-
公开(公告)号:US20120151592A1
公开(公告)日:2012-06-14
申请号:US12965930
申请日:2010-12-13
IPC分类号: G06F11/00
CPC分类号: G06F21/51
摘要: There is provided a computer-implemented method for analyzing string-manipulating programs. An exemplary method comprises describing a string-manipulating program as a finite state transducer. The finite state transducer may be evaluated with a constraint solving methodology to determine whether a particular string may be provided as output by the string-manipulating program. The constraint solving methodology may involve the use of one or more satisfiability modulo theories (SMT) solvers. A determination may be made regarding whether the string-manipulating program may contain a potential security risk depending on whether the particular string may be provided as output by the string-manipulating program.
摘要翻译: 提供了一种用于分析字符串操作程序的计算机实现的方法。 一种示例性的方法包括将字符串操作程序描述为有限状态传感器。 可以用约束求解方法来评估有限状态传感器,以确定特定的串可以被提供为字符串操作程序的输出。 约束求解方法可能涉及使用一个或多个可满足性模理论(SMT)求解器。 可以确定字符串操纵程序是否可能包含潜在的安全风险,这取决于特定字符串是否可以通过字符串操作程序提供为输出。
-
公开(公告)号:US08898776B2
公开(公告)日:2014-11-25
申请号:US12979407
申请日:2010-12-28
CPC分类号: H04L63/1425 , G06F21/54 , G06F21/56 , G06F21/566 , H04L63/1433
摘要: An automatic context-sensitive sanitization technique detects errors due to the mismatch of a sanitizer sequence with a browser parsing context. A pre-deployment analyzer automatically detects violating paths that contain a sanitizer sequence that is inconsistent with a browsing context associated with outputting an untrusted input. The pre-deployment analyzer determines a correct sanitizer sequence which is stored in a sanitization cache. During the runtime execution of the web application, a path detector tracks execution of the web application in relation to the violating paths. The correct sanitizer sequence can be applied when the runtime execution follows a violating path.
摘要翻译: 自动上下文相关的清洁技术可以检测由于消毒剂序列与浏览器解析上下文不匹配而导致的错误。 预部署分析仪自动检测包含与输出不受信任输入相关联的浏览上下文不一致的消毒剂序列的违规路径。 预部署分析仪确定存储在消毒缓存中的正确的消毒剂序列。 在Web应用的运行时执行期间,路径检测器跟踪违反路径的web应用的执行。 当运行时执行遵循违规路径时,可以应用正确的消毒剂序列。
-
公开(公告)号:US20120167209A1
公开(公告)日:2012-06-28
申请号:US12979407
申请日:2010-12-28
IPC分类号: G06F21/24
CPC分类号: H04L63/1425 , G06F21/54 , G06F21/56 , G06F21/566 , H04L63/1433
摘要: An automatic context-sensitive sanitization technique detects errors due to the mismatch of a sanitizer sequence with a browser parsing context. A pre-deployment analyzer automatically detects violating paths that contain a sanitizer sequence that is inconsistent with a browsing context associated with outputting an untrusted input. The pre-deployment analyzer determines a correct sanitizer sequence which is stored in a sanitization cache. During the runtime execution of the web application, a path detector tracks execution of the web application in relation to the violating paths. The correct sanitizer sequence can be applied when the runtime execution follows a violating path.
摘要翻译: 自动上下文相关的清洁技术可以检测由于消毒剂序列与浏览器解析上下文不匹配而导致的错误。 预部署分析仪自动检测包含与输出不受信任输入相关联的浏览上下文不一致的消毒剂序列的违规路径。 预部署分析仪确定存储在消毒缓存中的正确的消毒剂序列。 在web应用的运行时执行期间,路径检测器跟踪违反路径的web应用的执行。 当运行时执行遵循违规路径时,可以应用正确的消毒剂序列。
-
公开(公告)号:US20130218731A1
公开(公告)日:2013-08-22
申请号:US13397685
申请日:2012-02-16
申请人: Jeremy Elson , David Molnar , Jon Howell
发明人: Jeremy Elson , David Molnar , Jon Howell
摘要: The current invention is directed to embedded, wireless cloud-connector devices and systems that allow the embedded, wireless cloud-connector devices to be deployed in a variety of embedding devices, applications, and uses. The embedded, wireless, cloud-connector devices to which the current application is directed are implemented using a single integrated circuit, or set of integrated-circuit chips, and each interfaces to a device, product, or system in which the cloud-connector devices are embedded as subcomponents as well as to a communications-services provider. The cloud-connector devices provide data exchange between devices, products, and systems in which they are embedded and cloud providers that provide cloud-computing services, data-message routing, and wireless services through wireless carriers. Embedded, wireless cloud-connector devices, and the systems that interconnect and manage them, allow cloud-providers to extend the cloud-computing domain into many different types of low-cost and geographically dispersed markets and areas of use.
