-
公开(公告)号:WO2019062180A1
公开(公告)日:2019-04-04
申请号:PCT/CN2018/089130
申请日:2018-05-31
申请人: 平安科技(深圳)有限公司
发明人: 晏湘涛
IPC分类号: G06Q10/00
CPC分类号: G06F9/547 , H04L63/0227 , H04L67/28 , H04L67/32
摘要: 本申请提供一种基于网络的任务流转方法,该方法包括:所述受理层服务接收第一用户从客户端发出的任务协作请求,通过异步调用将所述任务协作请求通过第一网络传送给企业内部的一代理层服务,该代理层服务通过异步调用的方式将接收到的任务协作请求通过第二网络转发给企业内部的核心业务系统,该核心业务系统将该任务协作请求中的任务分配给客户端的第二用户,并将处理结果反馈给所述代理层服务;所述受理层服务接收所述代理层服务反馈的处理结果,并将该处理结果反馈给所述第一用户。本申请还提供一种服务器及计算机可读存储介质。利用本申请能实现工作任务在业务人员间的流转,保障任务在协同作业流转过程中的安全性。
-
公开(公告)号:WO2019018380A1
公开(公告)日:2019-01-24
申请号:PCT/US2018/042468
申请日:2018-07-17
CPC分类号: H04L63/1425 , G06F16/24568 , G06F21/554 , H04L41/142 , H04L41/16 , H04L43/04 , H04L51/34 , H04L63/0227 , H04L67/26
摘要: Methods and systems for detecting anomalies in high-frequency time-series are described. The method includes receiving a data stream, detecting one or more candidate anomalies in the data stream via a point anomaly detector, storing the one or more candidate anomalies in a queue to be accessed by a pattern anomaly detector, and determining one or more true anomalies in the data stream via the pattern anomaly detector based at least in part on the one or more candidate anomalies. The one or more true anomalies include a pattern anomaly.
-
公开(公告)号:WO2018144803A1
公开(公告)日:2018-08-09
申请号:PCT/US2018/016567
申请日:2018-02-02
申请人: NIO USA, INC.
发明人: HIRSHBERG, Yanir , NORTH, Craig
IPC分类号: B60R25/10
CPC分类号: H04L63/1408 , G06F21/85 , G06F2221/2111 , H04L12/46 , H04L12/66 , H04L63/0227 , H04L67/12 , H04L2012/40215 , H04L2012/40234 , H04L2012/40273 , H04W4/48 , H04W84/12
摘要: Generally speaking, embodiments of the present disclosure include a network security system that can comprise a hardware appliance installed in a vehicle and connected with the busses, networks, communication systems, and other components of the vehicle. This in-vehicle network security appliance can provide an access point to the networks of the vehicle, such as the Controller Area Networks (CANs), Local Interconnect Networks (LINs) and other networks, monitor inbound and outbound traffic on those networks, and provide a firewall between those networks and external networks or systems as well as between different networks and systems within the vehicle. In this way, the network security appliance can protect the vehicle networks from different sources of attack from outside and inside the vehicle via components that are less secure like the infotainment system or diagnostic port.
-
4.发明申请
公开(公告)号:WO2018057609A1
公开(公告)日:2018-03-29
申请号:PCT/US2017/052494
申请日:2017-09-20
IPC分类号: H04L29/06
CPC分类号: H04L63/1408 , H04L63/0227
摘要: System, methods, and apparatuses enable a network security system to more efficiently process system events. For example, the disclosed approaches may be used to improve the way in which a security service processes events (e.g., network traffic, files, email messages, etc.) in order to detect various types of network security threats (e.g., network intrusion attempts, viruses, spam, and other potential network security issues). A security service generally refers to one or more microservices of a network security system which monitors and performs actions relative to input data items for purposes related to computer network security
摘要翻译: 系统,方法和设备使网络安全系统能够更高效地处理系统事件。 例如,所公开的方法可以用于改进安全服务处理事件(例如,网络流量,文件,电子邮件消息等)以便检测各种类型的网络安全威胁(例如,网络入侵尝试 ,病毒,垃圾邮件和其他潜在的网络安全问题)。 安全服务通常是指网络安全系统的一个或多个微服务,其为了与计算机网络安全相关的目的而监视和执行与输入数据项相关的动作
-
公开(公告)号:WO2018036605A1
公开(公告)日:2018-03-01
申请号:PCT/EP2016/069806
申请日:2016-08-22
CPC分类号: H04L63/101 , H04L61/2007 , H04L61/2038 , H04L61/2061 , H04L61/2514 , H04L63/0227 , H04L63/0272 , H04L63/104 , H04L63/164
摘要: User device for communicating with an external device A user device for communicating with an external device via a virtual private network is suggested. The user device comprises a processing unit for generating a data packet to be transmitted to the external device, wherein a header of the data packet includes an authentication information of the user device for authenticating the user device, and a communication unit for communicating with the external device by transmitting the data packet to the external device via the virtual private network. Further, an external device for communicating with the user device and a method for a communication between a user device and an external device are suggested. The user device uses as an authentication for the virtual private network the header of the data packet. Thus, no additional authentication at the application layer is required.
