公开(公告)号：US20070131865A1

公开(公告)日：2007-06-14

申请号：US11284421

申请日：2005-11-21

申请人： Eric Lawrence ,  Venkatraman Kudallur ,  Roberto Franco ,  Anthony Chor ,  Michel Suignard ,  James Fox ,  Vishu Gupta

发明人： Eric Lawrence ,  Venkatraman Kudallur ,  Roberto Franco ,  Anthony Chor ,  Michel Suignard ,  James Fox ,  Vishu Gupta

IPC分类号： G21K1/02

CPC分类号： G06F21/6209 ,  G06F21/554

摘要： Security identifiers are analyzed to mitigate the use of misleading characters. In some embodiments, a language-based character set determination is utilized and looks for characters that are different from those that a user and/or the user's system would expect to see. If a security identifier is found to contain a character that is other than one that the user or the user's system would expect to see, then certain remedial actions can be implemented

摘要翻译： 分析安全标识符以减轻使用误导性字符。 在一些实施例中，利用基于语言的字符集确定，并且查找与用户和/或用户的系统期望看到的字符不同的字符。 如果发现安全标识符包含用户或用户系统期望看到的字符，则可以实现某些补救措施

公开(公告)号：US20060010241A1

公开(公告)日：2006-01-12

申请号：US10873576

申请日：2004-06-22

申请人： Venkatraman Kudallur ,  Shankar Ganesh ,  Roberto Franco ,  Vishu Gupta ,  John Bedworth

发明人： Venkatraman Kudallur ,  Shankar Ganesh ,  Roberto Franco ,  Vishu Gupta ,  John Bedworth

IPC分类号： G06F15/16

CPC分类号： G06F21/60 ,  G06F21/56 ,  G06F21/562 ,  G06F21/566

摘要： A model restricts un-trusted data/objects from running on a user's machine without permission. The data is received by a protocol layer that reports a MIME type associated with the DATA, and caches the data and related cache file name (CFN). A MIME sniffer is arranged to identify a sniffed MIME type based on the cached data, the CFN, and the reported MIME type. Reconciliation logic evaluates the sniffed MIME type and the CFN to determine a reconciled MIME type, and to update the CFN. A class ID sniffer evaluates the updated CFN, the cached data, and the reconciled MIME type to determine an appropriate class ID. Security logic evaluates the updated CFN, the reported class ID, and other related system parameters to build a security matrix. Parameters from the security matrix are used to intercept data/objects before an un-trusted data/object can create a security breach on the machine.

公开(公告)号：US20060230272A1

公开(公告)日：2006-10-12

申请号：US11093527

申请日：2005-03-30

申请人： Eric Lawrence ,  Roberto Franco ,  Venkatraman Kudallur ,  Marc Silbey

发明人： Eric Lawrence ,  Roberto Franco ,  Venkatraman Kudallur ,  Marc Silbey

IPC分类号： H04L9/00

CPC分类号： H04L63/126 ,  H04L67/02

摘要： Described herein is a technique of protecting users against certain types of Internet attacks. The technique involves obtaining certificates from visited web sites and qualifying communications with those web sites based on the content of the certificates.

摘要翻译： 这里描述的是保护用户免遭某些类型的因特网攻击的技术。 该技术包括从访问的网站获取证书，并根据证书的内容与这些网站进行合格通信。

公开(公告)号：US20050246761A1

公开(公告)日：2005-11-03

申请号：US10836182

申请日：2004-04-30

申请人： David Ross ,  Roberto Franco ,  John Bedworth ,  Shankar Ganesh ,  Venkatraman Kudallur ,  Anantha Ganjam ,  Kurt Schmucker

发明人： David Ross ,  Roberto Franco ,  John Bedworth ,  Shankar Ganesh ,  Venkatraman Kudallur ,  Anantha Ganjam ,  Kurt Schmucker

IPC分类号： H04L9/00 ,  H04L29/06

CPC分类号： H04L63/20 ,  G06F21/53 ,  G06F21/6218 ,  H04L63/105 ,  H04L63/168

摘要： A method and system for locking down a local machine zone associated with a network browser is provided. Placing the local machine zone in a lockdown mode provides stricter security settings that are applied to active content attempting to publish within a local page open in the network browser. The stricter setting are provided in a new set of registry keys that correspond to the lockdown mode of the local machine zone. The original security settings remain unchanged so that other systems and applications functionality that depends on the original security settings remains unaffected for the local machine zone. A user may also selectively allow active content to render despite the local machine zone being locked down.