摘要翻译: 本发明涉及嵌入式无线云连接器设备和系统,其允许将嵌入式无线云连接器设备部署在各种嵌入设备,应用和应用中。 使用单个集成电路或一组集成电路芯片实现当前应用所针对的嵌入式,无线,云连接器设备,并且每个接口连接到设备,产品或系统,其中云连接器设备 被嵌入作为子组件以及通信服务提供商。 云连接器设备在其嵌入式设备,产品和系统以及通过无线运营商提供云计算服务,数据消息路由和无线服务的云提供商之间提供数据交换。 嵌入式无线云连接器设备以及互连和管理系统的系统允许云提供商将云计算领域扩展到许多不同类型的低成本和地理位置分散的市场和使用领域。
-
公开(公告)号:US20080282086A1
公开(公告)日:2008-11-13
申请号:US12143485
申请日:2008-06-20
申请人: Michael O. Rabin , Dennis E. Shasha , Yossi Beinart , Ramon Caceres , Timir Karia , David Molnar , Sean Rolinson
发明人: Michael O. Rabin , Dennis E. Shasha , Yossi Beinart , Ramon Caceres , Timir Karia , David Molnar , Sean Rolinson
IPC分类号: H04L9/32
CPC分类号: G06F21/725 , G06F21/10 , G06F21/6254 , G06F2221/0773 , G06Q20/367
摘要: A system for protecting software against piracy while protecting a user's privacy enables enhancements to the protection software in a user device and extended protections against piracy. The protection system allows the user device to postpone validation of purchased tags stored in a tag table for installed software and to re-establish ownership of a tag table to recover from invalidation of a tag table identifier value resulting from revelation of a tag table identifier value. Continued use of the tag table is provided by the use of credits associated with a tag table. A protection center is protected against denial of service attacks by making calls to the protection center cost time or money to the attackers.
摘要翻译: 在保护用户隐私的同时保护软件免受盗版的系统使得能够增强用户设备中的保护软件,并扩展防盗版的保护。 保护系统允许用户设备推迟对存储在用于安装的软件的标签表中的购买的标签的验证,并且重新建立标签表的所有权以从标签表标识符值的显现产生的标签表标识符值的无效中恢复 。 通过使用与标签表相关联的信用来提供标签表的继续使用。 保护中心通过拨打保护中心为攻击者付出时间或金钱,防止拒绝服务攻击。
-
公开(公告)号:US20050228989A1
公开(公告)日:2005-10-13
申请号:US10815985
申请日:2004-04-01
申请人: Michael Rabin , Dennis Shasha , Carleton Bosley , Ramon Caceres , Aaron Ingram , Timir Karia , David Molnar , Yossi Beinart
发明人: Michael Rabin , Dennis Shasha , Carleton Bosley , Ramon Caceres , Aaron Ingram , Timir Karia , David Molnar , Yossi Beinart
CPC分类号: G06F21/564
摘要: Software is identified while in main memory by examining small portions of its executable image or by examining the results of its execution. These portions, or an encoding of them, are then compared with previously stored identifying information about at least one Software through an approximate matching process.
摘要翻译: 通过检查其可执行映像的小部分或通过检查其执行结果在主存储器中识别软件。 然后将这些部分或其编码与先前存储的关于至少一个软件的识别信息通过近似匹配过程进行比较。
-
公开(公告)号:US20130251216A1
公开(公告)日:2013-09-26
申请号:US13429261
申请日:2012-03-23
申请人: Christopher Stephen Frederick Smowton , Ronnie Chaiken , Weidong Cui , Oliver H. Foehr , Jacob Rubin Lorch , David Molnar , Bryan Jeffrey Parno , Stefan Saroiu , Alastair Wolman
发明人: Christopher Stephen Frederick Smowton , Ronnie Chaiken , Weidong Cui , Oliver H. Foehr , Jacob Rubin Lorch , David Molnar , Bryan Jeffrey Parno , Stefan Saroiu , Alastair Wolman
CPC分类号: G06F21/32 , G06K9/00912 , G06K9/6293 , G06K9/6807 , H04L9/3231 , H04L2209/56 , H04L2209/80 , H04W12/06
摘要: Described is a technology by which the identity of a person (e.g., a customer in a commercial transaction) is determinable without active identification effort, via biometric data is obtained without action by the person. Machine processing of the biometric data over a set of possible persons, determined from secondary proximity sensing, is used to determine or assist in determining the identity of the person.
摘要翻译: 描述的是通过生物特征数据获得没有人的行动的人(例如,商业交易中的客户)的身份可以在没有主动识别努力的情况下被确定的技术。 使用从二次邻近感测确定的一组可能的人的生物特征数据的机器处理来确定或协助确定人的身份。
-
公开(公告)号:US08327453B2
公开(公告)日:2012-12-04
申请号:US12768308
申请日:2010-04-27
申请人: Michael O. Rabin , Dennis E. Shasha , Yossi Beinart , Ramon Caceres , Timir Karia , David Molnar , Sean Rolinson
发明人: Michael O. Rabin , Dennis E. Shasha , Yossi Beinart , Ramon Caceres , Timir Karia , David Molnar , Sean Rolinson
IPC分类号: G06F21/00
CPC分类号: G06F21/725 , G06F21/10 , G06F21/6254 , G06F2221/0773 , G06Q20/367
摘要: A system for protecting software against piracy while protecting a user's privacy enables enhancements to the protection software in a user device and extended protections against piracy. The protection system allows the user device to postpone validation of purchased tags stored in a tag table for installed software and to re-establish ownership of a tag table to recover from invalidation of a tag table identifier value resulting from revelation of a tag table identifier value. Continued use of the tag table is provided by the use of credits associated with a tag table. A protection center is protected against denial of service attacks by making calls to the protection center cost time or money to the attackers.
