利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

39 条记录 (耗时 0.026 秒)

    DISTRIBUTED TRAFFIC PATTERN ANALYSIS AND ENTROPY PREDICTION FOR DETECTING MALWARE IN A NETWORK ENVIRONMENT
    2.
    发明申请
    DISTRIBUTED TRAFFIC PATTERN ANALYSIS AND ENTROPY PREDICTION FOR DETECTING MALWARE IN A NETWORK ENVIRONMENT 有权
    分布式交通图案分析和熵预测,用于检测网络环境中的恶意软件

    公开(公告)号:US20140298461A1

    公开(公告)日:2014-10-02

    申请号:US13853601

    申请日:2013-03-29

    申请人: Dirk Hohndel Adriaan van de Ven

    发明人: Dirk Hohndel Adriaan van de Ven

    IPC分类号: H04L29/06

    CPC分类号: H04L63/1416 G06F21/554 G06F21/56 G06N3/126 H04L63/1425 H04L63/1433 H04L63/145

    摘要: Technologies are provided in embodiments to detect malware. The embodiments are configured to receive an entropy rate of a potentially affected system. The embodiments are further configured to compare the entropy rate to an average entropy rate, and to determine a probability that the potentially affected system is infected with malware. The probability is based, at least in part, on a result of the comparison. More specific embodiments can include the received entropy rate being generated, at a least in part, by a genetic program. Additional embodiments can include a configuration to provide the potentially affected system with a specified time-span associated with the genetic program. The specified time-span indicates an amount of time to observe context information on the potentially affected system. In at least some embodiments, the result of the comparison includes an indicator of whether the entropy rate correlates to an infected system or a healthy system.

    摘要翻译: 在实施例中提供技术来检测恶意软件。 实施例被配置为接收可能受影响的系统的熵速率。 实施例还被配置为将熵速率与平均熵速率进行比较,并且确定潜在受影响的系统被恶意软件感染的概率。 概率至少部分地基于比较的结果。 更具体的实施例可以包括至少部分由遗传程序产生的接收到的熵速率。 另外的实施例可以包括用于向潜在受影响的系统提供与遗传程序相关联的指定时间跨度的配置。 指定的时间跨度表示观察潜在受影响系统的上下文信息的时间量。 在至少一些实施例中,比较的结果包括熵速率是否与受感染系统或健康系统相关联的指标。

    Method and system for automated distributed software testing
    3.
    发明授权
    Method and system for automated distributed software testing 有权
    自动分布式软件测试方法与系统

    公开(公告)号:US08166458B2

    公开(公告)日:2012-04-24

    申请号:US11267276

    申请日:2005-11-07

    申请人: Richard Ding Li William F. Peck Adriaan van de Ven

    发明人: Richard Ding Li William F. Peck Adriaan van de Ven

    IPC分类号: G06F9/44 G06F15/173

    CPC分类号: G06F9/5038 G06F9/5044 G06F9/5055 G06F11/3664 G06F11/3696 G06F2209/5021

    摘要: Embodiments of the present invention provide methods and systems for automated distributed testing of software. A testing service may utilize a distributed architecture that provides a standardized framework for writing tests, scheduling the tests, and gathering and reporting results of the tests. Multiple distributed labs are integrated into the testing service and their environments can be centrally managed by the testing service. The testing service permits the scheduling and performance of tests across multiple machines within a test lab, or tests that span across multiple test labs. Any of the machines in the test labs may be selected based on variety of criteria. The testing service may then automatically locate the appropriate machines that match or satisfy the criteria and schedule the tests when the machines are available. The testing service may also automatically create and set up a desired test environment according to the desired specifications for the test.

    摘要翻译: 本发明的实施例提供了用于软件的自动化分布式测试的方法和系统。 测试服务可以利用分布式架构,其提供用于编写​​测试,调度测试以及收集和报告测试结果的标准化框架。 多个分布式实验室被集成到测试服务中,其环境可以由测试服务集中管理。 测试服务允许在测试实验室内的多台机器上进行测试的调度和性能测试,或跨多个测试实验室进行的测试。 可以根据各种标准来选择测试实验室中的任何机器。 然后,测试服务可以自动定位匹配或满足标准的适当机器,并在机器可用时安排测试。 测试服务还可以根据测试的期望规范自动创建和设置所需的测试环境。

    DOMAIN NAME SYSTEM LOOKUP LATENCY REDUCTION
    7.
    发明申请
    DOMAIN NAME SYSTEM LOOKUP LATENCY REDUCTION 有权
    域名系统LOOKUP LATENCY减少

