公开(公告)号：US07530107B1

公开(公告)日：2009-05-05

申请号：US11960153

申请日：2007-12-19

申请人： Kouichi Ono ,  Mika Saito ,  Naoshi Tabuchi ,  Takaaki Tateishi

发明人： Kouichi Ono ,  Mika Saito ,  Naoshi Tabuchi ,  Takaaki Tateishi

IPC分类号： G06F21/00

CPC分类号： G06F21/577

摘要： Systems, methods and computer program products for string analysis with security labels for vulnerability detection. Exemplary embodiments include a method in a computer system configured to analyze security-labeled strings and to detect vulnerability, the method including receiving a program with security labels, translating the program into a static single assignment form, constructing a control flow graph having basic blocks as nodes, extracting instructions relating to string functions and object variables, calculating pre-conditions of variables for the basic blocks, extracting constraints among the variables subject to a rule set for translating pre-conditions, solving the constraints and obtaining a set of strings that he object variables form as a context-free grammar to obtain a set of security-labeled strings, checking if the set of security-labeled strings satisfies a rule of the rule set for translating pre-conditions and identifying locations in the program where a vulnerability is detected.

摘要翻译： 使用安全标签进行字符串分析的系统，方法和计算机程序产品进行漏洞检测。 示例性实施例包括被配置为分析安全标记的字符串并且检测脆弱性的计算机系统中的方法，所述方法包括接收具有安全标签的程序，将程序转换成静态单个分配形式，构建具有基本块的控制流程图 节点，提取与字符串函数和对象变量相关的指令，计算基本块的变量的前提条件，提取受限于规则集的变量之间的约束，以便翻译前提条件，解决约束并获得一组字符串 对象变量形成为无上下文的语法，以获取一组安全标记的字符串，检查安全标记字符串的集合是否满足规则集的规则，用于翻译前提条件并识别漏洞所在的程序中的位置 检测到。

公开(公告)号：US20080172714A1

公开(公告)日：2008-07-17

申请号：US11623371

申请日：2007-01-16

申请人： Kouichi Ono ,  Yuhichi Nakumura ,  Fumiko Satoh ,  Takaaki Tateishi

发明人： Kouichi Ono ,  Yuhichi Nakumura ,  Fumiko Satoh ,  Takaaki Tateishi

IPC分类号： H04L9/00

CPC分类号： H04L63/20 ,  G06F21/62

摘要： A method for model, based verification of security policies for web service composition. The method includes corresponding to a verification generated by an information Row analysis. The method further includes obtaining an abstracted security qualifier. The method proceeds by presenting the abstracted security qualifier to an application model. The abstracted, security qualifier being presented to the application model as a security requirement. Subsequently, the method proceeds by farther including removing the data security requirement on data utilized in the service from the compliance rule. The method proceeds by processing flow in the application model, such processing being based upon the data security requirement. The method further includes verifying the consistency in response to the processing flow.

摘要翻译： 一种用于Web服务组合的安全策略的模型验证方法。 该方法包括对应于由信息行分析生成的验证。 该方法还包括获得抽象的安全限定符。 该方法通过将抽象的安全限定符呈现给应用程序模型来进行。 被提交给应用程序模型的抽象的安全限定符作为安全要求。 随后，该方法进一步包括从合规规则中去除服务中使用的数据的数据安全性要求。 该方法通过处理应用模型中的流程而进行，这种处理基于数据安全性要求。 该方法还包括验证响应于处理流程的一致性。

公开(公告)号：US08650608B2

公开(公告)日：2014-02-11

申请号：US11623371

申请日：2007-01-16

申请人： Kouichi Ono ,  Yuhichi Nakumura ,  Fumiko Satoh ,  Takaaki Tateishi

发明人： Kouichi Ono ,  Yuhichi Nakumura ,  Fumiko Satoh ,  Takaaki Tateishi

IPC分类号： G06F17/00 ,  G06F7/04 ,  G06F15/16 ,  G06F17/30 ,  G06F9/00 ,  G06F12/00 ,  G06F12/14 ,  G06F13/00 ,  H04L29/06 ,  G11C7/00

CPC分类号： H04L63/20 ,  G06F21/62

摘要： A method for model based verification of security policies for web service composition. The method includes corresponding to a verification generated by an information flow analysis. The method further includes obtaining an abstracted security qualifier. The method proceeds by presenting the abstracted security qualifier to an application model. The abstracted security qualifier being presented to the application model as a security requirement. Subsequently, the method proceeds by farther including removing the data security requirement on data utilized in the service from the compliance rule. The method proceeds by processing flow in the application model, such processing being based upon the data security requirement. The method further includes verifying the consistency in response to the processing flow.

