-
公开(公告)号:US09154475B1
公开(公告)日:2015-10-06
申请号:US12354900
申请日:2009-01-16
CPC分类号: H04L63/08 , H04L63/083 , H04L63/1408 , H04L63/168 , H04W12/06
摘要: Methods, systems, and apparatus, including computer program products, for distributed security system authorization. Client device authentication instructions are executed on a client device to determine if authentication data accessible by the client device authentication instructions are stored at the client device. If the authentication data are stored at the client device, the client device authentication instructions generate authenticated user data and store the authenticated user data at the client device. If the authentication data are not stored at the client device, the client device authentication instructions generate a login environment that allows a user of the client device to input login data. The login data are provided to a verification process that in response to verification provide the authentication data to the client device.
摘要翻译: 方法,系统和设备,包括计算机程序产品,用于分布式安全系统授权。 在客户端设备上执行客户端设备认证指令,以确定由客户机设备认证指令可访问的认证数据是否存储在客户端设备。 如果认证数据存储在客户端设备,则客户端设备认证指令生成认证用户数据,并将认证用户数据存储在客户端设备。 如果认证数据未被存储在客户端设备,则客户端设备认证指令生成允许客户端设备的用户输入登录数据的登录环境。 将登录数据提供给验证过程,该验证过程响应于验证向客户端设备提供认证数据。
-
公开(公告)号:US20130173942A1
公开(公告)日:2013-07-04
申请号:US13340558
申请日:2011-12-29
申请人: Jeff Forristal , Faraz Siddiqi , Lukasz Mielicki , Hao-Chi Wong
发明人: Jeff Forristal , Faraz Siddiqi , Lukasz Mielicki , Hao-Chi Wong
CPC分类号: G06F1/32 , G06F1/3203 , G06F21/57
摘要: Secure fast platform hibernation and resumption for computing systems. An embodiment of an apparatus includes a processor to operate according to an operating system, the processor to transition the apparatus to a first reduced power state in response to a request, the transition to the first reduced power state including the processor to store context data for the apparatus in a volatile system memory, and logic to transition the apparatus to a second reduced power state, the logic to write the context data from the volatile system memory to a nonvolatile memory for the transition to the second reduced power state, wherein the logic is to implement one or more security measures for the writing of the context data into the nonvolatile memory.
摘要翻译: 安全快速平台休眠和恢复计算系统。 装置的实施例包括:处理器,用于根据操作系统进行操作;处理器,响应于请求,将装置转换到第一降低功率状态;转换到包括处理器在内的第一降低功率状态,以存储用于 易失性系统存储器中的装置以及将装置转换到第二降低功率状态的逻辑,将上下文数据从易失性系统存储器写入非易失性存储器以转换到第二降低功率状态的逻辑,其中逻辑 是为了实现用于将上下文数据写入到非易失性存储器中的一个或多个安全措施。
-
3.发明授权Fast platform hibernation and resumption of computing systems providing secure storage of context data 有权快速平台休眠和恢复提供上下文数据安全存储的计算系统公开(公告)号:US08984316B2
公开(公告)日:2015-03-17
申请号:US13340558
申请日:2011-12-29
申请人: Jeff Forristal , Faraz Siddiqi , Lukasz Mielicki , Hao-Chi Wong
发明人: Jeff Forristal , Faraz Siddiqi , Lukasz Mielicki , Hao-Chi Wong
CPC分类号: G06F1/32 , G06F1/3203 , G06F21/57
摘要: Secure fast platform hibernation and resumption for computing systems. An embodiment of an apparatus includes a processor to operate according to an operating system, the processor to transition the apparatus to a first reduced power state in response to a request, the transition to the first reduced power state including the processor to store context data for the apparatus in a volatile system memory, and logic to transition the apparatus to a second reduced power state, the logic to write the context data from the volatile system memory to a nonvolatile memory for the transition to the second reduced power state, wherein the logic is to implement one or more security measures for the writing of the context data into the nonvolatile memory.
摘要翻译: 安全快速平台休眠和恢复计算系统。 装置的实施例包括:处理器,用于根据操作系统进行操作;处理器,响应于请求,将装置转换到第一降低功率状态;转换到包括处理器在内的第一降低功率状态,以存储用于 易失性系统存储器中的装置以及将装置转换到第二降低功率状态的逻辑,将上下文数据从易失性系统存储器写入非易失性存储器以转换到第二降低功率状态的逻辑,其中逻辑 是为了实现用于将上下文数据写入到非易失性存储器中的一个或多个安全措施。
-
公开(公告)号:US08793488B1
公开(公告)日:2014-07-29
申请号:US12173067
申请日:2008-07-15
申请人: Jeff Forristal
发明人: Jeff Forristal
IPC分类号: H04L9/08
CPC分类号: H04L63/0407 , H04L63/0281
摘要: Systems, methods and apparatus for a distributed security that detects embedded resource request identifiers. The system can identify requests, such as HTTP requests, and can identify encoded prefix data corresponding to URI prefixes, such as Base64 or Base16 encoded URI prefixes “www.” and “http:”.
摘要翻译: 用于检测嵌入式资源请求标识符的分布式安全性的系统,方法和设备。 系统可以识别诸如HTTP请求的请求,并且可以识别与URI前缀相对应的编码前缀数据,例如Base64或Base16编码的URI前缀“www”和“http:”。
-
公开(公告)号:US08055767B1
公开(公告)日:2011-11-08
申请号:US12173108
申请日:2008-07-15
申请人: Jeff Forristal
发明人: Jeff Forristal
IPC分类号: G06F15/173
CPC分类号: H04L63/1416
摘要: Systems, methods and apparatus for a distributed security that detects proxied resource requests. The system can identify proxy strings, each of the proxy strings being indicative of a proper substring in a string of data constituting a proxy communication, the proxy communications being communications that are generated by processing systems executing a plurality of proxy applications. The proxy strings can be store and access to the stored proxy strings can be provided to facilitate detection of proxy communications for the one or more proxy applications in resource requests.
