-
1.发明授权Methods, devices, and systems for detecting return-oriented programming exploits 有权用于检测面向回归的编程漏洞的方法,设备和系统公开(公告)号:US08839429B2
公开(公告)日:2014-09-16
申请号:US13290932
申请日:2011-11-07
申请人: Daniel Komaromy , Alex Gantman , Brian M. Rosenberg , Arun Balakrishnan , Renwei Ge , Gregory G. Rose , Anand Palanigounder
发明人: Daniel Komaromy , Alex Gantman , Brian M. Rosenberg , Arun Balakrishnan , Renwei Ge , Gregory G. Rose , Anand Palanigounder
CPC分类号: G06F21/52 , G06F11/3037 , G06F11/3466 , G06F12/0811 , G06F12/0848 , G06F12/0875 , G06F12/14 , G06F21/554 , G06F21/566 , G06F2212/452
摘要: Methods, devices, and systems for detecting return-oriented programming (ROP) exploits are disclosed. A system includes a processor, a main memory, and a cache memory. A cache monitor develops an instruction loading profile by monitoring accesses to cached instructions found in the cache memory and misses to instructions not currently in the cache memory. A remedial action unit terminates execution of one or more of the valid code sequences if the instruction loading profile is indicative of execution of an ROP exploit involving one or more valid code sequences. The instruction loading profile may be a hit/miss ratio derived from monitoring cache hits relative to cache misses. The ROP exploits may include code snippets that each include an executable instruction and a return instruction from valid code sequences.
摘要翻译: 公开了用于检测返回式编程(ROP)漏洞的方法,设备和系统。 系统包括处理器,主存储器和高速缓冲存储器。 高速缓存监视器通过监视对高速缓冲存储器中发现的高速缓存指令的访问来开发指令加载简档,并且错过当前不在高速缓冲存储器中的指令。 如果指令加载简档指示涉及一个或多个有效代码序列的ROP利用的执行,补救动作单元终止一个或多个有效代码序列的执行。 指令加载简档可以是相对于高速缓存未命中从监视高速缓存命中得到的命中/未命中比率。 ROP利用可能包括代码段,每个代码片段都包含可执行指令和来自有效代码序列的返回指令。
-
公开(公告)号:US20130185792A1
公开(公告)日:2013-07-18
申请号:US13351006
申请日:2012-01-16
申请人: Arun Balakrishnan , Alexander Gantman , Renwei Ge , Daniel Komaromy , Yinian Mao , Anand Palanigounder , Brian M. Rosenberg
发明人: Arun Balakrishnan , Alexander Gantman , Renwei Ge , Daniel Komaromy , Yinian Mao , Anand Palanigounder , Brian M. Rosenberg
IPC分类号: G06F21/00
CPC分类号: G06F21/54
摘要: A method, apparatus, and/or system for execution prevention is provided. A state indicator for a first subset of a plurality of memory pages of executable code in a memory device is set to a non-executable state. A state indicator for a second subset of the plurality of memory pages is set to an executable state, where the second subset of the plurality of memory pages includes indirection stubs to functions in the first subset of the plurality of memory pages. Upon execution of an application, a function call is directed to a corresponding indirection stub in the second subset of the plurality of memory pages which modifies the state indicator for a corresponding function in the first subset of the plurality of memory pages prior to directing execution of the called function from the first subset of the plurality of memory pages.
摘要翻译: 提供了用于执行预防的方法,装置和/或系统。 用于存储器设备中的可执行代码的多个存储器页的第一子集的状态指示符被设置为不可执行状态。 多个存储器页的第二子集的状态指示符被设置为可执行状态,其中多个存储器页的第二子集包括多个存储器页的第一子集中的功能的间接存根。 在执行应用程序时,将功能调用定向到多个存储器页面的第二子集中的对应的间接存根,其在指导执行之前修改多个存储器页的第一子集中的相应功能的状态指示符 来自多个存储器页的第一子集的被调用函数。
-
公开(公告)号:US08776223B2
公开(公告)日:2014-07-08
申请号:US13351006
申请日:2012-01-16
申请人: Arun Balakrishnan , Alexander Gantman , Renwei Ge , Daniel Komaromy , Yinian Mao , Anand Palanigounder , Brian M. Rosenberg
发明人: Arun Balakrishnan , Alexander Gantman , Renwei Ge , Daniel Komaromy , Yinian Mao , Anand Palanigounder , Brian M. Rosenberg
IPC分类号: G06F21/00
CPC分类号: G06F21/54
摘要: A method, apparatus, and/or system for execution prevention is provided. A state indicator for a first subset of a plurality of memory pages of executable code in a memory device is set to a non-executable state. A state indicator for a second subset of the plurality of memory pages is set to an executable state, where the second subset of the plurality of memory pages includes indirection stubs to functions in the first subset of the plurality of memory pages. Upon execution of an application, a function call is directed to a corresponding indirection stub in the second subset of the plurality of memory pages which modifies the state indicator for a corresponding function in the first subset of the plurality of memory pages prior to directing execution of the called function from the first subset of the plurality of memory pages.