摘要翻译： 一种用于Web服务组合的安全策略的基于模型验证的方法。 该方法包括对应于由信息流分析生成的验证。 该方法还包括获得抽象的安全限定符。 该方法通过将抽象的安全限定符呈现给应用程序模型来进行。 抽象的安全限定符作为安全性要求呈现给应用程序模型。 随后，该方法进一步包括从合规规则中去除服务中使用的数据的数据安全性要求。 该方法通过处理应用模型中的流程而进行，这种处理基于数据安全性要求。 该方法还包括验证响应于处理流程的一致性。

公开(公告)号：US20100146382A1

公开(公告)日：2010-06-10

申请号：US12705613

申请日：2010-02-14

申请人： Mari Abe ,  Hideki Tai ,  Takashi Nerome ,  Kouichi Ono

发明人： Mari Abe ,  Hideki Tai ,  Takashi Nerome ,  Kouichi Ono

IPC分类号： G06F17/21

CPC分类号： G06F17/2247 ,  G06F17/2211

摘要： Differencing and merging tree-structured documents, such as eXtensible Markup Language (XML) documents, is disclosed. A differencing-and-merging system for tree-structured documents of one embodiment of the invention includes a difference processing unit and a merging processing unit. The differencing processing unit performs a difference operation on at least two tree-structured documents, in accordance with difference configuration information regarding the documents. The merging processing unit performs a merging operation on the tree-structured documents from correspondence information generated by the difference processing unit, based on the difference operation configuration information regarding the documents. The correspondence information indicates differences among nodes of the documents. The difference operation configuration information specifies one or more nodes among the documents that are to be considered equivalent when the difference operation is performed, and one or more nodes among the documents that are to be ignored when the difference operation is performed.

摘要翻译： 公开了可扩展标记语言（XML）文档的差异化和合并树结构化文档。 本发明的一个实施例的树结构化文档的差分合并系统包括差分处理单元和合并处理单元。 差分处理单元根据关于文档的差异配置信息对至少两个树形结构的文档执行差分操作。 合并处理单元基于由差分处理单元生成的对应信息，基于关于文档的差分操作配置信息，对树形文档进行合并操作。 对应信息表示文档的节点之间的差异。 差分操作配置信息指定当执行差分操作时要被认为是等效的文档中的一个或多个节点，以及当执行差异操作时要被忽略的文档中的一个或多个节点。

公开(公告)号：US20090307654A1

公开(公告)日：2009-12-10

申请号：US12478815

申请日：2009-06-05

申请人： Hiroshi Ishikawa ,  Hiroaki Nakamura ,  Kouichi Ono

发明人： Hiroshi Ishikawa ,  Hiroaki Nakamura ,  Kouichi Ono

IPC分类号： G06F9/44 ,  G06F11/36

CPC分类号： G06F11/3604 ,  G06F8/20 ,  G06F11/3612

摘要： A system, method and computer program for generating a sequence diagram that specifies processing among modules included in source code. First, a source code is acquired and then analyzed to generate a log acquisition code for acquiring an execution log. Then, a program including the generated log acquisition code is executed to acquire execution log information on the execution of the program. On the basis of the acquired execution log information, automaton information on states and transitions among the states is extracted, and then the extracted automaton information is converted into sequence diagram component information on components constituting a sequence diagram. Thereafter, a sequence diagram is generated based on the converted sequence diagram component information.

