-
51.发明申请System and method for secure inter-platform and intra-platform communications 审中-公开安全的平台间和平台内通信的系统和方法公开(公告)号:US20050289311A1
公开(公告)日:2005-12-29
申请号:US10881777
申请日:2004-06-29
摘要: A system and method are provided to preserve the confidentiality and/or integrity of a sensitive communication from its source to its destination whether locally on the platform, between platforms, or even the same program over time.
摘要翻译: 提供了一种系统和方法,用于将敏感通信的机密性和/或完整性从其源到目的地,无论是本地在平台上,平台之间,甚至是随时间推移的相同程序。
-
52.发明授权公开(公告)号:US07865683B2
公开(公告)日:2011-01-04
申请号:US12824074
申请日:2010-06-25
CPC分类号: G06F12/1491
摘要: Embodiments of apparatuses, articles, methods, and systems for associating identifiers with memory locations for controlling memory accesses are generally described herein. Other embodiments may be described and claimed.
摘要翻译: 这里通常描述用于将标识符与用于控制存储器访问的存储器位置相关联的装置,物品,方法和系统的实施例。 可以描述和要求保护其他实施例。
-
公开(公告)号:US07797749B2
公开(公告)日:2010-09-14
申请号:US10980015
申请日:2004-11-03
申请人: Priya Rajagopal , Ravi Sahita , David Durham
发明人: Priya Rajagopal , Ravi Sahita , David Durham
IPC分类号: G08B23/00
CPC分类号: H04L63/1433 , G06F21/577 , H04L63/1408
摘要: A combination of more frequent and less frequent security monitoring may be used to defeat worm or virus attacks. At periodic intervals, a risk assessment scan may be implemented to determine whether or not a worm attack has occurred. Prior thereto, an intermediate detection by an anomaly detection agent may determine whether or not a worm attack may have occurred. If a potential worm attack may have occurred, intermediate action, such as throttling of traffic, may occur. Then, at the next risk assessment scan, a determination may be made as to whether the attack is actually occurring and, if so, more effective and performance altering techniques may be utilized to counter the attack.
摘要翻译: 更频繁和较不频繁的安全监控的组合可用于击败蠕虫或病毒攻击。 周期性地,可以实施风险评估扫描以确定是否已经发生蠕虫攻击。 在此之前,异常检测代理的中间检测可以确定是否可能发生蠕虫攻击。 如果可能发生潜在的蠕虫攻击,可能会发生中间动作,例如限制流量。 然后,在下一次风险评估扫描中,可以确定攻击是否实际发生,如果是这样,则可以利用更有效的和更改性能的技术来对抗攻击。
-
54.发明申请Techniques for authenticated posture reporting and associated enforcement of network access 有权用于认证状态报告和网络访问相关实施的技术公开(公告)号:US20100107224A1
公开(公告)日:2010-04-29
申请号:US12655024
申请日:2009-12-22
申请人: David Durham , Ravi Sahita , Karanvir Grewal , Ned Smith , Kapil Sood
发明人: David Durham , Ravi Sahita , Karanvir Grewal , Ned Smith , Kapil Sood
IPC分类号: G06F17/00
CPC分类号: H04L63/10 , G06F2221/2141 , H04L9/3234 , H04L9/3247 , H04L9/3263 , H04L63/0209 , H04L63/08 , H04L63/20
摘要: Architectures and techniques that allow a firmware agent to operate as a tamper-resistant agent on a host platform that may be used as a trusted policy enforcement point (PEP) on the host platform to enforce policies even when the host operating system is compromised. The PEP may be used to open access control and/or remediation channels on the host platform. The firmware agent may also act as a local policy decision point (PDP) on the host platform in accordance with an authorized enterprise PDP entity by providing policies if a host trust agent is non-responsive and may function as a passive agent when the host trust agent is functional.
