公开(公告)号：US09098459B2

公开(公告)日：2015-08-04

申请号：US12697170

申请日：2010-01-29

申请人： Malcolm H Davis ,  Aravind K Ramachandran ,  Geoffrey J Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

发明人： Malcolm H Davis ,  Aravind K Ramachandran ,  Geoffrey J Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

IPC分类号： G06F11/00 ,  G06F15/16 ,  H04L29/06 ,  G06F15/173 ,  G06F21/00

CPC分类号： G06F15/16 ,  G06F15/173 ,  G06F21/00 ,  H04L63/0236 ,  H04L63/1425

摘要： The filtering of activities generated by nodes of a network while interacting with a device may be performed by evaluating the desirability of the activities (e.g., a spam or not-spam determination of email messages sent by the node) and assigning a trust rating to the node. However, nodes are often identified by network address, and an operator of a node sending undesirable activities may reassign the network address of the node in order to avoid heavy filtering. Instead, nodes may be identified as being controlled by a network entity (e.g., an autonomous system identified in a border gateway protocol routing table.) The network entity is assigned a network entity trust rating based on the trust ratings of the nodes controlled thereby, and an appropriate level of activity filtering based on the network entity trust rating may be selected for subsequent activities received from all nodes controlled by the network entity.

摘要翻译： 可以通过评估活动的可取性（例如，由节点发送的电子邮件的垃圾邮件或非垃圾邮件确定）来对网络节点生成的活动进行过滤，并且向 节点。 然而，节点通常由网络地址识别，并且发送不期望的活动的节点的运营商可以重新分配节点的网络地址，以避免严重的过滤。 相反，节点可以被识别为由网络实体（例如，边界网关协议路由表中标识的自治系统）来控制。网络实体基于由其控制的节点的信任等级被分配网络实体信任等级， 并且可以针对从由网络实体控制的所有节点接收的后续活动来选择基于网络实体信任等级的适当级别的活动过滤。

公开(公告)号：US20110191832A1

公开(公告)日：2011-08-04

申请号：US12697179

申请日：2010-01-29

申请人： Malcolm H. Davis ,  Aravind K. Ramachandran ,  Geoffrey J. Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

发明人： Malcolm H. Davis ,  Aravind K. Ramachandran ,  Geoffrey J. Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

IPC分类号： G06F21/00 ,  G06F15/16

CPC分类号： G06F15/16 ,  G06F21/00

摘要： Network entities controlling a set of nodes may vary by trustworthiness, such as tolerance for nodes that send spam, distribute malware, or perform denial-of-service attacks. A device receiving such activities may identify a trust rating of the network entity and apply appropriately stringent filtering (such as spam evaluation) to activities received from nodes controlled by the network entity. However, a poor trust rating of a network entity may subject a legitimate node controlled by the network entity to inefficiently or unfairly stringent activity filtering. Instead, the device may evaluate the activities of a particular node, assign a trust rating to the node, and if the trust rating of the node is higher than the trust rating of the network entity, apply less stringent activity filtering to the activities of the node, thereby “rescuing” the node from the more stringent activity filtering applied to the other nodes of the network entity.

摘要翻译： 控制一组节点的网络实体可以由可信赖性变化，例如发送垃圾邮件，分发恶意软件或执行拒绝服务攻击的节点的容限。 接收这种活动的设备可以识别网络实体的信任等级，并对从由网络实体控制的节点接收到的活动进行适当严格的过滤（例如垃圾评估）。 然而，网络实体的不良信任等级可能使由网络实体控制的合法节点受到无效或不公平的严格活动过滤。 相反，设备可以评估特定节点的活动，为节点分配信任评级，并且如果节点的信任等级高于网络实体的信任等级，则对活动的活动应用较不严格的活动过滤 节点，从而将节点从应用于网络实体的其他节点的更严格的活动过滤“拯救”。