摘要翻译： 一种用于生成指定源代码中包含的模块之间的处理的序列图的系统，方法和计算机程序。 首先，获取源代码，然后分析以产生用于获取执行日志的日志获取代码。 然后，执行包括产生的日志获取代码的程序，以获取关于程序的执行的执行日志信息。 基于获取的执行日志信息，提取状态之间的状态和转换的自动机信息，然后将提取的自动机信息转换成关于构成序列图的组件的序列图分量信息。 此后，基于转换的序列图组件信息生成序列图。

公开(公告)号：US07373586B2

公开(公告)日：2008-05-13

申请号：US10934232

申请日：2004-09-03

申请人： Mari Abe ,  Hideki Tai ,  Takashi Nerome ,  Kouichi Ono

发明人： Mari Abe ,  Hideki Tai ,  Takashi Nerome ,  Kouichi Ono

IPC分类号： G06F17/00

CPC分类号： G06F17/2247 ,  G06F17/2211

摘要： Differencing and merging tree-structured documents, such as extensible Markup Language (XML) documents, is disclosed. A differencing-and-merging system for tree-structured documents of one embodiment of the invention includes a difference processing unit and a merging processing unit. The differencing processing unit performs a difference operation on at least two tree-structured documents, in accordance with difference configuration information regarding the documents. The merging processing unit performs a merging operation on the tree-structured documents from correspondence information generated by the difference processing unit, based on the difference operation configuration information regarding the documents. The correspondence information indicates differences among nodes of the documents. The difference operation configuration information specifies one or more nodes among the documents that are to be considered equivalent when the difference operation is performed, and one or more nodes among the documents that are to be ignored when the difference operation is performed.

摘要翻译： 公开了可扩展标记语言（XML）文档的差异化和合并树结构化文档。 本发明的一个实施例的树结构化文档的差分合并系统包括差分处理单元和合并处理单元。 差分处理单元根据关于文档的差异配置信息对至少两个树形结构的文档执行差分操作。 合并处理单元基于由差分处理单元生成的对应信息，基于关于文档的差分操作配置信息，对树形文档进行合并操作。 对应信息表示文档的节点之间的差异。 差分操作配置信息指定当执行差分操作时要被认为是等效的文档中的一个或多个节点，以及当执行差异操作时要被忽略的文档中的一个或多个节点。

公开(公告)号：US5537409A

公开(公告)日：1996-07-16

申请号：US257105

申请日：1994-06-08

申请人： Yoshiaki Moriyama ,  Kouichi Ono ,  Sumio Hosaka ,  Takao Yamada

发明人： Yoshiaki Moriyama ,  Kouichi Ono ,  Sumio Hosaka ,  Takao Yamada

IPC分类号： H04J3/00 ,  H04N5/04 ,  H04N5/92 ,  H04N7/00 ,  H04N7/08 ,  H04N7/081 ,  H04N19/00 ,  H04N19/126 ,  H04N19/15 ,  H04N19/152 ,  H04N19/176 ,  H04N19/42 ,  H04N19/423 ,  H04N19/46 ,  H04N19/503 ,  H04N19/51 ,  H04N19/61 ,  H04N19/625 ,  H04N19/65 ,  H04N19/70 ,  H04N19/85 ,  H04N19/91 ,  H04N7/52

CPC分类号： H04N21/4341 ,  H04N21/4307

摘要： A synchronizing system with a simple structure accomplishes synchronous reproduction without complicating a control circuit for synchronizing video and audio signals with each other. The number of unit audio data blocks to be put in one pack is set in such a way that the difference between the presentation start times for the stream of video data and the stream of audio data in one pack in a predetermined pack period becomes a predetermined value, and the pack carries positional information of the pack in the predetermined pack period to the pack. In a reproducing apparatus, the difference between presentation start times for video signals and audio signals in each pack is acquired by referring to positional information (AAU sequence number) in a stream of packs, transferred by the above transmission method, and at least one of the presentation start times for video signals and audio signals in the stream of packs is controlled so that the difference between the presentation start times coincides with the difference between the presentation start times corresponding to the positional information.