摘要翻译: 用于检测代理资源请求的分布式安全性的系统,方法和设备。 系统可以识别代理字符串,每个代理字符串表示构成代理通信的数据串中的适当子串,代理通信是通过执行多个代理应用程序的系统生成的通信。 可以存储代理字符串并且可以提供对存储的代理字符串的访问以便于在资源请求中为一个或多个代理应用的代理通信的检测。
-
公开(公告)号:US20100218253A1
公开(公告)日:2010-08-26
申请号:US12390486
申请日:2009-02-22
IPC分类号: G06F21/00
CPC分类号: H04L63/145 , G06F21/554 , H04L63/1483
摘要: System and methods for injecting content into a response for improving client-side security. The system includes a content injection service external to network edges of at least one system. The content injection service receives a request from a client within the at least one system and identifies or anticipates a potential threat associated with the response. The content injection service is configured to determine an appropriate counter for the identified or anticipated potential threat and in response injects content into the response according to the potential or anticipated threat identified.
摘要翻译: 将内容注入响应以提高客户端安全性的系统和方法。 该系统包括至少一个系统的网络边缘外部的内容注入服务。 内容注入服务从至少一个系统内的客户端接收请求,并且识别或预测与响应相关联的潜在威胁。 内容注入服务被配置为确定用于所识别的或预期的潜在威胁的适当的计数器,并且响应于根据所识别的潜在或预期的威胁将内容注入到响应中。
-
公开(公告)号:US08763120B1
公开(公告)日:2014-06-24
申请号:US12173060
申请日:2008-07-15
申请人: Jeff Forristal
发明人: Jeff Forristal
IPC分类号: G06F21/00
CPC分类号: H04L63/1441 , G06F21/566 , G06F21/567
摘要: Systems, methods and apparatus for detecting malicious requests. In one aspect, a browser request is received from a client device. It is determined whether the request includes tracer data in a first parameter type. If the request is determined to include the tracer data in the first parameter type, then the request is allowed. If the request is determined to include the tracer data in a parameter type other than the first parameter type, then a security process is initiated.
摘要翻译: 用于检测恶意请求的系统,方法和设备。 在一个方面,从客户端设备接收到浏览器请求。 确定请求是否包括第一参数类型中的跟踪器数据。 如果确定请求将跟踪器数据包括在第一个参数类型中,则允许该请求。 如果确定请求将跟踪器数据包括在除了第一参数类型之外的参数类型中,则启动安全处理。
-
公开(公告)号:US08656478B1
公开(公告)日:2014-02-18
申请号:US12173110
申请日:2008-07-15
申请人: Jeff Forristal
发明人: Jeff Forristal
IPC分类号: G06F9/00
CPC分类号: H04L63/20 , H04L63/0421
摘要: Systems, methods and apparatus for a distributed security system that detects proxied resource requests. The system can search data communications, such as HTTP requests and responses, for proxy strings that are indicative of a string pattern associated with corresponding proxy software. Security operations can be initiated for each data communication that includes a proxy string. The security operations can block the data communication, modify the data communication, and/or generate security notifications for system administrators.
摘要翻译: 用于检测代理的资源请求的分布式安全系统的系统,方法和设备。 系统可以搜索表示与相应代理软件相关联的字符串模式的代理字符串的数据通信,例如HTTP请求和响应。 可以为包括代理字符串的每个数据通信启动安全操作。 安全操作可以阻止数据通信,修改数据通信,和/或为系统管理员生成安全通知。
-
公开(公告)号:US08413239B2
公开(公告)日:2013-04-02
申请号:US12390486
申请日:2009-02-22
IPC分类号: H04L29/06
CPC分类号: H04L63/145 , G06F21/554 , H04L63/1483
摘要: System and methods for injecting content into a response for improving client-side security. The system includes a content injection service external to network edges of at least one system. The content injection service receives a request from a client within the at least one system and identifies or anticipates a potential threat associated with the response. The content injection service is configured to determine an appropriate counter for the identified or anticipated potential threat and in response injects content into the response according to the potential or anticipated threat identified.
摘要翻译: 将内容注入响应以提高客户端安全性的系统和方法。 该系统包括至少一个系统的网络边缘外部的内容注入服务。 内容注入服务从至少一个系统内的客户端接收请求,并且识别或预测与响应相关联的潜在威胁。 内容注入服务被配置为确定用于所识别的或预期的潜在威胁的适当的计数器,并且响应于根据所识别的潜在或预期的威胁将内容注入到响应中。
-
公开(公告)号:US08286220B2
公开(公告)日:2012-10-09
申请号:US12236251
申请日:2008-09-23
申请人: Jeff Forristal
发明人: Jeff Forristal
IPC分类号: G06F21/00
CPC分类号: H04L63/1441 , G06F21/577 , H04L41/0886 , H04L63/0227
摘要: Systems, methods and apparatus for a distributed security that monitors communications to manage client browser network access based upon the browser configuration of the client browser by use of a configuration script executed in the browser environment. Such management can reduce the exposure of potentially vulnerable client browsers to domains associated with malicious activity.
摘要翻译: 用于分布式安全性的系统,方法和装置,其通过使用在浏览器环境中执行的配置脚本,基于客户端浏览器的浏览器配置来监视通信以管理客户端浏览器网络访问。 这种管理可以将潜在的易受攻击的客户端浏览器的暴露减少到与恶意活动相关的域。
-
-
-
-
-
-
-
-
-
搜索结果
11 条记录 (耗时 0.026 秒)