    公开(公告)号:US20110153867A1

    公开(公告)日:2011-06-23

    申请号:US12655020

    申请日:2009-12-22

    申请人: Adriaan van de Ven Marcel Holtmann

    发明人: Adriaan van de Ven Marcel Holtmann

    IPC分类号: G06F15/16

    CPC分类号: H04L61/6009 H04L29/12066 H04L29/12811 H04L61/1511 H04L67/02 H04L67/2847

    摘要: A technique to reduce the latency of a remote DNS lookup operation is disclosed. More specifically, a machine-readable medium, method, device, and system are described that scan a document when it is retrieved from the Internet. The scan takes place for one or more patterns, where each pattern denotes an Internet host name. The technique then asynchronously causes an Internet Domain Name System (DNS) server to translate each Internet host name pattern discovered from the document scan to an associated Internet Protocol (IP) address. The technique then asynchronously stores each translated IP address in a local DNS cache.

    摘要翻译: 公开了一种减少远程DNS查找操作的延迟的技术。 更具体地,描述了当从因特网检索文档时扫描文档的机器可读介质,方法,设备和系统。 对于一个或多个模式进行扫描,其中每个模式表示Internet主机名。 该技术然后异步地导致因特网域名系统(DNS)服务器将从文档扫描发现的每个因特网主机名称模式转换为相关联的因特网协议(IP)地址。 然后,该技术将每个转换的IP地址异步存储在本地DNS缓存中。

    COOPERATIVE MECHANISM FOR EFFICIENT APPLICATION MEMORY ALLOCATION
    8.
    发明申请
    COOPERATIVE MECHANISM FOR EFFICIENT APPLICATION MEMORY ALLOCATION 有权
    有效的应用程序记录分配的合作机制

    公开(公告)号:US20070118712A1

    公开(公告)日:2007-05-24

    申请号:US11164393

    申请日:2005-11-21

    申请人: Henri van Riel Adriaan van de Ven

    发明人: Henri van Riel Adriaan van de Ven

    IPC分类号: G06F12/00

    CPC分类号: G06F12/023 G06F12/08 G06F12/12 G06F12/14

    摘要: System, method and computer program product for allocating physical memory to processes. The method includes enabling a kernel to free memory in a physical memory space corresponding to arbitrarily sized memory allocations released by processes or applications in a virtual memory space. After freeing the memory, the system determines whether freed physical memory in the physical memory space spans one or more fixed size memory units (e.g., page frames). The method further includes designating a status of the one or more page frames as available for reuse; the freed page frames marked as available for reuse being available for backing a new process without requiring the kernel to delete data included in the freed memory released by the process. The kernel may organize pages marked as available for reuse in one or more local “pools” that is organized according to a variety of schemes which provide system efficiencies in that the kernel can eliminate the need for deleting of old data in those page frames without compromising data security.

    摘要翻译: 用于将物理内存分配给进程的系统,方法和计算机程序产品。 该方法包括使内核能够释放对应于虚拟存储器空间中由进程或应用释放的任意大小的存储器分配的物理存储器空间中的存储器。 在释放存储器之后,系统确定物理存储器空间中释放的物理存储器是否跨越一个或多个固定大小的存储器单元(例如,页面帧)。 该方法还包括指定可用于重用的一个或多个页面帧的状态; 标记为可重用的释放页面框架可用于支持新进程,而不需要内核删除由进程释放的释放的内存中包含的数据。 内核可以组织标记为可用于在一个或多个本地“池”中可重用的页面,其根据提供系统效率的各种方案来组织,因为内核可以消除在这些页面帧中删除旧数据的需要而不损害 数据安全。

    System and method for detecting computer virus
    9.
    发明申请
    System and method for detecting computer virus 有权
    检测计算机病毒的系统和方法

    公开(公告)号:US20060015747A1

    公开(公告)日:2006-01-19

    申请号:US10892464

    申请日:2004-07-16

    申请人: Adriaan Van de Ven

    发明人: Adriaan Van de Ven

    IPC分类号: H04L9/32

    CPC分类号: H04L63/0428 H04L63/145

    摘要: A method is disclosed for detecting computer viruses. The method allows receipt of an electronic mail message that includes at least one encrypted attachment. The electronic mail message is examined in order to identify potential encryption codes. The encryption codes are used in order to attempt and decrypt the attachments. The attachments are expanded into one or more files. The files are then checked for the presence of computer viruses.

    摘要翻译: 公开了一种用于检测计算机病毒的方法。 该方法允许接收包括至少一个加密附件的电子邮件消息。 检查电子邮件消息以识别潜在的加密代码。 使用加密代码来尝试和解密附件。 附件扩展为一个或多个文件。 然后检查文件是否存在计算机病毒。