公开(公告)号：US4110615A

公开(公告)日：1978-08-29

申请号：US851926

申请日：1977-11-16

申请人： Robert L. McCann

发明人： Robert L. McCann

IPC分类号： G01T1/29 ,  G01T1/00

CPC分类号： G01T1/2964

摘要： Apparatus for automatically scanning processed radiochromatagram strips. The apparatus comprises a carrier wheel having a processed chromatagram mounted on the periphery thereof by a strip of plastic tape. The wheel carries the processed chromatagram past a radiation detector. Photoelectric means are provided to provide signals indicative of the position of the carrier wheel. The apparatus includes electrical circuitry responsive to the signals produced by the radiation detector to provide a numerical display of the total radioactivity detected along the entire strip and for providing a numerical display of the radioactivity detected along a selected portion of the strip. A strip chart recorder is provided in the apparatus to produce a graphical display of the spectral distribution of the radioactivity along the entire strip. The apparatus includes logic means for controlling the functions of the apparatus to provide a completely automated system.

摘要翻译： 用于自动扫描处理后的放射色谱条的装置。 该装置包括承载轮，该承载轮具有通过塑料条带安装在其外围的经处理的色差图。 轮子通过辐射探测器运送经过处理的色谱图。 提供光电装置以提供指示承载轮的位置的信号。 该装置包括响应于由辐射检测器产生的信号的电路，以提供沿整个条带检测到的总放射性的数值显示，并提供沿条带的选定部分检测的放射性的数值显示。 在该装置中提供条形图记录器以产生沿整个条带的放射性的光谱分布的图形显示。 该装置包括用于控制装置的功能以提供完全自动化的系统的逻辑装置。

公开(公告)号：US08370902B2

公开(公告)日：2013-02-05

申请号：US12697179

申请日：2010-01-29

申请人： Malcolm H Davis ,  Aravind K Ramachandran ,  Geoffrey J Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

发明人： Malcolm H Davis ,  Aravind K Ramachandran ,  Geoffrey J Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

IPC分类号： H04L29/06

CPC分类号： G06F15/16 ,  G06F21/00

摘要： Network entities controlling a set of nodes may vary by trustworthiness, such as tolerance for nodes that send spam, distribute malware, or perform denial-of-service attacks. A device receiving such activities may identify a trust rating of the network entity and apply appropriately stringent filtering (such as spam evaluation) to activities received from nodes controlled by the network entity. However, a poor trust rating of a network entity may subject a legitimate node controlled by the network entity to inefficiently or unfairly stringent activity filtering. Instead, the device may evaluate the activities of a particular node, assign a trust rating to the node, and if the trust rating of the node is higher than the trust rating of the network entity, apply less stringent activity filtering to the activities of the node, thereby “rescuing” the node from the more stringent activity filtering applied to the other nodes of the network entity.

摘要翻译： 控制一组节点的网络实体可以由可信赖性变化，例如发送垃圾邮件，分发恶意软件或执行拒绝服务攻击的节点的容限。 接收这种活动的设备可以识别网络实体的信任等级，并对从由网络实体控制的节点接收到的活动进行适当严格的过滤（例如垃圾评估）。 然而，网络实体的不良信任等级可能使由网络实体控制的合法节点受到无效或不公平的严格活动过滤。 相反，设备可以评估特定节点的活动，为节点分配信任评级，并且如果节点的信任等级高于网络实体的信任等级，则对活动的活动应用较不严格的活动过滤 节点，从而将节点从应用于网络实体的其他节点的更严格的活动过滤中救出。

公开(公告)号：US20110191847A1

公开(公告)日：2011-08-04

申请号：US12697170

申请日：2010-01-29

申请人： Malcolm H. Davis ,  Aravind K. Ramachandran ,  Geoffrey J. Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

发明人： Malcolm H. Davis ,  Aravind K. Ramachandran ,  Geoffrey J. Hulten ,  Ivan Osipkov ,  Milenko Drinic ,  Eliot C. Gillum ,  Krishna C. Vitaldevara ,  Jason D. Walter ,  Mehrdad Bidgoli ,  Robert L. McCann

IPC分类号： G06F15/173 ,  G06F15/16 ,  G06F21/00

CPC分类号： G06F15/16 ,  G06F15/173 ,  G06F21/00 ,  H04L63/0236 ,  H04L63/1425

摘要： The filtering of activities generated by nodes of a network while interacting with a device may be performed by evaluating the desirability of the activities (e.g., a spam or not-spam determination of email messages sent by the node) and assigning a trust rating to the node. However, nodes are often identified by network address, and an operator of a node sending undesirable activities may reassign the network address of the node in order to avoid heavy filtering. Instead, nodes may be identified as being controlled by a network entity (e.g., an autonomous system identified in a border gateway protocol routing table.) The network entity is assigned a network entity trust rating based on the trust ratings of the nodes controlled thereby, and an appropriate level of activity filtering based on the network entity trust rating may be selected for subsequent activities received from all nodes controlled by the network entity.