摘要翻译： 提供了一种用于锁定与网络浏览器相关联的本地计算机区域的方法和系统。 将本地计算机区域置于锁定模式下，将提供更严格的安全设置，适用于尝试在网络浏览器中打开的本地页面中发布的活动内容。 更严格的设置在与本地机器区域的锁定模式相对应的一组新的注册表项中提供。 原始的安全设置保持不变，这样依赖于原始安全设置的其他系统和应用程序功能对本地计算机区域不会受到影响。 即使本地机器区被锁定，用户也可以选择性地允许活动内容呈现。

公开(公告)号：US20060070008A1

公开(公告)日：2006-03-30

申请号：US10954702

申请日：2004-09-29

申请人： Aaron Sauve ,  Ann Seltzer ,  Robert Dirickson ,  Roberto Franco ,  Jeff Davis ,  Roland Tokumi ,  John Bedworth

发明人： Aaron Sauve ,  Ann Seltzer ,  Robert Dirickson ,  Roberto Franco ,  Jeff Davis ,  Roland Tokumi ,  John Bedworth

IPC分类号： G06F3/00

CPC分类号： G06F9/451

摘要： A method and system for preservation of browser window integrity is disclosed. The position and size of script-created windows is adjusted as necessary to preserve critical data on the computer screen prior to rendering those windows. Popup windows are similarly adjusted so that window integrity is preserved. Popup window size is adjusted to be smaller than the vertical size of the popup's parent window. Popup window position is modified so that popups do not extend above the top, or below the bottom, of their parent window. Finally, the popup position in the z dimension is adjusted so that the popup appears immediately above its parent window.

摘要翻译： 公开了一种保存浏览器窗口完整性的方法和系统。 脚本创建的窗口的位置和大小根据需要进行调整，以在渲染这些窗口之前在计算机屏幕上保留关键数据。 类似地调整弹出窗口，以保持窗口完整性。 弹出窗口大小被调整为小于弹出窗口的垂直尺寸。 弹出窗口位置被修改，使得弹出窗口不会在父窗口的顶部或底部的下方延伸。 最后，调整z维度中的弹出位置，使弹出窗口立即出现在其父窗口的上方。

公开(公告)号：US20060005078A1

公开(公告)日：2006-01-05

申请号：US10880819

申请日：2004-06-30

申请人： Quji Guo ,  Roberto Franco ,  Edward Praitis ,  Li-Hsin Huang ,  Jingyang Xu ,  Brian Wentz ,  Julian Jiggins ,  Venkatavaradhan Panchapagesan

发明人： Quji Guo ,  Roberto Franco ,  Edward Praitis ,  Li-Hsin Huang ,  Jingyang Xu ,  Brian Wentz ,  Julian Jiggins ,  Venkatavaradhan Panchapagesan

IPC分类号： G06F11/00

CPC分类号： G06F11/366 ,  G06F11/3636

摘要： The present invention is generally directed to improving the stability of computing devices by identifying plug-in modules and other programs that cause failures. More specifically, the present invention provides a method that traces program execution from an instruction that ultimately generated a failure to a code library that caused the failure generating instruction to be executed. The method traces execution of the computing device by obtaining the contents of memory at the time of the failure and traversing the stack data structure that stores data items necessary to execute function calls.

摘要翻译： 本发明一般涉及通过识别插件模块和导致故障的其他程序来提高计算设备的稳定性。 更具体地，本发明提供了一种方法，其将从最终产生故障的指令的程序执行跟踪到导致故障生成指令执行的代码库。 该方法通过在故障时获取存储器的内容并遍历存储执行功能调用所必需的数据项的堆栈数据结构跟踪计算设备的执行。

公开(公告)号：US20050278792A1

公开(公告)日：2005-12-15

申请号：US10867338

申请日：2004-06-14

申请人： Sundaram Ramani ,  Joseph Beda ,  Mark Alcazar ,  Roberto Franco ,  Roland Tokumi ,  John Bedworth

发明人： Sundaram Ramani ,  Joseph Beda ,  Mark Alcazar ,  Roberto Franco ,  Roland Tokumi ,  John Bedworth

IPC分类号： H04L9/00 ,  H04L9/32 ,  H04L29/06

CPC分类号： H04L63/104 ,  H04L63/102

摘要： A method and system for validating access to a group of related elements are described. The elements within the group access a security context associated with a markup domain when a call is made to an element. An authorized call to an element is enabled such that the markup domain is navigated to a new web page. However, an unauthorized call is prevented so that the navigation to the new web page is not permitted. After the markup domain has been navigated, the security context associated with the markup domain is invalidated. A new security context is generated and associated with the markup domain. The elements associated with the web page navigated from are inaccessible after navigation of the markup domain to the new page. The association of the new security context with the markup domain prevents an unauthorized user from accessing any element that references the previous security context.

