Per-Machine Based Shared Revenue Ad Delivery Fraud Detection and Mitigation
    2.
    发明申请
    Per-Machine Based Shared Revenue Ad Delivery Fraud Detection and Mitigation 审中-公开
    基于机器的共享收入广告投放欺诈检测和缓解

    公开(公告)号:US20080319841A1

    公开(公告)日:2008-12-25

    申请号:US11766605

    申请日:2007-06-21

    IPC分类号: G06Q30/00

    摘要: A per-machine based owner compensation advertising delivery systems targets advertising content to individual computer machines. Computer owners are compensated by receiving a portion of the per-machine advertising revenue, obtaining subsidized ad software, or by other financial agreements corresponding to ad delivery to a specific computer. The client software responsible for showing the ad content is also responsible for requesting ads from a server of an ad delivery service provider based on a deterministic combination of sequence and timing information that is also known by the server. The server may detect potential client fraud based on the comparing the pattern, frequency, and content of received ad requests to the expected behavior of the client machine, and then take action to mitigate the fraud through various strategies.

    摘要翻译: 基于机器的所有者补偿广告传递系统将广告内容定向到个人计算机机器。 计算机所有者通过接收每台机器广告收入的一部分,获得补贴的广告软件,或通过与特定计算机的广告投放相对应的其他财务协议来进行补偿。 负责显示广告内容的客户端软件还负责根据服务器也知道的序列和时间信息的确定性组合,从广告投放服务提供商的服务器请求广告。 服务器可以基于将接收到的广告请求的模式,频率和内容与客户机的预期行为进行比较来检测潜在的客户端欺诈,然后通过各种策略采取行动来减轻欺诈。

    Purchasing of individual features of a software product
    4.
    发明授权
    Purchasing of individual features of a software product 有权
    购买软件产品的各个功能

    公开(公告)号:US08239274B2

    公开(公告)日:2012-08-07

    申请号:US11652214

    申请日:2007-01-11

    IPC分类号: G06Q30/00

    CPC分类号: G06Q30/06 G06Q30/0633

    摘要: In various embodiments, a user may, via a processing device, indicate a desire to purchase a feature of an installed software product. A purchase request may be sent to an e-commerce server, or other server. The purchase request may be validated and information concerning the software product, the feature of the software product, and the processing device may be stored. Enabling information may be sent to the processing device to enable the feature of the software product. In some embodiments, the user may request a trial of a feature of a software product before purchasing the feature. In other embodiments, the user may deactivate a purchased feature of a software product on one processing device and may activate the purchased feature of the software product on a different processing device.

    摘要翻译: 在各种实施例中,用户可以经由处理设备来指示购买所安装的软件产品的特征的愿望。 购买请求可以发送到电子商务服务器或其他服务器。 可以验证购买请求,并且可以存储关于软件产品,软件产品的特征和处理设备的信息。 可以将启用信息发送到处理设备以启用软件产品的特征。 在一些实施例中,用户可以在购买特征之前请求对软件产品的特征的试用。 在其他实施例中,用户可以在一个处理设备上去激活购买的软件产品的特征,并且可以在不同的处理设备上激活所购买的软件产品的特征。

    Leveraging active firewalls for network intrusion detection and retardation of attack
    5.
    发明授权
    Leveraging active firewalls for network intrusion detection and retardation of attack 有权
    利用主动防火墙进行网络入侵检测和阻止攻击

    公开(公告)号:US08170020B2

    公开(公告)日:2012-05-01

    申请号:US11298411

    申请日:2005-12-08

    IPC分类号: H04L12/28 G06F7/04

    CPC分类号: H04L63/0227 H04L63/1408

    摘要: A computer network firewall or network filter functions normally to pass data on open ports to a respective service or data source associated with an open port. In addition, traffic arriving on closed ports may be directed to a handler for analysis and response. The handler may analyze and catalog the source and type of traffic arriving on the closed ports. The handler may then send a response with either a fixed response or data tailored to the type and nature of the traffic. The handler may respond slowly to cause the source of the traffic to wait for the response, thereby slowing the speed at which a potential attacker can identify valid targets and proceed past non-valid targets.

    摘要翻译: 计算机网络防火墙或网络过滤器可以正常工作,将开放端口上的数据传递到与开放端口相关联的相应服务或数据源。 此外,到达封闭港口的流量可能被引导到处理程序进行分析和响应。 处理程序可以分析和编目到达封闭端口的流量的来源和类型。 然后,处理程序可以发送具有针对流量的类型和性质的固定响应或数据的响应。 处理程序可能会缓慢响应,导致流量来源等待响应,从而降低潜在攻击者可以识别有效目标并进入非有效目标的速度。

    Portion-level in-memory module authentication
    6.
    发明授权
    Portion-level in-memory module authentication 有权
    部分级内存模块认证