摘要翻译: 用于与外部设备通信的用户设备建议用户设备通过虚拟专用网络与外部设备进行通信。 用户设备包括:处理单元,用于生成要发送到外部设备的数据分组,其中,数据分组的头部包括用于认证用户设备的用户设备的认证信息;以及通信单元,用于与外部 设备通过经由虚拟专用网络将数据分组发送到外部设备。 此外,建议用于与用户装置通信的外部装置以及用于在用户装置与外部装置之间进行通信的方法。 用户设备用作虚拟专用网络的认证数据包的头部。 因此,在应用层不需要额外的认证。
-
公开(公告)号:WO2017147072A1
公开(公告)日:2017-08-31
申请号:PCT/US2017/018723
申请日:2017-02-21
申请人: CYLANCE INC.
发明人: PERMEH, Ryan , SOEDER, Derek A. , WOLFF, Matthew , JIN, Ming , ZHAO, Xuan
CPC分类号: G06F21/51 , G06F21/53 , G06F21/56 , G06F21/562 , G06F21/566 , G06F2221/033 , G06N99/005 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/145
摘要: Determining, by a machine learning model in an isolated operating environment, whether a file is safe for processing by a primary operating environment. The file is provided, when the determining indicates the file is safe for processing, to the primary operating environment for processing by the primary operating environment. When the determining indicates the file is unsafe for processing, the file is prevented from being processed by the primary operating environment. The isolated operating environment can be maintained on an isolated computing system remote from a primary computing system maintaining the primary operating system. The isolating computing system and the primary operating system can communicate over a cloud network.
摘要翻译: 通过隔离的操作环境中的机器学习模型来确定文件是否对主操作环境的处理是安全的。 当确定指示文件对于处理是安全的时,文件被提供给主操作环境以供主操作环境处理。 当确定指示文件不安全处理时,阻止文件由主操作环境处理。 隔离的操作环境可以维护在远离维护主操作系统的主计算系统的隔离计算系统上。 隔离计算系统和主操作系统可以通过云网络进行通信。
-
公开(公告)号:WO2017146961A1
公开(公告)日:2017-08-31
申请号:PCT/US2017/018021
申请日:2017-02-16
发明人: JAIN, Navendu , CHEN, Ang
IPC分类号: G06F21/55 , G06F21/56 , G06F21/57 , H04L29/06 , H04L12/801
CPC分类号: H04L63/0254 , G06F21/55 , G06F21/552 , G06F21/56 , G06F21/577 , H04L63/0218 , H04L63/0227 , H04L63/08 , H04L63/1408 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/145 , H04L63/1458 , H04L63/20
摘要: Embodiments relate to detecting and mitigating network intrusions. Packets are inspected at their source/destination hosts to identify packet trends local to the hosts. The local packet trends are combined to identify network-wide packet trends. The network-wide packet trends are used to detect anomalies or attacks, which in turn informs mitigation actions. The local inspection may be performed by reconfigurable/reprogrammable "smart" network interfaces (NICs) at each of the hosts. Local inspection involves identifying potentially suspect packet features based on statistical prevalence of recurring commonalities among the packets; pre-defined threat patterns are not required. For network-wide coherence, each host/NIC uses the same packet-identifying and occurrence-measuring algorithms. An overlay or control server collects and combines the local occurrence-measures to derive the network-wide occurrence-measures. The network-wide occurrences can be used to automatically detect and mitigate completely new types of attack packets.
