个存储器包括为通用处理器编译的第一个病毒码。 病毒处理硬件加速器通过访问存储在与病毒处理硬件加速器本地的一个或多个翻译后备缓冲器中的虚拟地址和缓存信息相关的最近使用的寻呼数据结构的条目来访问第一存储器来检索数据段 。

公开(公告)号：US08635336B2

公开(公告)日：2014-01-21

申请号：US13153889

申请日：2011-06-06

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F15/173

CPC分类号： H04L63/1425 ,  H04L41/00 ,  H04L43/08 ,  H04L51/04 ,  H04L51/046 ,  H04L51/12 ,  H04L51/22 ,  H04L63/0245 ,  H04L63/12 ,  H04L67/02

摘要： A method for categorizing network traffic content includes determining a first characterization of the network traffic content determining a first probability of accuracy associated with the first characterization, and categorizing the network traffic content based at least in part on the first characterization and the first probability of accuracy. A method for use in a process to categorize network traffic content includes obtaining a plurality of data, each of the plurality of data representing a probability of accuracy of a characterization of network traffic content, and associating each of the plurality of data with a technique for characterizing network traffic content. A method for categorizing network traffic content includes determining a characterization of the network traffic content, determining a weight value associated with the characterization, and categorizing network traffic content based at least in part on the characterization of the network traffic content and the weight value.

公开(公告)号：US20130263271A1

公开(公告)日：2013-10-03

申请号：US13795245

申请日：2013-03-12

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： H04L29/06

CPC分类号： H04L63/1416 ,  H04L43/04 ,  H04L43/10 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/145

摘要： A device for detecting network traffic content is provided. The device includes a memory configured for storing one or more signatures, each of the one or more signatures associated with content desired to be detected, and 5 defined by one or more predicates. The device a/so includes a processor configured to receive data associated with network traffic content, execute one or more instructions based on the one or more signatures and the data, and determine whether the network traffic content matches the content desired to be detected.

公开(公告)号：US20120278896A1

公开(公告)日：2012-11-01

申请号：US13546915

申请日：2012-07-11

申请人： Yu Fang ,  Michael Xie

发明人： Yu Fang ,  Michael Xie

IPC分类号： G06F21/00 ,  G06F15/16

CPC分类号： H04L63/145 ,  G06F21/56 ,  G06F21/567 ,  H04L63/02 ,  H04L63/0227 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441

摘要： A method of updating a content detection module includes obtaining content detection data, and transmitting the content detection data to a content detection module, wherein the transmitting is performed not in response to a request from the content detection module. A method of sending content detection data includes obtaining content detection data, selecting an update station from a plurality of update stations, and sending the, content detection data to the selected update station. A method of building a content detection system includes establishing a first communication link between a central station and an update station, the central station configured to transmit content detection data to the update station, and establishing a second communication link between the update station and a content detection module.

公开(公告)号：US20120246712A1

公开(公告)日：2012-09-27

申请号：US13491346

申请日：2012-06-07

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F21/00

CPC分类号： H04L63/0281 ,  H04L29/06027 ,  H04L29/12094 ,  H04L61/1529 ,  H04L61/2521 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/029 ,  H04L65/1006 ,  H04L65/1009 ,  H04L65/1043 ,  H04L65/1066 ,  H04L69/22

摘要： Methods and systems for an intelligent network protection gateway (NPG) and network architecture are provided. According to one embodiment, a firewall provides network-layer protection to internal hosts against unauthorized access by hosts of an external network by performing network address translation (NAT) processing of Internet Protocol (IP) addresses. The firewall changes data in headers of VoIP packets and corresponding data contents of the VoIP packets, to enable bi-directional VoIP communications. An external VoIP interface of the firewall receives incoming VoIP packets having a user alias (e.g., an email address) and an indication regarding a VoIP port of external interface. The packets are directed to an appropriate internal host by the firewall performing port address forwarding based on the port indication to a Media Gateway Control Protocol (MGCP) media gateway within the internal network that maintains a mapping of user aliases to private addresses of the internal hosts.