摘要翻译: 在保护用户隐私的同时保护软件免受盗版的系统使得能够增强用户设备中的保护软件,并扩展防盗版的保护。 保护系统允许用户设备推迟对存储在用于安装的软件的标签表中的购买的标签的验证,并且重新建立标签表的所有权以从标签表标识符值的显现产生的标签表标识符值的无效中恢复 。 通过使用与标签表相关联的信用来提供标签表的继续使用。 保护中心通过拨打保护中心为攻击者付出时间或金钱,防止拒绝服务攻击。
-
9.发明申请SECURITY SERVICE LEVEL AGREEMENTS WITH PUBLICLY VERIFIABLE PROOFS OF COMPLIANCE 审中-公开公共服务水平协议与公认的可验证的合规条款公开(公告)号:US20110276490A1
公开(公告)日:2011-11-10
申请号:US12775666
申请日:2010-05-07
申请人: Jiahe Helen Wang , Raluca Ada Popa , Jacob Lorch , Li Zhuang , David Molnar
发明人: Jiahe Helen Wang , Raluca Ada Popa , Jacob Lorch , Li Zhuang , David Molnar
CPC分类号: G06Q10/10 , G06Q10/00 , G06Q30/018 , G06Q50/00 , H04L9/14 , H04L9/3218 , H04L9/3236 , H04L63/102 , H04L63/123 , H04L63/1416 , H04L2209/38 , H04L2209/56 , H04L2209/601
摘要: Techniques are described herein that are capable of providing security guarantees in security service level agreements (SLAB). For instance, a security SLA may specify a level of service to be provided to a user with respect to at least one security property (e.g., confidentiality, integrity, write-serialization, read freshness, etc.). Attestations may be used to prove occurrence (or non-occurrence) of violations of security properties in a manner that is universally verifiable, e.g., by third parties. An attestation is an indicator that is generated by a user to certify that the user makes a request (e.g., get request or put request) or an indicator that is generated by a cloud service provider to certify that the cloud service provider accurately fulfills a request of a user. A security SLA may specify a payment to be made to a user in response to an occurrence of a violation of a security property.
摘要翻译: 本文描述了能够在安全服务水平协议(SLAB)中提供安全保证的技术。 例如,安全SLA可以指定要针对至少一个安全属性(例如,机密性,完整性,写入序列化,读取新鲜度等)提供给用户的服务级别。 证明可以用来以例如由第三方普遍验证的方式来证明违反安全属性的事件(或不发生)。 认证是由用户生成的用于证明用户发出请求(例如,获得请求或放置请求)的指示符或由云服务提供商生成的指示符,以证明云服务提供商准确地满足请求 的用户。 安全SLA可以指定响应于违反安全属性的发生而对用户进行的支付。
-
公开(公告)号:US07991995B2
公开(公告)日:2011-08-02
申请号:US12143485
申请日:2008-06-20
申请人: Michael O. Rabin , Dennis E. Shasha , Yossi Beinart , Ramon Caceres , Timir Karia , David Molnar , Sean Rolinson
发明人: Michael O. Rabin , Dennis E. Shasha , Yossi Beinart , Ramon Caceres , Timir Karia , David Molnar , Sean Rolinson
CPC分类号: G06F21/725 , G06F21/10 , G06F21/6254 , G06F2221/0773 , G06Q20/367
摘要: A system for protecting software against piracy while protecting a user's privacy enables enhancements to the protection software in a user device and extended protections against piracy. The protection system allows the user device to postpone validation of purchased tags stored in a tag table for installed software and to re-establish ownership of a tag table to recover from invalidation of a tag table identifier value resulting from revelation of a tag table identifier value. Continued use of the tag table is provided by the use of credits associated with a tag table. A protection center is protected against denial of service attacks by making calls to the protection center cost time or money to the attackers.
摘要翻译: 在保护用户隐私的同时保护软件免受盗版的系统使得能够增强用户设备中的保护软件,并扩展防盗版的保护。 保护系统允许用户设备推迟对存储在用于安装的软件的标签表中的购买的标签的验证,并且重新建立标签表的所有权以从标签表标识符值的显现产生的标签表标识符值的无效中恢复 。 通过使用与标签表相关联的信用来提供标签表的继续使用。 保护中心通过拨打保护中心为攻击者付出时间或金钱,防止拒绝服务攻击。
-
-
-
-
-
-
-
-
-
搜索结果
26 条记录 (耗时 0.028 秒)