摘要翻译: 提供了用于执行预防的方法,装置和/或系统。 用于存储器设备中的可执行代码的多个存储器页的第一子集的状态指示符被设置为不可执行状态。 多个存储器页的第二子集的状态指示符被设置为可执行状态,其中多个存储器页的第二子集包括多个存储器页的第一子集中的功能的间接存根。 在执行应用程序时,将功能调用定向到多个存储器页面的第二子集中的对应的间接存根,其在指导执行之前修改多个存储器页的第一子集中的相应功能的状态指示符 来自多个存储器页的第一子集的被调用函数。
-
公开(公告)号:US08736433B2
公开(公告)日:2014-05-27
申请号:US12888206
申请日:2010-09-22
IPC分类号: G08G1/096883
CPC分类号: B60R25/00
摘要: Disclosed is an apparatus and method to detect vehicle theft. In one embodiment, a processor may be configured to execute instructions to: receive a vehicle detection signal from a vehicle detector; determine whether a vehicle is present or absent based upon the vehicle detection signal; establish an authentication credential after the vehicle is determined to present; and validate the authentication credential to indicate validated parking. If the vehicle is determined to be absent and an authentication credential to un-park the vehicle has not been validated, a notification action may be transmitted to appropriate personnel to indicate that the vehicle has been moved or un-parked without proper authentication.
摘要翻译: 公开了一种检测车辆盗窃的装置和方法。 在一个实施例中,处理器可以被配置为执行指令以:从车辆检测器接收车辆检测信号; 基于车辆检测信号来确定车辆是否存在或不存在; 车辆确定出现后建立认证凭证; 并验证验证凭证以指示已验证的停车。 如果车辆被确定为不存在并且未停止车辆的认证凭证未被验证,则可以向适当的人员发送通知动作,以指示车辆已被移动或未被停放而没有正确认证。
-
公开(公告)号:US20120068837A1
公开(公告)日:2012-03-22
申请号:US12888206
申请日:2010-09-22
IPC分类号: B60R25/10
CPC分类号: B60R25/00
摘要: Disclosed is an apparatus and method to detect vehicle theft. In one embodiment, a processor may be configured to execute instructions to: receive a vehicle detection signal from a vehicle detector; determine whether a vehicle is present or absent based upon the vehicle detection signal; establish an authentication credential after the vehicle is determined to present; and validate the authentication credential to indicate validated parking. If the vehicle is determined to be absent and an authentication credential to un-park the vehicle has not been validated, a notification action may be transmitted to appropriate personnel to indicate that the vehicle has been moved or un-parked without proper authentication.
摘要翻译: 公开了一种检测车辆盗窃的装置和方法。 在一个实施例中,处理器可以被配置为执行指令以:从车辆检测器接收车辆检测信号; 基于车辆检测信号来确定车辆是否存在或不存在; 车辆确定出现后建立认证凭证; 并验证验证凭证以指示已验证的停车。 如果车辆被确定为不存在并且未停止车辆的认证证书尚未被验证,则可以向适当的人员发送通知动作以指示车辆已被移动或未被停放而没有正确认证。
-
6.发明授权Pairing and authentication process between a host device and a limited input wireless device 有权主机设备与有限输入无线设备之间的配对和认证过程公开(公告)号:US09264897B2
公开(公告)日:2016-02-16
申请号:US13076211
申请日:2011-03-30
IPC分类号: G06F12/00 , G06F12/14 , G11C7/00 , H04W12/06 , H04L29/06 , H04M1/05 , H04M1/725 , G06F11/30 , G06F15/173 , H04M1/60
CPC分类号: H04W12/06 , H04L63/0492 , H04L63/0861 , H04L63/18 , H04M1/05 , H04M1/6066 , H04M1/7253 , H04M2250/12
摘要: Disclosed is an apparatus and method to perform a pairing process with a limited input wireless device. A host device includes a transceiver and a processor. The processor may be configured to execute instructions to: receive from the transceiver a pairing process request from the limited input wireless device, wherein the pairing process request includes a private code based upon a physical user action implemented with the limited input wireless device; and implement a pairing process to validate the limited input wireless device for a particular host device function associated with the private code.
摘要翻译: 公开了一种用有限输入无线设备执行配对处理的装置和方法。 主机设备包括收发器和处理器。 处理器可以被配置为执行指令:从收发机接收来自有限输入无线设备的配对处理请求,其中配对处理请求包括基于用有限输入无线设备实现的物理用户动作的专用代码; 并且实现配对过程来验证与私人代码相关联的特定主机设备功能的有限输入无线设备。
-
7.发明申请Pairing and authentication process between a host device and a limited input wireless device 有权主机设备与有限输入无线设备之间的配对和认证过程公开(公告)号:US20120254987A1
公开(公告)日:2012-10-04
申请号:US13076211
申请日:2011-03-30
IPC分类号: G06F21/00
CPC分类号: H04W12/06 , H04L63/0492 , H04L63/0861 , H04L63/18 , H04M1/05 , H04M1/6066 , H04M1/7253 , H04M2250/12
摘要: Disclosed is an apparatus and method to perform a pairing process with a limited input wireless device. A host device includes a transceiver and a processor. The processor may be configured to execute instructions to: receive from the transceiver a pairing process request from the limited input wireless device, wherein the pairing process request includes a private code based upon a physical user action implemented with the limited input wireless device; and implement a pairing process to validate the limited input wireless device for a particular host device function associated with the private code.
