公开(公告)号：US07986636B2

公开(公告)日：2011-07-26

申请号：US12268395

申请日：2008-11-10

申请人： Baris Coskun ,  Nasir Memon

发明人： Baris Coskun ,  Nasir Memon

IPC分类号： H04L12/28

CPC分类号： H04L41/12 ,  H04L43/12

摘要： Whether or not a node is a relay node may be determined by, for each of a plurality of active flows, assigning a random number to the flow, wherein each of the random numbers is drawn from a distribution. Then, for each of a plurality of time slots, any incoming flows to the node and any outgoing flows from the node may be determined, random numbers assigned to any active flow of the incoming flows may be summed to generate a first sum, random numbers assigned to any active outgoing flows may be summed to generating a second sum, and the first sum may be multiplied with the second sum to generate a product associated with the time slot. The products over the plurality of time slots may then be summed to obtain a summed product. This may be repeated, reassigning random values to each of the plurality of flows, thereby obtaining a plurality of summed products. A variance of the plurality of summed products may be determined and compared with a threshold to obtain a comparison result. Whether or not the node is a relay node may then be determined using the comparison result. Execution of a relay node protection policy may be controlled using the determination of whether or not the node is a relay node.

摘要翻译： 对于多个活动流中的每一个，可以通过为流分配随机数来确定节点是否是中继节点，其中每个随机数字从分布中抽出。 然后，对于多个时隙中的每个时隙，可以确定到节点的任何进入流和来自节点的任何输出流，可以将分配给输入流的任何活动流的随机数相加以生成第一和，随机数 分配给任何活动输出流的信号可以被相加以产生第二和，并且第一和可以与第二和相乘以生成与时隙相关联的乘积。 然后可以将多个时隙中的产品相加以获得相加的乘积。 这可以重复，将随机值重新分配给多个流中的每一个，从而获得多个相加的乘积。 可以确定多个相加产物的方差，并将其与阈值进行比较以获得比较结果。 然后可以使用比较结果来确定节点是否是中继节点。 可以使用确定节点是否是中继节点来控制中继节点保护策略的执行。

公开(公告)号：US20090154375A1

公开(公告)日：2009-06-18

申请号：US12268395

申请日：2008-11-10

申请人： Baris Coskun ,  Nasir Memon

发明人： Baris Coskun ,  Nasir Memon

IPC分类号： H04L12/28 ,  G06F11/00

CPC分类号： H04L41/12 ,  H04L43/12

摘要： Whether or not a node is a relay node may be determined by, for each of a plurality of active flows, assigning a random number to the flow, wherein each of the random numbers is drawn from a distribution. Then, for each of a plurality of time slots, any incoming flows to the node and any outgoing flows from the node may be determined, random numbers assigned to any active flow of the incoming flows may be summed to generate a first sum, random numbers assigned to any active outgoing flows may be summed to generating a second sum, and the first sum may be multiplied with the second sum to generate a product associated with the time slot. The products over the plurality of time slots may then be summed to obtain a summed product. This may be repeated, reassigning random values to each of the plurality of flows, thereby obtaining a plurality of summed products. A variance of the plurality of summed products may be determined and compared with a threshold to obtain a comparison result. Whether or not the node is a relay node may then be determined using the comparison result. Execution of a relay node protection policy may be controlled using the determination of whether or not the node is a relay node.

摘要翻译： 对于多个活动流中的每一个，可以通过为流分配随机数来确定节点是否是中继节点，其中每个随机数字从分布中抽出。 然后，对于多个时隙中的每个时隙，可以确定到节点的任何进入流和来自节点的任何输出流，可以将分配给输入流的任何活动流的随机数相加以生成第一和，随机数 分配给任何活动输出流的信号可以被相加以产生第二和，并且第一和可以与第二和相乘以生成与时隙相关联的乘积。 然后可以将多个时隙中的产品相加以获得相加的乘积。 这可以重复，将随机值重新分配给多个流中的每一个，从而获得多个相加的乘积。 可以确定多个相加产物的方差，并将其与阈值进行比较以获得比较结果。 然后可以使用比较结果来确定节点是否是中继节点。 可以使用确定节点是否是中继节点来控制中继节点保护策略的执行。

