-
公开(公告)号:US09753696B2
公开(公告)日:2017-09-05
申请号:US14212462
申请日:2014-03-14
摘要: The subject disclosure is directed towards crowd-based approach to boosting the correctness of a computer program. Results from candidate programs obtained from a first crowd and which may be blended with one another into synthesized programs are sent to a second crowd for evaluation. Based upon the results, a training set evolves and programs are filtered based upon fitness. The process of blending and fitness evaluation with an evolved training set may be iteratively repeated to find a most fit program.
-
公开(公告)号:US09589149B2
公开(公告)日:2017-03-07
申请号:US13689785
申请日:2012-11-30
CPC分类号: G06F21/6245
摘要: A profiling service may determine, local to a device, user profile attributes associated with a device user based on interaction of the device user with the device, based on device-local monitoring of device user interactions with the device, and may store the user profile attributes in a memory. The profiling service may be configured as an augmentation to a device operating system of the device. A profile exposure component may manage exposure of information associated with the user profile attributes to applications operating locally on the device, without exposure to the applications or to third parties of information determined as sensitive to the device user.
摘要翻译: 基于设备用户与设备的交互的设备本地监视,分析服务可以基于设备用户与设备的交互来确定与设备本地相关联的与设备用户相关联的用户简档属性,并且可以存储用户简档 内存中的属性 分析服务可以被配置为设备的设备操作系统的增强。 配置文件曝光组件可以将与用户简档属性相关联的信息的曝光管理到在设备上本地操作的应用程序,而不会暴露于应用程序或第三方被确定为对设备用户敏感的信息。
-
公开(公告)号:US20160055345A1
公开(公告)日:2016-02-25
申请号:US14833580
申请日:2015-08-24
发明人: Benjamin Livshits , Jaeyeon Jung
CPC分类号: G06F21/629 , G06F8/30 , G06F8/75 , G06F21/54 , G06F21/60
摘要: The subject disclosure is directed towards automated, static analysis-based program code processing that detects unprotected resource accesses by applications, that is, those that do not provide proper opt-in consent dialogs (prompts). In one aspect, consent prompt code is automatically inserted into the program code to protect such unprotected access points. Also described are program representation graph construction and processing, a dominator node-based approach to determine placement points for inserting consent prompt code, and a backward search-based approach for inserting consent prompt code.
摘要翻译: 主题公开针对基于自动静态分析的程序代码处理,其检测应用程序的未受保护的资源访问,即那些不提供适当的选择加入同意对话框(提示)的程序代码处理。 在一个方面,同意提示代码被自动插入到程序代码中,以保护这些不受保护的访问点。 还描述了程序表示图构造和处理,基于支配者的基于节点的方法来确定用于插入同意提示代码的放置点,以及用于插入同意提示代码的基于搜索的反向方法。
-
公开(公告)号:US09882923B2
公开(公告)日:2018-01-30
申请号:US14551629
申请日:2014-11-24
CPC分类号: H04L63/1425 , G06F21/54 , G06F21/56 , G06F21/566 , H04L63/1433
摘要: An automatic context-sensitive sanitization technique detects errors due to the mismatch of a sanitizer sequence with a browser parsing context. A pre-deployment analyzer automatically detects violating paths that contain a sanitizer sequence that is inconsistent with a browsing context associated with outputting an untrusted input. The pre-deployment analyzer determines a correct sanitizer sequence which is stored in a sanitization cache. During the runtime execution of the web application, a path detector tracks execution of the web application in relation to the violating paths. The correct sanitizer sequence can be applied when the runtime execution follows a violating path.
-
公开(公告)号:US20160259824A1
公开(公告)日:2016-09-08
申请号:US14635110
申请日:2015-03-02
IPC分类号: G06F17/30
CPC分类号: G06Q30/02 , G06F17/30442 , G06F17/30448 , G06F17/30463 , G06F17/30471 , G06F17/30474 , G06Q30/0203
摘要: A “Poll Optimizer” provides automated techniques for performing various combinations of both static and runtime optimizations for crowd-sourced queries including, but not limited to, crowd-sourced opinion-based polls. These optimizations have been observed to improve poll performance by reducing factors such as completion times, monetary costs, and error rates of polls. In various implementations, the Poll Optimizer receives an input query representing a crowd-sourced poll that is formatted as a multi-layer structure (e.g., LINQ-based queries natively supported by .NET languages, JQL-based queries supported by JAVA, etc.). The Poll optimizer then iteratively reduces the multi-layer structure of the input query to construct a reformulated query. This reformulated query is then matched to an optimized execution process selected from a plurality of predefined execution processes. Finally, the reformulated query and matching optimized execution process are provided as an optimized version of the crowd-sourced poll for execution via a computer-based crowd-sourcing backend.
