-
公开(公告)号:US20080052360A1
公开(公告)日:2008-02-28
申请号:US11466405
申请日:2006-08-22
申请人: Amit Jhawar
发明人: Amit Jhawar
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: H04L51/12 , H04L63/0263
摘要: A set of filter rules are applied to pieces of text. The runtime for each rule of the set of filter rules is determined. The runtime performance of the set of filter rules based on the runtime for each rule is outputted.
摘要翻译: 一组过滤规则应用于文本段。 确定一组过滤器规则中每个规则的运行时间。 输出基于每个规则的运行时间的一组过滤器规则的运行时性能。
-
公开(公告)号:US07756929B1
公开(公告)日:2010-07-13
申请号:US10849090
申请日:2004-05-18
申请人: Nancy Pettigrew , Amit Jhawar , Shashank Kavishwar
发明人: Nancy Pettigrew , Amit Jhawar , Shashank Kavishwar
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: H04L51/12 , G06Q10/107
摘要: The present invention provides an improved system and method for processing e-mail. The system may be implemented over a distributed network having several redundant mail servers. The system may include a message switch that receives all incoming e-mail messages and includes a policy filter, a content filter, a virus filter and a spam filter. The filters process the message in a sequential order and can be dynamically reconfigured to adapt to certain conditions. The message is stored in an area of the message switch and the filters communicate with each other by passing links to the message in order to reduce input/output. This communication method may be altered to suit the installation of the software, without altering each filter. Messages that do not pass the filters may be rejected or placed in a quarantine area. Messages that pass all of the filters are delivered to their intended recipients.
摘要翻译: 本发明提供一种用于处理电子邮件的改进的系统和方法。 该系统可以通过具有多个冗余邮件服务器的分布式网络来实现。 该系统可以包括消息交换机,其接收所有传入的电子邮件消息并且包括策略过滤器,内容过滤器,病毒过滤器和垃圾邮件过滤器。 过滤器按顺序处理消息,并且可以动态重新配置以适应某些条件。 消息存储在消息交换机的一个区域中,并且过滤器通过传递链接到消息来相互通信,以便减少输入/输出。 该通信方法可以被改变以适应软件的安装,而不改变每个过滤器。 不通过过滤器的邮件可能被拒绝或放置在隔离区域。 通过所有过滤器的邮件将传递给其预期的收件人。
-
公开(公告)号:US07734703B2
公开(公告)日:2010-06-08
申请号:US11458342
申请日:2006-07-18
申请人: Amit Jhawar
发明人: Amit Jhawar
CPC分类号: H04L63/0227 , H04L51/12
摘要: A method and system for detecting and preventing bulk messages in real-time is provided. A detection server detects and prevents bulk messages in real-time by analyzing the network traffic pattern of attributes of messages, such as email messages, that are passing through the network against an expected network traffic pattern. The expected network traffic pattern may be specified as a combination of a rate and one or more thresholds, where each threshold has a corresponding status. The rate specifies a quantity of an attribute measured with respect to a quantity of time. A status associated with a threshold is attained when the rate is exceeded the requisite threshold number of times. The status indicates an action that is to be taken in processing the email message containing the attribute. An email message can then be processed in accordance with a status assigned to an attribute of the email message.