摘要翻译： 具有简单结构的同步系统实现同步再现，而不会使用于使视频和音频信号彼此同步的控制电路复杂化。 放置在一个包中的单元音频数据块的数量被设置为使得在预定包装周期中的视频数据流的显示开始时间和一个包中的音频数据流之间的差成为预定的 值，并且包将包装在预定包装周期中的位置信息携带到包装中。 在再现装置中，通过参照通过上述发送方法传送的包的流中的位置信息（AAU序列号）获取每个包中的视频信号和音频信号的呈现开始时间之间的差异，以及至少一个 控制包流中的视频信号和音频信号的呈现开始时间，使得呈现开始时间之间的差与对应于位置信息的呈现开始时间之间的差值一致。

公开(公告)号：US4710937A

公开(公告)日：1987-12-01

申请号：US851219

申请日：1986-04-14

申请人： Tatsuo Oomori ,  Kouichi Ono ,  Shigeto Fujita

发明人： Tatsuo Oomori ,  Kouichi Ono ,  Shigeto Fujita

IPC分类号： H01S3/02 ,  H01S3/082 ,  H01S3/20

CPC分类号： H01S3/0823 ,  H01S3/022

摘要： A dye laser system for emitting laser beams of various wavelengths, which includes a plurality of dye vessels apart from each other and a mirror for oscillating the laser beams and for reflecting the beams to a beam splitter. Two wavelength selectors are provided for directing a specific wavelength portion of the beams to the beam splitter and for directing a specific wavelength portion of the beams to the mirror.

摘要翻译： 一种用于发射各种波长的激光束的染料激光系统，其包括彼此分开的多个染料容器和用于振荡激光束并用于将光束反射到分束器的反射镜。 两个波长选择器被提供用于将波束的特定波长部分引导到分束器并用于将波束的特定波长部分引导到反射镜。

公开(公告)号：US08423985B2

公开(公告)日：2013-04-16

申请号：US12478815

申请日：2009-06-05

申请人： Hiroshi Ishikawa ,  Hiroaki Nakamura ,  Kouichi Ono

发明人： Hiroshi Ishikawa ,  Hiroaki Nakamura ,  Kouichi Ono

IPC分类号： G06F9/45

CPC分类号： G06F11/3604 ,  G06F8/20 ,  G06F11/3612

摘要： A system, method and computer program for generating a sequence diagram that specifies processing among modules included in source code. First, a source code is acquired and then analyzed to generate a log acquisition code for acquiring an execution log. Then, a program including the generated log acquisition code is executed to acquire execution log information on the execution of the program. On the basis of the acquired execution log information, automaton information on states and transitions among the states is extracted, and then the extracted automaton information is converted into sequence diagram component information on components constituting a sequence diagram. Thereafter, a sequence diagram is generated based on the converted sequence diagram component information.

摘要翻译： 一种用于生成指定源代码中包含的模块之间的处理的序列图的系统，方法和计算机程序。 首先，获取源代码，然后分析以产生用于获取执行日志的日志获取代码。 然后，执行包括产生的日志获取代码的程序，以获取关于程序的执行的执行日志信息。 基于获取的执行日志信息，提取状态之间的状态和转换的自动机信息，然后将提取的自动机信息转换成关于构成序列图的组件的序列图分量信息。 此后，基于转换的序列图组件信息生成序列图。

公开(公告)号：US08095918B2

公开(公告)日：2012-01-10

申请号：US11565265

申请日：2006-11-30

申请人： Fumiko Satoh ,  Yuichi Nokomuru ,  Kouichi Ono

发明人： Fumiko Satoh ,  Yuichi Nokomuru ,  Kouichi Ono

IPC分类号： G06F9/45

CPC分类号： G06F21/54 ,  H04L63/168 ,  H04L63/20

摘要： A software development apparatus for developing application software based on an object model that requires security in a web service application is provided. The software development apparatus includes a display unit that displays, in a class diagram of the application software, security annotation for adding security requirements for a service, input means for inputting the security annotation, transforming means for transforming the class diagram into a configuration model based on a markup language, and configuration-file creating means for creating a configuration file based on a markup language by serializing the configuration model based on a markup language. The security annotation includes the security requirements and a token class of a security token that is a certificate for declaring identity of a client to a server.

摘要翻译： 提供了一种用于基于需要Web服务应用中的安全性的对象模型来开发应用软件的软件开发设备。 该软件开发装置包括显示单元，该显示单元在应用软件的类图中显示用于添加服务的安全性要求的安全注释，用于输入安全注释的输入装置，用于将类图转换为配置模型的变换装置 以及配置文件创建装置，用于基于标记语言通过基于标记语言串行化配置模型来创建基于标记语言的配置文件。 安全性注释包括安全性要求和安全令牌的令牌类，该令牌类是用于向服务器声明客户端的身份的证书。