摘要翻译: 允许固件代理在主机平台上作为防篡改代理操作的体系结构和技术,可在主机平台上用作受信任的策略执行点(PEP),即使主机操作系统受到威胁也可执行策略。 PEP可用于在主机平台上打开访问控制和/或修复通道。 固件代理还可以根据授权的企业PDP实体在主机平台上作为本地策略决策点(PDP),通过在主机信任代理不响应时提供策略,并且当主机信任时可以用作被动代理 代理功能。
-
55.发明申请DYNAMIC GENERATION OF INTEGRITY MANIFEST FOR RUN-TIME VERIFICATION OF SOFTWARE PROGRAM 有权软件程序运行验证的完整性更新动态生成公开(公告)号:US20090172814A1
公开(公告)日:2009-07-02
申请号:US11967928
申请日:2007-12-31
申请人: Hormuzd Khosravi , David Durham , Prashant Dewan , Ravi Sahita , Uday R. Savagaonkar , Men Long
发明人: Hormuzd Khosravi , David Durham , Prashant Dewan , Ravi Sahita , Uday R. Savagaonkar , Men Long
IPC分类号: G06F21/22
摘要: A measurement engine generates an integrity manifest for a software program and uses it to perform active platform observation. The integrity manifest indicates an integrity check value for a section of the program's code. The measurement engine computes a comparison value on the program's image in memory and determines if the comparison value matches the expected integrity check value. If the values do not match, the program's image is determined to be modified, and appropriate remedial action may be triggered.
摘要翻译: 测量引擎为软件程序生成完整性清单,并使用它来执行主动平台观察。 完整性清单表示程序代码的一部分的完整性检查值。 测量引擎计算内存中程序映像的比较值,并确定比较值是否与预期的完整性校验值相匹配。 如果值不匹配,则确定程序的图像被修改,并且可能触发适当的补救动作。
-
56.发明授权Local and remote network based management of an operating system-independent processor 有权本地和远程网络管理的独立于操作系统的处理器公开(公告)号:US07536479B2
公开(公告)日:2009-05-19
申请号:US10985123
申请日:2004-11-09
申请人: Ravi Sahita , Priya Rajagopal , David Durham , Scott Hahn , Carey Smith , Arvind Kumar
发明人: Ravi Sahita , Priya Rajagopal , David Durham , Scott Hahn , Carey Smith , Arvind Kumar
IPC分类号: G06F15/16
CPC分类号: H04L29/12009 , H04L29/12405 , H04L61/2528
摘要: In one embodiment, a method is provided. The method of this embodiment provides receiving one or more packets that are addressed to an alternate IP (Internet Protocol) address and that include a LADLC (local application data link control) address in a system having an operating system-independent processor (“service processor”) associated with the alternate IP address and an alternate DLC address, and an embedded network stack (“ENS”) of the service processor associated with a primary IP address; performing filtering to determine if the LADLC address matches the alternate DLC address; and if the LADLC address matches the alternate DLC address, then replacing the alternate IP address of the one or more packets with the primary IP address, and forwarding the one or more packets to the ENS.
摘要翻译: 在一个实施例中,提供了一种方法。 该实施例的方法提供接收一个或多个寻址到备用IP(因特网协议)地址的分组,并且在具有与操作系统无关的处理器(“服务处理器”)的系统中包括LADLC(本地应用数据链路控制)地址 “)与备用IP地址和备用DLC地址相关联,以及与主IP地址相关联的服务处理器的嵌入式网络堆栈(”ENS“); 执行滤波以确定LADLC地址是否与备用DLC地址匹配; 并且如果LADLC地址与备用DLC地址匹配,则用主IP地址替换一个或多个数据包的备用IP地址,并将一个或多个数据包转发到ENS。
-
公开(公告)号:US07440461B2
公开(公告)日:2008-10-21
申请号:US10744709
申请日:2003-12-23
申请人: Ravi Sahita , David Durham , Priya Rajagopal
发明人: Ravi Sahita , David Durham , Priya Rajagopal
IPC分类号: H04L12/28
CPC分类号: H04L63/1441 , G06F17/2705
摘要: In some embodiments, a method includes generating a prefix trie for a set of patterns, generating a suffix trie for the set of patterns, and establishing respective links between nodes of the prefix trie and respective corresponding nodes of the suffix trie. In some embodiments, a method includes adding a suffix to a suffix tree, so that the suffix (which is at least a portion of a pattern) is represented in the tree by a path that begins at a first node and ends at a second node, and associating with at least the first node and the second node a pattern identifier that identifies the pattern.