摘要翻译： 描述用于验证对一组相关元素的访问的方法和系统。 当对元素进行调用时，组内的元素访问与标记域相关联的安全上下文。 启用对元素的授权呼叫，使得标记域被导航到新的网页。 然而，防止未经授权的呼叫，使得不允许对新网页的导航。 标记域已导航后，与标记域相关联的安全上下文将无效。 生成新的安全上下文并与标记域相关联。 与导航到网页的网页相关联的元素在标记域导航到新页面后是无法访问的。 新安全上下文与标记域的关联可防止未经授权的用户访问引用先前安全上下文的任何元素。

公开(公告)号：US20070016954A1

公开(公告)日：2007-01-18

申请号：US11176754

申请日：2005-07-07

申请人： Wayne Choi ,  Sean Lyndersay ,  Roberto Franco

发明人： Wayne Choi ,  Sean Lyndersay ,  Roberto Franco

IPC分类号： G06F11/00

CPC分类号： G06F21/554 ,  G06F21/577

摘要： Tools are described that notify a user of a security risk in a network browser. The tools can determine that a security setting of a network browser poses a security risk and notify the user of this risk. In some situations the tools also enable a user to reduce the security risk with a single user action. This single user action can alter one or multiple security settings responsible for the security risk.

摘要翻译： 描述了在网络浏览器中通知用户安全风险的工具。 这些工具可以确定网络浏览器的安全设置带来安全风险，并通知用户此风险。 在某些情况下，这些工具还使用户能够通过单一用户操作来降低安全风险。 这种单一用户操作可以改变负责安全风险的一个或多个安全设置。

公开(公告)号：US20050246772A1

公开(公告)日：2005-11-03

申请号：US10835909

申请日：2004-04-30

申请人： Shankar Ganesh ,  Roberto Franco ,  Kurt Schmucker

发明人： Shankar Ganesh ,  Roberto Franco ,  Kurt Schmucker

IPC分类号： G06F21/00 ,  H04L9/00 ,  H04L29/06

CPC分类号： H04L63/168 ,  G06F21/53 ,  G06F21/6218 ,  H04L63/105

摘要： A method and system for determining whether to allow a network browser action when a transition occurs between security zones as a result of the action is provided. Gaining access to a local machine zone may be a goal for unauthorized entities attempting to improperly access a user's content. The present invention therefore may be initiated to block transitions from the security zones with stricter security restrictions to zones with less security restrictions. In addition, a selected alternative may be commenced depending on the relative weight of the security zones involved the zone transition. Depending on the relative weight of security zones, the transition between zones may be allowed, prevented, or the user may be prompted to decide whether to allow or prevent the action that results in the zone transition.

摘要翻译： 提供了一种用于在作为结果的安全区之间发生转换时确定是否允许网络浏览器动作的方法和系统。 访问本地计算机区域可能是未经授权的实体尝试不正确访问用户内容的目标。 因此，本发明可以被启动以阻止具有更严格的安全限制的安全区域到具有较少安全限制的区域的转换。 此外，可以根据涉及区域转换的安全区域的相对权重来开始选择的替代方案。 根据安全区域的相对权重，可以允许，防止区域之间的过渡，或者可能会提示用户决定是否允许或阻止导致区域转换的动作。

公开(公告)号：US20050149213A1

公开(公告)日：2005-07-07

申请号：US10751680

申请日：2004-01-05

申请人： Chris Guzak ,  Ken Tubbs ,  Oliver Lee ,  Christopher Araman ,  Kris Krueger ,  Jerry Smith ,  Anton Sohn ,  Roberto Franco

发明人： Chris Guzak ,  Ken Tubbs ,  Oliver Lee ,  Christopher Araman ,  Kris Krueger ,  Jerry Smith ,  Anton Sohn ,  Roberto Franco

IPC分类号： G06F9/44 ,  G06F17/00 ,  H04R29/00

CPC分类号： G06F9/451

摘要： System and methods for managing content on a media device such as a portable digital audio device are described. The system recognizes when a digital audio device is connected to a computer and it automatically notifies a user that the audio device is connected and provides an entry point through which content of the audio device can be managed. The audio device is presented in an extended namespace (UI extension) of an operating system user interface in the same manner that typical storage devices (e.g., hard drives and floppy drives) are presented by the operating system user interface. Contents (e.g., music files) of the audio device are manageable through the UI extension in the same familiar manner as the contents of other typical storage devices of the computer.

摘要翻译： 描述了用于在诸如便携式数字音频设备的媒体设备上管理内容的系统和方法。 该系统识别何时数字音频设备连接到计算机，并且它自动地通知用户音频设备被连接，并提供可以管理音频设备的内容的入口点。 音频设备以与操作系统用户界面呈现典型存储设备（例如，硬盘驱动器和软盘驱动器）相同的方式呈现在操作系统用户界面的扩展命名空间（UI扩展）中。 音频设备的内容（例如，音乐文件）可以通过UI扩展以与计算机的其他典型存储设备的内容相同的熟悉方式来管理。