    公开(公告)号:US07644287B2

    公开(公告)日:2010-01-05

    申请号:US10902244

    申请日:2004-07-29

    IPC分类号: G06F11/30

    CPC分类号: G06F21/51

    摘要: Dynamic run-time verification of a module which is loaded in memory (in whole or in part) for execution is enabled by using pre-computed portion-level verification data for portions of the module smaller than the whole (e.g. at the page-level). A portion of the module as loaded into memory for execution can be verified. Pre-computed portion-level verification data is retrieved from storage and used to verify the loaded portions of the executable. Verification data may be, for example, a digitally signed hash of the portion. Where the operating system loader has modified the portion for execution, the modifications are reversed, removing any changes performed by the operating system. If the portion has not been tampered, this will return the portion to its original pre-loaded state. This version is then used to determine validity using the pre-computed portion-level verification. Additionally, during execution of the module, new portions/pages of the module which are loaded can be verified to ensure that they have not been changed, and a list of hot pages of the module can be made, including pages to be continually reverified, in order to ensure that no malicious changes have been made in the module.

    摘要翻译: 通过对小于整个模块的部分(例如在页面级别)使用预先计算的部分级验证数据来启用加载在存储器(整体或部分)中用于执行的模块的动态运行时验证 )。 可以验证加载到存储器中用于执行的模块的一部分。 从存储器检索预先计算的部分级验证数据,并用于验证可执行文件的加载部分。 验证数据可以是例如该部分的经数字签名的散​​列。 在操作系统加载程序修改了执行部分的情况下,修改将相反,从而删除操作系统执行的任何更改。 如果该部分没有被篡改,这将使该部分返回到其原始预加载状态。 然后使用该版本使用预先计算的部分级验证来确定有效性。 此外,在执行模块期间,可以验证装载的模块的新部分/页面,以确保它们未被更改,并且可以制作模块的热页面列表,包括要不断重新验证的页面, 以确保模块中不会发生恶意更改。

    Import address table verification
    7.
    发明授权
    Import address table verification 有权
    导入地址表验证

    公开(公告)号:US07739516B2

    公开(公告)日:2010-06-15

    申请号:US10794292

    申请日:2004-03-05

    IPC分类号: G06F11/30 G06F12/14

    CPC分类号: G06F12/1416 G06F21/51

    摘要: The import address table of a software module is verified in order to prevent detouring attacks. A determination is made regarding which entries in the IAT must be verified; all of the entries may be verified or some subset of the entries that are critical may be verified. For each external function, the external module containing the external function is loaded, if it is not already loaded. The function address in the exported function table is found. That address is compared to the address for the function in the IAT. Additionally, the external module, in one embodiment, is verified to ensure that it has not been modified. For a delay load IAT, a similar procedure is followed; however the delay load IAT may be periodically checked to ensure that the delay load IAT entries are either valid (indicating that the external function has been bound) or in their initial state (indicating that no binding has yet occurred).

    摘要翻译: 验证软件模块的导入地址表,以防止迂回攻击。 确定必须验证IAT中的哪些条目; 可以验证所有条目,或者可以验证关键的条目的某些子集。 对于每个外部功能,如果外部模块尚未加载,则会加载包含外部功能的外部模块。 找到导出的功能表中的功能地址。 该地址与IAT中功能的地址进行比较。 此外,在一个实施例中,外部模块被验证以确保其未被修改。 对于延迟负载IAT,遵循类似的过程; 然而,可以定期检查延迟负载IAT以确保延迟负载IAT条目是有效的(指示外部功能已经被绑定)或处于其初始状态(指示还没有发生绑定)。

    Purchasing of individual features of a software product
    8.
    发明申请
    Purchasing of individual features of a software product 有权
    购买软件产品的各个功能

    公开(公告)号:US20080172300A1

    公开(公告)日:2008-07-17

    申请号:US11652214

    申请日:2007-01-11

    IPC分类号: G06Q30/00

    CPC分类号: G06Q30/06 G06Q30/0633

    摘要: In various embodiments, a user may, via a processing device, indicate a desire to purchase a feature of an installed software product. A purchase request may be sent to an e-commerce server, or other server. The purchase request may be validated and information concerning the software product, the feature of the software product, and the processing device may be stored. Enabling information may be sent to the processing device to enable the feature of the software product. In some embodiments, the user may request a trial of a feature of a software product before purchasing the feature. In other embodiments, the user may deactivate a purchased feature of a software product on one processing device and may activate the purchased feature of the software product on a different processing device.

    摘要翻译: 在各种实施例中,用户可以经由处理设备来指示购买所安装的软件产品的特征的愿望。 购买请求可以发送到电子商务服务器或其他服务器。 可以验证购买请求,并且可以存储关于软件产品,软件产品的特征和处理设备的信息。 可以将启用信息发送到处理设备以启用软件产品的特征。 在一些实施例中,用户可以在购买特征之前请求对软件产品的特征的试用。 在其他实施例中,用户可以在一个处理设备上去激活购买的软件产品的特征,并且可以在不同的处理设备上激活所购买的软件产品的特征。