公开(公告)号：US09319897B2

公开(公告)日：2016-04-19

申请号：US13929082

申请日：2013-06-27

Applicant: QUALCOMM Incorporated

Inventor： Rajarshi Gupta ,  Ashok Halambi ,  Yoram Rimoni

IPC: H04W24/02 ,  G06F21/55 ,  H04W12/12 ,  G06F21/57 ,  H04W24/08 ,  H04L29/06

CPC classification number: H04L63/1425 ,  G06F21/554 ,  G06F21/57 ,  H04L63/1466 ,  H04W12/12 ,  H04W24/02 ,  H04W24/08

Abstract: Systems and methods for recognizing and reacting to malicious or performance-degrading behaviors in a mobile device include observing mobile device behaviors in an observer module within a privileged-normal portion of a secure operating environment to identify a suspicious mobile device behavior. The observer module may generate a concise behavior vector based on the observations, and provide the vector to an analyzer module in an unprivileged-secure portion of the secure operating environment. The vector may be analyzed in the unprivileged-secure portion to determine whether the mobile device behavior is benign, suspicious, malicious, or performance-degrading. If the behavior is found to be suspicious, operations of the observer module may be adjusted, such as to perform deeper observations. If the behavior is found to be malicious or performance-degrading behavior the user and/or a client module may be alerted in a secure, tamper-proof manner.

Abstract translation: 用于识别和响应移动设备中的恶意或性能降级行为的系统和方法包括观察安全操作环境的特权正常部分内的观察者模块中的移动设备行为以识别可疑移动设备行为。 观察者模块可以基于观察结果生成简洁的行为向量，并且将向量提供给安全操作环境的非特权安全部分中的分析器模块。 可以在非特权安全部分中分析向量，以确定移动设备行为是否是良性的，可疑的，恶意的或性能降级的。 如果发现行为是可疑的，则可以调整观察者模块的操作，例如执行更深的观察。 如果行为被发现是恶意的或降低性能的行为，则用户和/或客户端模块可能以安全，防篡改的方式被提醒。

公开(公告)号：US20140051432A1

公开(公告)日：2014-02-20

申请号：US13929082

申请日：2013-06-27

Applicant: QUALCOMM Incorporated

Inventor： Rajarshi Gupta ,  Ashok Halambi ,  Yoram Rimoni

IPC: H04W24/02

CPC classification number: H04L63/1425 ,  G06F21/554 ,  G06F21/57 ,  H04L63/1466 ,  H04W12/12 ,  H04W24/02 ,  H04W24/08

Abstract: Systems and methods for recognizing and reacting to malicious or performance-degrading behaviors in a mobile device include observing mobile device behaviors in an observer module within a privileged-normal portion of a secure operating environment to identify a suspicious mobile device behavior. The observer module may generate a concise behavior vector based on the observations, and provide the vector to an analyzer module in an unprivileged-secure portion of the secure operating environment. The vector may be analyzed in the unprivileged-secure portion to determine whether the mobile device behavior is benign, suspicious, malicious, or performance-degrading. If the behavior is found to be suspicious, operations of the observer module may be adjusted, such as to perform deeper observations. If the behavior is found to be malicious or performance-degrading behavior the user and/or a client module may be alerted in a secure, tamper-proof manner.

Abstract translation: 用于识别和响应移动设备中的恶意或性能降级行为的系统和方法包括观察安全操作环境的特权正常部分内的观察者模块中的移动设备行为以识别可疑移动设备行为。 观察者模块可以基于观察结果生成简洁的行为向量，并且将向量提供给安全操作环境的非特权安全部分中的分析器模块。 可以在非特权安全部分中分析向量，以确定移动设备行为是否是良性的，可疑的，恶意的或性能降级的。 如果发现行为是可疑的，则可以调整观察者模块的操作，例如执行更深的观察。 如果行为被发现是恶意的或降低性能的行为，则用户和/或客户端模块可能以安全，防篡改的方式被提醒。

公开(公告)号：US09176760B2

公开(公告)日：2015-11-03

申请号：US14034770

申请日：2013-09-24

Applicant: QUALCOMM Incorporated

Inventor： Ashok Halambi ,  Gregory M. Wright ,  Christopher A. Vick

IPC: G06F9/44 ,  G06F9/455 ,  G06F9/45

CPC classification number: G06F8/447 ,  G06F8/443 ,  G06F9/45516

Abstract: The various aspects provide a dynamic compilation framework that includes a machine-independent optimization module operating on a computing device and methods for optimizing code with the machine-independent optimization module using a single, combined-forwards-backwards pass of the code. In the various aspects, the machine-independent optimization module may generate a graph of nodes from the IR, optimize nodes in the graph using forwards and backwards optimizations, and propagating the forwards and backwards optimizations to nodes in a bounded subgraph recognized or defined based on the position of the node currently being optimized. In the various aspects, the machine-independent optimization module may optimize the graph by performing forwards and/or backwards optimizations during a single pass through the graph, thereby achieving an effective degree of optimization and shorter overall compile times. Thus, the various aspects may provide a global optimization framework for dynamic compilers that is faster and more efficient than existing solutions.

Abstract translation: 各个方面提供了一个动态编译框架，其中包括一个在计算设备上运行的独立于计算机的优化模块，以及使用独立的组合后向传递代码的独立于机器的优化模块来优化代码的方法。 在各个方面，独立于机器的优化模块可以从IR生成节点图，使用向前和向后优化来优化图中的节点，并且将前向和后向优化传播到基于 当前正在优化节点的位置。 在各个方面，独立于机器的优化模块可以在单次通过图形期间执行前向和/或后向优化来优化图形，从而实现有效的优化程度和更短的整体编译时间。 因此，各个方面可以为动态编译器提供一个比现有解决方案更快更有效的全局优化框架。