公开(公告)号：US09894090B2

公开(公告)日：2018-02-13

申请号：US14799176

申请日：2015-07-14

Applicant: SAP SE

Inventor： Cedric Hebert ,  Laurent Gomez

IPC: H04L29/06 ,  G06F17/30 ,  G06F21/55 ,  G06F21/57

CPC classification number: H04L63/1433 ,  G06F17/30327 ,  G06F17/30377 ,  G06F21/552 ,  G06F21/577 ,  H04L63/1408

Abstract: Implementations of the present disclosure include methods, systems, and computer-readable storage mediums for receiving goal data and start-up information, the goal data indicating a goal to be achieved during a penetration test, the start-up information indicating initial data for beginning the penetration test, receiving tool data from a register of tools, the tool data including one or more tools that can be used during the penetration test, and, for each tool, input data required to execute the tool and output data provided by the tool, processing the goal data, the start-up information and the tool data to automatically generate attack tree data, the attack tree data including a plurality of data sets and links between data sets, and providing the attack tree data to display a graphical representation of an attack tree on a display.

公开(公告)号：US20170019421A1

公开(公告)日：2017-01-19

申请号：US14799176

申请日：2015-07-14

Applicant: SAP SE

Inventor： Cedric Hebert ,  Laurent Gomez

IPC: H04L29/06 ,  G06F17/30

CPC classification number: H04L63/1433 ,  G06F17/30327 ,  G06F17/30377 ,  G06F21/552 ,  G06F21/577 ,  H04L63/1408

Abstract: Implementations of the present disclosure include methods, systems, and computer-readable storage mediums for receiving goal data and start-up information, the goal data indicating a goal to be achieved during a penetration test, the start-up information indicating initial data for beginning the penetration test, receiving tool data from a register of tools, the tool data including one or more tools that can be used during the penetration test, and, for each tool, input data required to execute the tool and output data provided by the tool, processing the goal data, the start-up information and the tool data to automatically generate attack tree data, the attack tree data including a plurality of data sets and links between data sets, and providing the attack tree data to display a graphical representation of an attack tree on a display.

Abstract translation: 本公开的实现包括用于接收目标数据和启动信息的方法，系统和计算机可读存储介质，目标数据指示在穿透测试期间要实现的目标，启动信息指示初始数据开始 穿透测试，从工具寄存器接收工具数据，工具数据包括在穿透测试期间可以使用的一个或多个工具，以及对于每个工具，执行工具所需的输入数据和由工具提供的输出数据 ，处理目标数据，启动信息和工具数据以自动生成攻击树数据，攻击树数据包括多个数据集和数据集之间的链接，并提供攻击树数据以显示图形表示 在显示器上的攻击树。

公开(公告)号：US20200184106A1

公开(公告)日：2020-06-11

申请号：US16215358

申请日：2018-12-10

Applicant: SAP SE

Inventor： Anderson Santana de Oliveira ,  Lorenzo Frigerio ,  Laurent Gomez

IPC: G06F21/62 ,  H04L29/06 ,  G06N3/02 ,  G06F9/54

Abstract: Streaming data is received that is derived from at least one sensor (e.g., IoT sensors, etc.). At least one differential privacy algorithm is subsequently used to anonymize the received streaming data. The modified streaming data can then be provided (e.g., made available, stored, transmitted over a network, etc.) to at least one consuming computing device. Related apparatus, systems, techniques and articles are also described.

公开(公告)号：US11507883B2

公开(公告)日：2022-11-22

申请号：US16701955

申请日：2019-12-03

Applicant: SAP SE

Inventor： Laurent Gomez

IPC: G06F21/60 ,  G06N20/00 ,  G06N3/02

Abstract: Fairness and output authenticity for secure distributed machine learning is provided by way of an encrypted output of a garbled circuit which is simultaneously provided to a garbler and an evaluator by an output discloser. Related systems, methods and articles of manufacture are also disclosed.

公开(公告)号：US10027718B2

公开(公告)日：2018-07-17

申请号：US15231488

申请日：2016-08-08

Applicant: SAP SE

Inventor： Laurent Gomez ,  Jose Marquez ,  Cedric Hebert

IPC: H04L29/06

Abstract: Embodiments are configured for automating security design in IoT systems. The achievable security level for any given IoT system may be assessed based on the capabilities of each of the entities involved in its data path to generate a set of security policies for the IoT system. The capabilities of each entity involved in the IoT data path can be evaluated together with the capabilities of the communication links between entities. Based on these capabilities and user security preferences, the security policies can be generated to achieve a target level security. Based on this approach, security designs of IoT architectures can be developed through automated information collection.

公开(公告)号：US20180041546A1

公开(公告)日：2018-02-08

申请号：US15231488

申请日：2016-08-08

Applicant: SAP SE

Inventor： Laurent Gomez ,  Jose Marquez ,  Cedric Hebert

IPC: H04L29/06

CPC classification number: H04L63/205 ,  H04L63/105 ,  H04L63/20

Abstract: Embodiments are configured for automating security design in IoT systems. The achievable security level for any given IoT system may be assessed based on the capabilities of each of the entities involved in its data path to generate a set of security policies for the IoT system. The capabilities of each entity involved in the IoT data path can be evaluated together with the capabilities of the communication links between entities. Based on these capabilities and user security preferences, the security policies can be generated to achieve a target level security. Based on this approach, security designs of IoT architectures can be developed through automated information collection.

公开(公告)号：US11087025B2

公开(公告)日：2021-08-10

申请号：US16215358

申请日：2018-12-10

Applicant: SAP SE

Inventor： Anderson Santana de Oliveira ,  Lorenzo Frigerio ,  Laurent Gomez

IPC: G06F21/62 ,  H04L29/06 ,  G06N3/02 ,  G06F9/54 ,  H04L29/08

Abstract: Streaming data is received that is derived from at least one sensor (e.g., IoT sensors, etc.). At least one differential privacy algorithm is subsequently used to anonymize the received streaming data. The modified streaming data can then be provided (e.g., made available, stored, transmitted over a network, etc.) to at least one consuming computing device. Related apparatus, systems, techniques and articles are also described.

公开(公告)号：US20210166152A1

公开(公告)日：2021-06-03

申请号：US16701955

申请日：2019-12-03

Applicant: SAP SE

Inventor： Laurent Gomez

IPC: G06N20/00 ,  G06F21/60 ,  G06N3/02

Abstract: Fairness and output authenticity for secure distributed machine learning is provided by way of an encrypted output of a garbled circuit which is simultaneously provided to a garbler and an evaluator by an output discloser. Related systems, methods and articles of manufacture are also disclosed.