摘要翻译： 提供了智能网络保护网关（NPG）和网络架构的方法和系统。 根据一个实施例，防火墙通过执行因特网协议（IP）地址的网络地址转换（NAT）处理，为内部主机提供网络层保护，防止外部网络的主机的未经授权的访问。 防火墙改变VoIP报文头部的数据和VoIP数据包的相应数据内容，实现双向VoIP通信。 防火墙的外部VoIP接口接收具有用户别名（例如，电子邮件地址）的传入VoIP分组以及关于外部接口的VoIP端口的指示。 数据包被防火墙根据端口指示执行端口地址转发指向适当的内部主机，内部网络中的媒体网关控制协议（MGCP）媒体网关将用户别名映射到内部主机的私有地址 。

公开(公告)号：US20120005741A1

公开(公告)日：2012-01-05

申请号：US13229134

申请日：2011-09-09

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F15/16

CPC分类号： H04L63/0281 ,  H04L29/06027 ,  H04L29/12094 ,  H04L61/1529 ,  H04L61/2521 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/029 ,  H04L65/1006 ,  H04L65/1009 ,  H04L65/1043 ,  H04L65/1066 ,  H04L69/22

摘要： Methods and systems for an intelligent network protection gateway (NPG) are provided. According to one embodiment, a firewall prevents unauthorized network-lawyer access to internal hosts by hosts of an external network by performing network address translation (NAT) processing of Internet Protocol (IP) addresses. The firewall changes data in headers of VoIP packets and corresponding data contents of the VoIP packets, to enable bi-directional VoIP communications. An external VoIP interface of the firewall facilitates concurrent management of multiple incoming VoIP calls by providing multiple VoIP ports and advertising multiple IP address/VoIP port pairs corresponding to internal hosts. When incoming VoIP packets are received, the packets are directed to an appropriate internal host by the firewall performing port forwarding based on a port indication contained within the packets to a server or gatekeeper within the internal network that maintains a mapping of user aliases to private addresses of the internal hosts.

摘要翻译： 提供了智能网络保护网关（NPG）的方法和系统。 根据一个实施例，防火墙通过执行因特网协议（IP）地址的网络地址转换（NAT）处理来防止未授权的网络律师通过外部网络的主机访问内部主机。 防火墙改变VoIP报文头部的数据和VoIP数据包的相应数据内容，实现双向VoIP通信。 防火墙的外部VoIP接口通过提供多个VoIP端口和广告对应于内部主机的多个IP地址/ VoIP端口对来促进多个传入VoIP呼叫的并发管理。 当接收到传入的VoIP数据包时，防火墙将数据包通过防火墙执行端口转发指向适当的内部主机，该端口转发将包含在数据包中的端口指示发送给维护用户别名映射到专用地址的内部网络内的服务器或网守 的内部主机。

公开(公告)号：US08079084B1

公开(公告)日：2011-12-13

申请号：US11837064

申请日：2007-08-10

申请人： Lin Huang ,  Xu Zhou ,  Michael Xie

发明人： Lin Huang ,  Xu Zhou ,  Michael Xie

IPC分类号： G06F12/16

CPC分类号： G06F21/564 ,  G06F21/56 ,  G06F21/561 ,  G06F21/567 ,  G06F21/71 ,  G06F2221/034 ,  H04L63/145

摘要： Various embodiments of the present invention provide elements that may be utilized for improved virus processing. As one example, a computer readable medium is disclosed that includes a virus signature compiled for execution on a virus co-processor. The virus signature includes at least one primitive instruction and at least one CPR instruction stored at contiguous locations in the computer readable medium. The CPR instruction is one of an instruction set that includes, but is not limited to: a compare string instruction, compare buffer instruction; perform checksum instruction; a seek instruction; and a test instruction. The primitive instruction may be, but is not limited to, an add instruction, a branch instruction, a jump instruction, a load instruction, a move instruction, a logic AND instruction, a logic OR instruction, and/or a logic XOR instruction.