摘要翻译： 可以通过评估活动的可取性（例如，由节点发送的电子邮件的垃圾邮件或非垃圾邮件确定）来对网络节点生成的活动进行过滤，并且向 节点。 然而，节点通常由网络地址识别，并且发送不期望的活动的节点的运营商可以重新分配节点的网络地址，以避免严重的过滤。 相反，节点可以被识别为由网络实体（例如，边界网关协议路由表中标识的自治系统）来控制。网络实体基于由其控制的节点的信任等级被分配网络实体信任等级， 并且可以针对从由网络实体控制的所有节点接收的后续活动来选择基于网络实体信任等级的适当级别的活动过滤。

公开(公告)号：US20110296003A1

公开(公告)日：2011-12-01

申请号：US12791777

申请日：2010-06-01

申请人： Robert L. McCann ,  Eliot C. Gillum ,  Krishna Vitaldevara ,  Jason D. Walter ,  Linda A. McColm ,  Ivan Osipkov

发明人： Robert L. McCann ,  Eliot C. Gillum ,  Krishna Vitaldevara ,  Jason D. Walter ,  Linda A. McColm ,  Ivan Osipkov

IPC分类号： G06F15/16

CPC分类号： G06F21/316 ,  G06F21/55 ,  H04L63/1416 ,  H04L63/168 ,  H04L67/22

摘要： User account behavior techniques are described. In implementations, a determination is made as to whether interaction with a service provider via a user account deviates from a model. The model is based on behavior that was previously observed as corresponding to the user account. Responsive to a determination that the interaction deviates from the model, the user account is flagged as being potentially compromised by a malicious party.

摘要翻译： 描述用户帐户行为技术。 在实现中，确定与服务提供商经由用户帐户的交互是否偏离模型。 该模型基于以前观察到的对应于用户帐户的行为。 响应于确定相互作用偏离模型，用户帐户被标记为被恶意方潜在地损害。

公开(公告)号：US20100211641A1

公开(公告)日：2010-08-19

申请号：US12371695

申请日：2009-02-16

申请人： Wen-tau Yih ,  Chrisopher A. Meek ,  Robert L. McCann ,  Ming-Wei Chang

发明人： Wen-tau Yih ,  Chrisopher A. Meek ,  Robert L. McCann ,  Ming-Wei Chang

IPC分类号： G06F15/16

CPC分类号： G06F15/16 ,  G06Q10/107

摘要： Techniques and systems are described that utilize a scalable, “light-weight” user model, which can be combined with a traditional global email spam filter, to determine whether an email message sent to a target user is a desired email. A global email model is trained with a set of email messages to detect desired emails, and a user email model is also trained to detect desired emails. Training the user email model may comprise one or more of: using labeled training emails; using target user-based information; and using information from the global email model. Global and user model scores for an email sent to a target user can be combined to produce an email score. The email score can be compared with a desired email threshold to determine whether the email message sent to the target user is desired or not.

摘要翻译： 描述了利用可扩展的“轻量级”用户模型的技术和系统，其可以与传统的全球电子邮件垃圾邮件过滤器组合，以确定发送给目标用户的电子邮件消息是否是期望的电子邮件。 全球电子邮件模型通过一组电子邮件进行培训，以检测所需的电子邮件，还会对用户电子邮件模型进行培训，以检测所需的电子邮件。 训练用户电子邮件模型可以包括以下一个或多个：使用标记的训练电子邮件; 使用目标用户信息; 并使用来自全球电子邮件模型的信息。 发送给目标用户的电子邮件的全局和用户模型分数可以组合起来，以产生一个电子邮件分数。 电子邮件分数可以与期望的电子邮件阈值进行比较，以确定是否期望发送给目标用户的电子邮件。