摘要翻译: 公开了一种用有限输入无线设备执行配对处理的装置和方法。 主机设备包括收发器和处理器。 处理器可以被配置为执行指令:从收发机接收来自有限输入无线设备的配对处理请求,其中配对处理请求包括基于用有限输入无线设备实现的物理用户动作的专用代码; 并且实现配对过程来验证与私人代码相关联的特定主机设备功能的有限输入无线设备。
-
公开(公告)号:US06732310B1
公开(公告)日:2004-05-04
申请号:US09568049
申请日:2000-05-10
IPC分类号: G01R3128
CPC分类号: G01R31/318586
摘要: A method, system and a computer product for a new partial scan technique that incurs significantly less overhead than the full-scan technique and yet achieves very high test coverage in short CPU times are provided. Scan memory elements are selected so that the scanned circuit satisfies two key properties in the test mode. First, the scanned circuit has partitions that are peripherally interacting finite state machines (peripheral partitions). Second, the memory element dependency graph (S-graph) of each peripheral partition of the scanned circuit has a tree structure. An efficient for algorithm peripheral partitioning and tree decomposition is provided. The scan memory element selection algorithm iteratively partitions the S-graph into disjoint sub-graphs with the tree structure.
摘要翻译: 提供了一种用于新的局部扫描技术的方法,系统和计算机产品,其导致比全扫描技术显着更少的开销,并且在短的CPU时间内实现非常高的测试覆盖。 选择扫描存储元件,使得扫描电路在测试模式下满足两个关键属性。 首先,扫描电路具有外围相互作用的有限状态机(外围分区)的分区。 第二,扫描电路的每个外围分区的存储元件依赖图(S图)具有树结构。 提供了一种高效的算法外设分区和树分解。 扫描存储器元件选择算法将S-graph迭代地分割成具有树结构的不相交的子图。
-
公开(公告)号:US06505316B1
公开(公告)日:2003-01-07
申请号:US09497521
申请日:2000-02-04
IPC分类号: H04B1700
CPC分类号: G01R31/318586
摘要: A method, system and a computer product for a new partial scan technique that incurs significantly less overhead than the full-scan technique and yet achieves very high test coverage in short CPU times are provided. Scan memory elements are selected so that the scanned circuit satisfies two key properties in the test mode. First, the scanned circuit has partitions that are peripherally interacting finite state machines (peripheral partitions). Second, the memory element dependency graph (S-graph) of each peripheral partition of the scanned circuit has a tree structure. An efficient for algorithm peripheral partitioning and tree decomposition is provided. The scan memory element selection algorithm iteratively partitions the S-graph into disjoint sub-graphs with the tree structure.
摘要翻译: 提供了一种用于新的局部扫描技术的方法,系统和计算机产品,其导致比全扫描技术显着更少的开销,并且在短的CPU时间内实现非常高的测试覆盖。 选择扫描存储元件,使得扫描电路在测试模式下满足两个关键属性。 首先,扫描电路具有外围相互作用的有限状态机(外围分区)的分区。 第二,扫描电路的每个外围分区的存储元件依赖图(S图)具有树结构。 提供了一种高效的算法外设分区和树分解。 扫描存储器元件选择算法将S-graph迭代地分割成具有树结构的不相交的子图。
-
10.发明授权Suspension with integrated conductor trace array having optimized cross-sectional high frequency current density 失效具有优化的横截面高频电流密度的集成导体迹线阵列的悬架
公开(公告)号:US5812344A
公开(公告)日:1998-09-22
申请号:US855809
申请日:1997-05-12
申请人: Arun Balakrishnan
发明人: Arun Balakrishnan
CPC分类号: G11B5/4853 , G11B21/16 , G11B5/484 , G11B5/486 , G11B5/3967
摘要: A head suspension has a segmented trace conductor array for electrically interconnecting a read/write head to electronic circuitry in a disk drive. Each trace segment has a predetermined generally rectangular cross-sectional area such that the intermediate first segment has a predetermined cross-sectional width greater than a predetermined cross-sectional width of an first outer segment, in order to optimize current density at very high signaling frequencies associated with information transfer between the head and the read/write circuitry.
摘要翻译: 磁头悬架具有用于将读/写头与磁盘驱动器中的电子电路电互连的分段迹线导体阵列。 每个迹线段具有预定的大致矩形横截面积,使得中间第一段具有大于第一外部段的预定横截面宽度的预定横截面宽度,以便在非常高的信号频率下优化电流密度 与头部和读取/写入电路之间的信息传输相关联。
-
-
-
-
-
-
-
-
-
搜索结果
28 条记录 (耗时 0.027 秒)