公开(公告)号：US09009299B2

公开(公告)日：2015-04-14

申请号：US12986573

申请日：2011-01-07

申请人： Nasir Memon ,  Baris Coskun

发明人： Nasir Memon ,  Baris Coskun

IPC分类号： G06F15/173 ,  H04L29/06 ,  H04L29/08

CPC分类号： H04L63/1441 ,  H04L63/1433 ,  H04L67/104 ,  H04L67/1057

摘要： A peer-to-peer (P2P) bot(s) in a network is identified using an already identified P2P bot. More specifically, such embodiments may facilitate determining a candidate set of computers, which may be potential P2P bots, by identifying computers in a network that have a private mutual contact with a seed bot, which is a computer identified as a P2P bot, and identifying additional computers that have private mutual contacts with the identified computers. Further, a confidence level indicative of a certainty of a membership of each of the candidate computers in the P2P botnet is determined and responsive to a determination that the confidence level of the candidate computer exceeds a determined threshold confidence level, the candidate computer is identified as a P2P bot.

摘要翻译： 使用已经识别的P2P bot来识别网络中的对等（P2P）机器人。 更具体地，这样的实施例可以通过识别网络中具有与被识别为P2P机器人的计算机的种子机器人的私有相互接触的计算机来识别可能是潜在的P2P机器人的候选的计算机集合，并且识别 与所识别的计算机具有私人相互联系的其他计算机。 此外，确定表示P2P僵尸网络中每个候选计算机的成员资格的确定性的置信水平，并且响应于候选计算机的置信水平超过确定的阈值置信水平的确定，候选计算机被识别为 一个P2P机器人

公开(公告)号：US20110179164A1

公开(公告)日：2011-07-21

申请号：US12986573

申请日：2011-01-07

申请人： Nasir Memon ,  Baris Coskun

发明人： Nasir Memon ,  Baris Coskun

IPC分类号： G06F15/173

CPC分类号： H04L63/1441 ,  H04L63/1433 ,  H04L67/104 ,  H04L67/1057

摘要： A peer-to-peer (P2P) bot(s) in a network is identified using an already identified P2P bot. More specifically, such embodiments may facilitate determining a candidate set of computers, which may be potential P2P bots, by identifying computers in a network that have a private mutual contact with a seed bot, which is a computer identified as a P2P bot, and identifying additional computers that have private mutual contacts with the identified computers. Further, a confidence level indicative of a certainty of a membership of each of the candidate computers in the P2P botnet is determined and responsive to a determination that the confidence level of the candidate computer exceeds a determined threshold confidence level, the candidate computer is identified as a P2P bot.

摘要翻译： 使用已经识别的P2P bot来识别网络中的对等（P2P）机器人。 更具体地，这样的实施例可以通过识别网络中具有与被识别为P2P机器人的计算机的种子机器人的私有相互接触的计算机来识别可能是潜在的P2P机器人的候选的计算机集合，并且识别 与所识别的计算机具有私人相互联系的其他计算机。 此外，确定表示P2P僵尸网络中每个候选计算机的成员资格的确定性的置信水平，并且响应于候选计算机的置信水平超过确定的阈值置信水平的确定，候选计算机被识别为 一个P2P机器人

公开(公告)号：US09449104B2

公开(公告)日：2016-09-20

申请号：US13540104

申请日：2012-07-02

申请人： Andrea G. Forte ,  Baris Coskun ,  Qi Shen ,  Ilona Murynets ,  Jeffrey Bickford ,  Mikhail Istomin ,  Paul Giura ,  Roger Piqueras Jover ,  Ramesh Subbaraman ,  Suhas Mathur ,  Wei Wang

发明人： Andrea G. Forte ,  Baris Coskun ,  Qi Shen ,  Ilona Murynets ,  Jeffrey Bickford ,  Mikhail Istomin ,  Paul Giura ,  Roger Piqueras Jover ,  Ramesh Subbaraman ,  Suhas Mathur ,  Wei Wang

IPC分类号： G06F7/00 ,  G06F17/30 ,  G06Q10/00

CPC分类号： G06F17/30867 ,  G06F17/30554 ,  G06Q10/00

摘要： A method, non-transitory computer readable medium and apparatus for deriving trustful metadata for an application are disclosed. For example, the method crawls online for the application, analyzes the application to determine a function of the application, and generates trustful meta-data for the application based upon the function of the application.