摘要翻译： 本发明的各种实施例提供可用于改进病毒处理的元件。 作为一个示例，公开了包括编译为用于在病毒协处理器上执行的病毒签名的计算机可读介质。 病毒签名包括存储在计算机可读介质中的连续位置处的至少一个原语指令和至少一个CPR指令。 CPR指令是指令集之一，包括但不限于：比较串指令，比较缓冲器指令; 执行校验和指令; 寻求指示; 和测试指令。 原始指令可以是但不限于加法指令，分支指令，跳转指令，加载指令，移动指令，逻辑与指令，逻辑或指令和/或逻辑异或指令。

公开(公告)号：US07668920B2

公开(公告)日：2010-02-23

申请号：US11366673

申请日：2006-03-01

申请人： Kunhua Lin ,  Michael Xie

发明人： Kunhua Lin ,  Michael Xie

IPC分类号： G06F15/16 ,  G06F15/173 ,  H04L9/32

CPC分类号： G06Q10/107 ,  H04L51/12 ,  H04L51/34

摘要： Systems and methods for tracking electronic messages and data are provided. According to one embodiment, steps for tracking an email message, or other electronic message, may include identifying an email message for tracking, associating a linking object with the tracked message, and responsive to activation of the linking object by a receiver of the electronic message, automatically submitting information regarding the electronic message to be tracked to a designated resource. According to various embodiments, a linking object may include a Universal Resource Identifier (URI), a java script, an executable file, a visual basic script (VBS), and/or the like. In accordance with one embodiment, the linking object facilitates submission of information regarding the tracked email message to an anti-spam system by a receiver of the tracked email message.

摘要翻译： 提供了跟踪电子信息和数据的系统和方法。 根据一个实施例，用于跟踪电子邮件消息或其他电子消息的步骤可以包括识别电子邮件消息，用于跟踪，将链接对象与所跟踪的消息相关联，以及响应于电子消息的接收者激活链接对象 自动提交有关要跟踪的电子信息的信息到指定的资源。 根据各种实施例，链接对象可以包括通用资源标识符（URI），java脚本，可执行文件，可视基本脚本（VBS）等。 根据一个实施例，链接对象有助于通过跟踪的电子邮件消息的接收者向跟踪的电子邮件消息提交关于跟踪的电子邮件消息的信息到反垃圾邮件系统。

公开(公告)号：US20070266091A1

公开(公告)日：2007-11-15

申请号：US11408643

申请日：2006-04-21

申请人： Kunhua Lin ,  Michael Xie

发明人： Kunhua Lin ,  Michael Xie

IPC分类号： G06F15/16

CPC分类号： G06Q30/0277 ,  G06Q30/02 ,  H04L61/6063 ,  H04L67/02 ,  H04L67/2804 ,  H04L67/303

摘要： Systems and methods for transmitting content to a client via a communication network are provided. In one embodiment, a method of transmitting unsolicited content, such as an advertisement, to a client via the Internet may include one or more of the following steps: 1) intercepting a data transfer protocol request/response; 2) analyzing information contained within the data transfer protocol request/response; 3) selecting advertising content to send to the client; and 4) sending the selected content to the client. For example, a TCP/IP request, such as a hypertext transfer protocol (HTTP) request, from the client may be detected. Next, substitute or supplemental content may be selected for sending to the client. Lastly, the selected substitute or supplemental content may be sent to the client in lieu of or in addition to the originally requested content.

摘要翻译： 提供了通过通信网络向客户端发送内容的系统和方法。 在一个实施例中，经由因特网向客户端发送诸如广告的非请求内容的方法可以包括以下步骤中的一个或多个：1）截取数据传输协议请求/响应; 2）分析数据传输协议请求/响应中包含的信息; 3）选择广告内容发送给客户; 以及4）将所选内容发送给客户端。 例如，可以检测来自客户机的诸如超文本传输​​协议（HTTP）请求的TCP / IP请求。 接下来，可以选择替代或补充内容来发送给客户端。 最后，可以将所选择的替代或补充内容发送给客户，代替或者除了原始请求的内容之外。