摘要翻译: 在一些实施例中,一种方法包括为一组模式生成前缀特里,为该模式集合生成后缀特里,以及在前缀特里的节点和后缀特里的相应对应节点之间建立相应的链接。 在一些实施例中,一种方法包括向后缀树添加后缀,使得后缀(其是模式的至少一部分)在树中由在第一节点开始并在第二节点结束的路径来表示 并且至少与第一节点和第二节点相关联的是识别模式的模式标识符。
-
公开(公告)号:US07424711B2
公开(公告)日:2008-09-09
申请号:US11170491
申请日:2005-06-29
申请人: Travis Schluessler , Priya Rajagopal , Ray Steinberger , Tisson K. Mathew , Arun Preetham , Ravi Sahita , David Durham , Karanvir (Ken) Grewal
发明人: Travis Schluessler , Priya Rajagopal , Ray Steinberger , Tisson K. Mathew , Arun Preetham , Ravi Sahita , David Durham , Karanvir (Ken) Grewal
CPC分类号: G06F9/546 , G06F9/541 , G06F2209/548 , Y10S707/99931 , Y10S707/99933
摘要: According to some embodiments, a system provides a resource service module, a resource data record repository, and a provider module. The resource service module exposes an interface, receives an invocation of the interface from a system management module, and requests managed resource data associated with a manageable resource based on the invocation. The resource data record repository includes a resource data record indicating a memory location of a managed host in which the managed resource data is stored, and the provider module receives the request and retrieves the managed resource data from the memory location of the managed host.
摘要翻译: 根据一些实施例,系统提供资源服务模块,资源数据记录库和提供者模块。 资源服务模块公开接口,从系统管理模块接收对接口的调用,并且基于该调用请求与可管理资源相关联的被管理的资源数据。 资源数据记录存储库包括指示被管理的主机的存储器位置的资源数据记录,其中管理的资源数据被存储在其中,并且提供者模块接收该请求并从被管理的主机的存储器位置检索被管理的资源数据。
-
59.发明申请Tamper-resistant method and apparatus for verification and measurement of host agent dynamic data updates 审中-公开用于验证和测量主机代理动态数据更新的防篡改方法和装置公开(公告)号:US20080134321A1
公开(公告)日:2008-06-05
申请号:US11648252
申请日:2006-12-29
申请人: Priya Rajagopal , Travis Schluessler , Uday R. Savagaonkar , David Durham , Ravi Sahita , Uri Blumenthal
发明人: Priya Rajagopal , Travis Schluessler , Uday R. Savagaonkar , David Durham , Ravi Sahita , Uri Blumenthal
IPC分类号: H04L9/32
CPC分类号: G06F21/55 , G06F21/52 , G06F21/6281 , G06F21/64 , H04L9/3242 , H04L9/3247 , H04L63/06 , H04L63/123 , H04L63/1441
摘要: A platform for verifying the validity of changes to dynamic data modifiable during the runtime execution of an agent. In one embodiment, a management mode of a processor uses key information to generate a signature for a set of dynamic data, the signature to verify the validity of the state of the dynamic data to an integrity measurement agent.
摘要翻译: 用于验证代理程序运行时执行期间可修改动态数据的更改的有效性的平台。 在一个实施例中,处理器的管理模式使用密钥信息来生成一组动态数据的签名,该签名用于向完整性测量代理验证动态数据的状态的有效性。
-
公开(公告)号:US20070157003A1
公开(公告)日:2007-07-05
申请号:US11323446
申请日:2005-12-30
申请人: David Durham , Ravi Sahita , Dylan Larson , Rajendra Yavatkar
发明人: David Durham , Ravi Sahita , Dylan Larson , Rajendra Yavatkar
IPC分类号: G06F12/00
CPC分类号: G06F12/1475 , G06F12/1491 , G06F21/74 , G06F21/79
摘要: Apparatuses and methods for page coloring to associate memory pages with programs are disclosed. In one embodiment, an apparatus includes a paging unit and an interface to access a memory. The paging unit includes translation logic and comparison logic. The translation logic is to translate a first address to a second address. The first address is to be provided by an instruction stored in a first page in the memory. The translation is based on an entry in a data structure, and the entry is to include a base address of a second page in the memory including the second address. The comparison logic is to compare the color of the first page to the color of the second page. The color of the first page is to indicate association of the first page with a first program including the first instruction. The data structure entry is also to include the color of the second page to indicate association of the second page with the first program or a second program.
摘要翻译: 公开了用于将内存页与程序相关联的页着色的装置和方法。 在一个实施例中,一种装置包括寻呼单元和用于访问存储器的接口。 寻呼单元包括翻译逻辑和比较逻辑。 翻译逻辑是将第一个地址翻译成第二个地址。 第一个地址由存储在第一页的指令提供。 翻译是基于数据结构中的条目,并且该条目是在包括第二地址的存储器中包括第二页的基地址。 比较逻辑是将第一页的颜色与第二页的颜色进行比较。 第一页的颜色是指示第一页与包括第一指令的第一程序的关联。 数据结构条目还包括第二页的颜色以指示第二页与第一程序或第二程序的关联。
-
-
-
-
-
-
-
-
-
搜索结果
142 条记录 (耗时 0.024 秒)