摘要翻译： 公开了一种用于为应用导出可信赖元数据的方法，非暂时计算机可读介质和装置。 例如，该方法在线应用程序进行爬网，分析应用程序以确定应用程序的功能，并根据应用程序的功能为应用程序生成可信赖的元数据。

公开(公告)号：US09386035B2

公开(公告)日：2016-07-05

申请号：US13165520

申请日：2011-06-21

申请人： Arati Baliga ,  Xu Chen ,  Baris Coskun ,  Gustavo de los Reyes ,  Seungjoon Lee ,  Suhas Mathur ,  Jacobus Van der Merwe ,  Gang Xu

发明人： Arati Baliga ,  Xu Chen ,  Baris Coskun ,  Gustavo de los Reyes ,  Seungjoon Lee ,  Suhas Mathur ,  Jacobus Van der Merwe ,  Gang Xu

IPC分类号： G06F21/53 ,  H04L29/06

CPC分类号： H04L63/0272 ,  H04L63/1416 ,  H04L63/145 ,  H04L63/1458 ,  H04W12/08

摘要： Methods and apparatus to configure virtual private mobile networks for security are disclosed. A disclosed example method includes identifying, in a wireless network, a communication from a user equipment that matches a security event profile, transmitting, from the wireless network, an instruction to enable the user equipment to be communicatively coupled to a virtual private mobile network, the virtual private mobile network being provisioned for security within the wireless network, and enabling the user equipment to transmit a second communication through the virtual private mobile network securely isolated from other portions of the wireless network.

摘要翻译： 公开了用于配置虚拟专用移动网络以进行安全的方法和装置。 所公开的示例性方法包括在无线网络中识别来自与安全事件简档匹配的用户设备的通信，从无线网络发送使得用户设备能够通信地耦合到虚拟专用移动网络的指令， 虚拟专用移动网络被提供用于无线网络内的安全性，并且使得用户设备能够通过与无线网络的其他部分安全隔离的虚拟专用移动网络来发送第二通信。

公开(公告)号：US10044678B2

公开(公告)日：2018-08-07

申请号：US13222876

申请日：2011-08-31

申请人： Jacobus Van der Merwe ,  Arati Baliga ,  Xu Chen ,  Baris Coskun ,  Gustavo de los Reyes ,  Seungjoon Lee ,  Suhas Mathur ,  Gang Xu

发明人： Jacobus Van der Merwe ,  Arati Baliga ,  Xu Chen ,  Baris Coskun ,  Gustavo de los Reyes ,  Seungjoon Lee ,  Suhas Mathur ,  Gang Xu

IPC分类号： G06F15/16 ,  G06F15/173 ,  H04L29/06 ,  H04W8/12 ,  H04W12/00 ,  H04L29/12

摘要： Methods and apparatus to configure virtual private mobile networks with virtual private networks are disclosed. A disclosed example method includes logically provisioning, for a client, the virtual private mobile network to process wireless network communications associated with the client that correspond to a specified address space of the client, provisioning at least a portion of a server within a cloud computing data center to host resources for the client, and configuring at least a portion of an edge router of the cloud computing data center to transmit the wireless network communications between the portion of the server and the virtual private mobile network.