摘要翻译: “投票优化器”提供自动化技术,用于针对人群来源的查询执行静态和运行时优化的各种组合,包括但不限于基于意见的群众投票。 已经观察到这些优化通过减少诸如完成时间,货币成本和投票错误率等因素来改善投票表现。 在各种实现中,轮询优化器接收到一个输入查询,表示一个格式为多层结构(例如,由.NET语言本机支持的基于LINQ的查询,由JAVA支持的基于JQL的查询等) )。 Poll优化器然后迭代地减少输入查询的多层结构以构造重新排列的查询。 然后将该重新排列的查询与从多个预定义的执行过程中选择的优化的执行过程相匹配。 最后,重新配置的查询和匹配优化执行过程作为通过基于计算机的人群来源后端执行的人群来源的投票的优化版本提供。
-
公开(公告)号:US10115116B2
公开(公告)日:2018-10-30
申请号:US14635110
申请日:2015-03-02
摘要: A “Poll Optimizer” provides automated techniques for performing various combinations of both static and runtime optimizations for crowd-sourced queries including, but not limited to, crowd-sourced opinion-based polls. These optimizations have been observed to improve poll performance by reducing factors such as completion times, monetary costs, and error rates of polls. In various implementations, the Poll Optimizer receives an input query representing a crowd-sourced poll that is formatted as a multi-layer structure (e.g., LINQ-based queries natively supported by .NET languages, JQL-based queries supported by JAVA, etc.). The Poll optimizer then iteratively reduces the multi-layer structure of the input query to construct a reformulated query. This reformulated query is then matched to an optimized execution process selected from a plurality of predefined execution processes. Finally, the reformulated query and matching optimized execution process are provided as an optimized version of the crowd-sourced poll for execution via a computer-based crowd-sourcing backend.
-
公开(公告)号:US10050848B2
公开(公告)日:2018-08-14
申请号:US14336458
申请日:2014-07-21
摘要: An exemplary method includes providing an application that includes client-side code and server-side code, instrumenting the client-side code and the server-side code to generate timestamps, distributing the instrumented client-side code and the instrumented server-side code and monitoring timestamps generated during execution of the application. In such a method, where timestamps generated by the client-side code and timestamps generated by the server-side code occur along a common timeline, a developer can monitor performance of the distributed application. Other exemplary methods, systems, etc., are also disclosed.
-
公开(公告)号:US10044750B2
公开(公告)日:2018-08-07
申请号:US14599394
申请日:2015-01-16
摘要: Disclosed herein are systems and methods for detecting script code malware and generating signatures. A plurality of script code samples are received and transformed into a plurality of tokenized samples. The tokenized samples are based on syntactical elements of the plurality of script code samples. One or more clusters of samples are determined based on similarities in different ones of the plurality of tokenized samples, and known malicious code having a threshold similarity to a representative sample of the cluster of samples is identified. Based on the identifying, the cluster of samples is identified as malicious. Based at least on respective ones of the plurality of tokenized samples associated with the cluster of samples, a generalized code signature usable to identify the script code samples in the cluster of samples is generated.
-
公开(公告)号:US09917822B2
公开(公告)日:2018-03-13
申请号:US14247418
申请日:2014-04-08
发明人: Benjamin Livshits , Henricus Johannes Maria Meijer , Cedric Fournet , Jeffrey Van Gogh , Danny van Velzen , Abhishek Prateek , Krishnaprasad Vikram
IPC分类号: G06F15/173 , H04L29/06 , G06F21/52 , G06F7/04
CPC分类号: H04L63/08 , G06F21/52 , G06F2221/2101
摘要: A processing system for distributed multi-tier applications is provided. The system includes a server component that executes a replica of a client-side application, where a client component executes the client-side application. The client component captures events from the client-side application and transmits the events to the replica to validate the computational integrity security of the application.
-
公开(公告)号:US20160212153A1
公开(公告)日:2016-07-21
申请号:US14599394
申请日:2015-01-16
CPC分类号: H04L63/145 , G06F17/30598 , G06F21/56 , G06F21/563 , G06F2221/2125
摘要: Disclosed herein are systems and methods for detecting script code malware and generating signatures. A plurality of script code samples are received and transformed into a plurality of tokenized samples. The tokenized samples are based on syntactical elements of the plurality of script code samples. One or more clusters of samples are determined based on similarities in different ones of the plurality of tokenized samples, and known malicious code having a threshold similarity to a representative sample of the cluster of samples is identified. Based on the identifying, the cluster of samples is identified as malicious. Based at least on respective ones of the plurality of tokenized samples associated with the cluster of samples, a generalized code signature usable to identify the script code samples in the cluster of samples is generated.
摘要翻译: 本文公开了用于检测脚本代码恶意软件并生成签名的系统和方法。 多个脚本代码样本被接收并转换成多个标记样本。 标记样本基于多个脚本代码样本的语法元素。 基于多个标记样本中的不同样本中的相似度来确定一个或多个样本簇,并且识别与样本簇的代表性样本具有阈值相似性的已知恶意代码。 基于识别,样本簇被识别为恶意的。 至少基于与样本簇相关联的多个标记样本中的相应的一个,生成可用于识别样本簇中的脚本代码样本的通用代码签名。
-
-
-
-
-
-
-
-
-
搜索结果
11 条记录 (耗时 0.02 秒)