摘要翻译: 提供了一种用于实时检测和防止批量消息的方法和系统。 检测服务器通过分析通过网络抵抗预期网络流量模式的消息(例如电子邮件)的属性的网络流量模式来实时检测和防止批量消息。 可以将期望的网络流量模式指定为速率和一个或多个阈值的组合,其中每个阈值具有相应的状态。 速率指定相对于时间量测量的属性的数量。 当速率超过必需的阈值次数时,可以获得与阈值相关联的状态。 该状态表示在处理包含该属性的电子邮件消息时将采取的操作。 然后可以根据分配给电子邮件消息的属性的状态来处理电子邮件消息。
-
公开(公告)号:US20080140826A1
公开(公告)日:2008-06-12
申请号:US11684929
申请日:2007-03-12
申请人: Charles McColgan , Marc Levy , Lance Galey , Stephen Bolinger , Amit Jhawar , Todd Roman , Malcolm Erik Pearson , Yi Liao
发明人: Charles McColgan , Marc Levy , Lance Galey , Stephen Bolinger , Amit Jhawar , Todd Roman , Malcolm Erik Pearson , Yi Liao
IPC分类号: G06F15/173
CPC分类号: G06Q10/107 , H04L51/12 , H04L67/1002 , H04L67/1008 , H04L67/1029 , H04L67/322 , H04L69/40
摘要: A method for controlling a message distribution process comprising a series of coordinated processes by monitoring the performance of each process, determining that a monitored process is not processing properly, and skipping the process not processing properly. Another method for controlling the load of message traffic by determining the performance of a message server and altering the flow of messages based upon the determined performance of the message server. Another method for routing messages by identifying the addresses of senders of received messages, assigning a portion of the addresses to a category, and routing messages from the identified addresses according to their assigned category.
摘要翻译: 一种用于通过监视每个进程的性能,确定被监视的进程未正确处理以及跳过未正确处理的进程来控制消息分发过程的方法,该方法包括一系列协调进程。 另一种通过确定消息服务器的性能并根据确定的消息服务器的性能来改变消息流来控制消息业务的负载的方法。 通过识别接收到的消息的发送者的地址,将一部分地址分配给类别以及根据其分配的类别从所标识的地址路由消息来路由消息的另一种方法。
-
公开(公告)号:US20080021961A1
公开(公告)日:2008-01-24
申请号:US11458342
申请日:2006-07-18
申请人: Amit Jhawar
发明人: Amit Jhawar
IPC分类号: G06F15/16
CPC分类号: H04L63/0227 , H04L51/12
摘要: A method and system for detecting and preventing bulk messages in real-time is provided. A detection server detects and prevents bulk messages in real-time by analyzing the network traffic pattern of attributes of messages, such as email messages, that are passing through the network against an expected network traffic pattern. The expected network traffic pattern may be specified as a combination of a rate and one or more thresholds, where each threshold has a corresponding status. The rate specifies a quantity of an attribute measured with respect to a quantity of time. A status associated with a threshold is attained when the rate is exceeded the requisite threshold number of times. The status indicates an action that is to be taken in processing the email message containing the attribute. An email message can then be processed in accordance with a status assigned to an attribute of the email message.
摘要翻译: 提供了一种用于实时检测和防止批量消息的方法和系统。 检测服务器通过分析通过网络抵抗预期网络流量模式的消息(例如电子邮件消息)的属性的网络流量模式来实时检测和防止批量消息。 可以将期望的网络流量模式指定为速率和一个或多个阈值的组合,其中每个阈值具有相应的状态。 速率指定相对于时间量测量的属性的数量。 当速率超过必需的阈值次数时,可以获得与阈值相关联的状态。 该状态表示在处理包含该属性的电子邮件消息时将采取的操作。 然后可以根据分配给电子邮件消息的属性的状态来处理电子邮件消息。
-
公开(公告)号:US07797443B1
公开(公告)日:2010-09-14
申请号:US10728023
申请日:2003-12-03
申请人: Nancy Pettigrew , Amit Jhawar
发明人: Nancy Pettigrew , Amit Jhawar
IPC分类号: G06F15/16
CPC分类号: G06Q30/02 , G06Q10/107
摘要: An improved system and method for detecting spam e-mail over a distributed network is disclosed. The distributed network includes multiple servers that receive and process e-mail messages for a multiple remotely located clients. The system includes multiple packet sniffers that are each located on a unique one of servers. The packet sniffers extract originating IP addresses associated with e-mail messages that are communicated to the clients over the network. The system further includes a central monitor that communicates with the packet sniffers and that monitors data regarding originating IP addresses. The monitor determines whether an originating IP address has exceeded a threshold value and may take corrective measures in response, such as generating an alert to a spam analyst or blocking messages originating from that IP address. By leveraging data from several different clients, the system can detect and stop spam messages for an IP address even if a spammer has not targeted a specific customer.