公开(公告)号：US20120311107A1

公开(公告)日：2012-12-06

申请号：US13154121

申请日：2011-06-06

申请人： Jacobus Van der Merwe ,  Xu Chen ,  Baris Coskun ,  Gustavo de los Reyes ,  Seungjoon Lee ,  Suhas Mathur ,  Arati Baliga ,  Gang Xu

发明人： Jacobus Van der Merwe ,  Xu Chen ,  Baris Coskun ,  Gustavo de los Reyes ,  Seungjoon Lee ,  Suhas Mathur ,  Arati Baliga ,  Gang Xu

IPC分类号： G06F15/177

CPC分类号： H04W36/14 ,  H04L12/4633 ,  H04L12/4641 ,  H04L41/083 ,  H04L43/0858 ,  H04L43/087 ,  H04L43/16 ,  H04L47/14 ,  H04L47/805 ,  H04L65/80 ,  H04L67/322 ,  H04W36/30 ,  H04W88/02

摘要： Methods and apparatus to configure virtual private mobile networks for latency are disclosed. A disclosed example method includes provisioning logically a virtual private mobile network within a wireless network to reduce latency of a communication associated with a latency sensitive application, determining a mobile device is communicatively coupling to the wireless network via the latency sensitive application, and coupling the mobile device to the virtual private mobile network to reduce latency of the communication associated with the latency sensitive application.

摘要翻译： 公开了配置虚拟专用移动网络延迟的方法和装置。 所公开的示例方法包括在无线网络内逻辑地提供虚拟专用移动网络以减少与等待时间敏感应用相关联的通信的等待时间，确定移动设备经由等待时间敏感应用通信地耦合到无线网络，以及将移动 设备到虚拟专用移动网络，以减少与延迟敏感应用相关联的通信的延迟。

公开(公告)号：US20120233694A1

公开(公告)日：2012-09-13

申请号：US13045916

申请日：2011-03-11

申请人： Arati Baliga ,  Baris Coskun ,  Christopher Van Wart

发明人： Arati Baliga ,  Baris Coskun ,  Christopher Van Wart

IPC分类号： G06F21/00

CPC分类号： G06F21/568 ,  H04L2463/144 ,  H04W12/12

摘要： Mitigation of malicious software in wireless networks and/or on mobile devices is provided. A mobile malicious software mitigation component is provided that obtains an internet protocol address that is exhibiting malicious software behavior, a profile of the malicious software behavior, and a time of the malicious software behavior. The malicious software mitigation component can determine an identity of a mobile device that was assigned the internet protocol address during the time it was exhibiting malicious software behavior, and transmit the profile to the mobile device. In addition, the malicious software mitigation component determine if the duration of the assignment of the internet protocol address to the mobile device is sufficient for positive identification.

摘要翻译： 提供了无线网络和/或移动设备上恶意软件的缓解。 提供了一种移动恶意软件缓解组件，其获得呈现恶意软件行为的互联网协议地址，恶意软件行为的简档以及恶意软件行为的时间。 恶意软件缓解组件可以确定在其呈现恶意软件行为时分配了因特网协议地址的移动设备的身份，并将该配置文件发送到移动设备。 此外，恶意软件缓解组件确定对于移动设备的互联网协议地址的分配持续时间是否足以进行肯定识别。

公开(公告)号：US09219744B2

公开(公告)日：2015-12-22

申请号：US12962940

申请日：2010-12-08

申请人： Arati Baliga ,  Baris Coskun

发明人： Arati Baliga ,  Baris Coskun

IPC分类号： G06F15/173 ,  G06F15/16 ,  H04L29/06 ,  H04W12/12

CPC分类号： H04L63/145 ,  G06F21/566 ,  H04L63/126 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1441 ,  H04L63/164 ,  H04L2463/144 ,  H04W12/06 ,  H04W12/12

摘要： Mitigation of bot networks in wireless networks and/or on mobile devices is provided. A botnet detection component is provided that inspects data traffic and data flows on the wireless network to identify mobile devices that are suspected of behaving as bots. A traffic profile of the suspected bot behavior can be generated and forwarded to the mobile devices that are suspected of behaving as bots. The mobile device can correlate data traffic on the device to the traffic profile in order to identify applications responsible for the suspected bot behavior, and remove the identified applications.

摘要翻译： 提供了无线网络和/或移动设备上的机器人网络的减轻。 提供了一种僵尸网络检测组件，其检查无线网络上的数据流量和数据流，以识别被怀疑为机器人的移动设备。 可以生成可疑机器人行为的流量配置文件，并将其转发到被怀疑为机器人的移动设备。 移动设备可以将设备上的数据流量与流量简档相关联，以便识别负责可疑机器人行为的应用，并移除所识别的应用。