摘要翻译: 公开了一种用于在分布式网络上检测垃圾邮件的改进的系统和方法。 分布式网络包括多个服务器,它们为多个位于远程的客户端接收和处理电子邮件。 该系统包括多个分组嗅探器,每个分组嗅探器都位于唯一的一个服务器上。 分组嗅探器提取与通过网络传送到客户端的电子邮件相关联的起始IP地址。 该系统还包括与分组嗅探器通信并监视关于发起IP地址的数据的中央监视器。 监视器确定始发IP地址是否已经超过阈值并且可以采取响应的纠正措施,例如向垃圾邮件分析器生成警报或阻止源自该IP地址的消息。 通过利用来自多个不同客户端的数据,即使垃圾邮件发送者没有针对特定客户,系统也可以检测和停止IP地址的垃圾邮件。
-
公开(公告)号:US20100228701A1
公开(公告)日:2010-09-09
申请号:US12399445
申请日:2009-03-06
CPC分类号: H04L51/12
摘要: The present invention extends to methods, systems, and computer program products for updating Bloom filters. Embodiments of the invention facilitate more efficient use Bloom filters across multiple computers connected across a WAN (potentially having limited bandwidth and latency characteristics), such as, for example, computers located on different continents. The acceptability of false positives is leveraged by allowing the operation of removing items from a set to be batched and delayed. On the other hand, insert operations may be more latency sensitive as a delayed insert results in the semantic equivalent to a false negative. As such, additions to a set are processed in closer to real time to update Bloom filters. In some embodiments, Bloom filters are used to check set membership for electronic mail addresses.
摘要翻译: 本发明扩展到用于更新布隆过滤器的方法,系统和计算机程序产品。 本发明的实施例有助于更有效地使用跨越WAN连接的多台计算机的Bloom过滤器(可能具有有限的带宽和延迟特性),例如位于不同大陆的计算机。 通过允许从集合中移除项目的操作被批量和延迟来利用假阳性的可接受性。 另一方面,插入操作可能会更加延迟敏感,因为延迟插入会导致与假阴性相等的语义。 因此,更接近实时地处理集合的添加以更新Bloom过滤器。 在一些实施例中,布鲁姆过滤器用于检查电子邮件地址的集合成员资格。
-
公开(公告)号:US07610342B1
公开(公告)日:2009-10-27
申请号:US10690422
申请日:2003-10-21
申请人: Nancy Pettigrew , Amit Jhawar
发明人: Nancy Pettigrew , Amit Jhawar
IPC分类号: G06F15/16
CPC分类号: G06Q10/107
摘要: The present invention provides an improved system and method for analyzing spam e-mail. The system and method monitors instances of spam across a distributed network, and creates and stores records of these instances as encoded information strings, which are attached to each message as a header. The system and method use information and statistics obtained from the information strings to dynamically create, modify and retire rules for analyzing and managing spam e-mail. The system also allows analysts to dynamically create, modify and retire rules based upon feedback regarding unidentified spam messages and false positives.
摘要翻译: 本发明提供了一种用于分析垃圾邮件的改进的系统和方法。 系统和方法监视跨分布式网络的垃圾邮件的实例,并将这些实例的记录创建并存储为已编码的信息字符串,它们作为标题附加到每个消息。 系统和方法使用从信息字符串获取的信息和统计信息来动态地创建,修改和退出用于分析和管理垃圾邮件的规则。 该系统还允许分析人员根据关于不明身份的垃圾邮件和误报的反馈动态地创建,修改和撤销规则。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.019 秒)