摘要翻译: 实施例涉及检测和减轻网络入侵。 数据包在其源/目标主机上进行检查,以识别主机本地的数据包趋势。 本地数据包趋势被结合起来以识别网络范围的数据包趋势。 网络范围的数据包趋势用于检测异常或攻击,进而通知缓解措施。 本地检查可以通过可重新配置/可重新编程的“智能” 每个主机的网络接口(NIC)。 本地检查涉及根据数据包之间重复共性的统计普遍性来识别潜在的可疑数据包特征; 预定义的威胁模式不是必需的。 对于整个网络的一致性,每个主机/ NIC使用相同的数据包识别和出现测量算法。 覆盖或控制服务器收集并组合本地出现措施以导出全网络出现措施。 网络范围内的事件可以用来自动检测和缓解全新类型的攻击数据包。
-
公开(公告)号:WO2017116601A1
公开(公告)日:2017-07-06
申请号:PCT/US2016/064309
申请日:2016-12-01
申请人: AVANAN INC.
发明人: ROTEM, Roy , FRIEDRICH, Gil , ZELOVICH, Avraham
CPC分类号: G06F21/6218 , G06F21/606 , H04L63/0227 , H04L63/1441 , H04L63/20
摘要: A data security system, including a security manager remotely monitoring a service that performs data-exchange transactions for end users, operative to temporarily prevent end user access to new transactions by interacting with the service so that the security manager accesses new transactions prior to end users being able to access the new transaction, and a data inspector operative to inspect data of new transactions for security clearance, wherein the security manager is further operative to restore end user access to the new transactions by further interacting with the service so that end users are able to access the new transaction, if the security inspector clears the data, and otherwise to perform a remedial action vis-à-vis the new transactions.
摘要翻译: 数据安全系统包括远程监视为最终用户执行数据交换事务的服务的安全管理器,其操作用于通过与服务交互来临时阻止最终用户访问新事务,从而使安全性 管理器在最终用户能够访问新事务之前访问新事务,以及数据检查器可操作来检查新事务的数据以进行安全检查,其中安全管理器进一步操作以通过进一步交互来恢复最终用户对新事务的访问 与服务,以便最终用户能够访问新的交易,如果安全检查员清除数据,否则执行补救行动vis-与agrave; - 维护新的交易。
-
9.发明申请A HARDWARE AGNOSTIC PLATFORM FOR TRANSPARENT ACCESS CONTROL OF INTERNET OF EVERYTHING (IOE) DESTINATIONS 审中-公开用于所有(IOE)目的地的互联网的透明访问控制的硬件机制平台
公开(公告)号:WO2017095741A1
公开(公告)日:2017-06-08
申请号:PCT/US2016/063854
申请日:2016-11-28
申请人: YESHOG, LLC
CPC分类号: H04L63/20 , G06F21/6218 , H04L63/0227 , H04L63/101
摘要: Simplified and/or user friendly interfaces can be employed to facilitate administration of a routing platform that couples devices of a local area network (LAN) to an external communication network (e.g., the Internet). In one aspect, the routing platform comprises a firewall that can be employed to perform access control and/or an Internet of Things (IoT) hub that can be employed to control operations of IoT devices of the LAN, for example, based on domain information, user-defined tags and peer-defined criteria to make correlations that are leveraged to implement access control policies. A search and command interface is employable to issue textual (e.g., natural language) commands to configure access control policies, tags for devices and/or websites, and/or search for data.
摘要翻译: 简化的和/或用户友好的接口可以用来促进将局域网(LAN)的设备耦合到外部通信网络(例如,因特网)的路由平台的管理。 在一个方面,路由平台包括可以用来执行访问控制和/或物联网(IoT)集线器的防火墙,其可以用于例如基于域信息来控制LAN的IoT设备的操作 ,用户定义的标签和对等定义的标准来进行相关性的实施,以实现访问控制策略。 搜索和命令界面可用于发布文本(例如自然语言)命令来配置访问控制策略,设备和/或网站的标签和/或搜索数据。
-
公开(公告)号:WO2017084966A1
公开(公告)日:2017-05-26
申请号:PCT/EP2016/077334
申请日:2016-11-10
申请人: QINETIQ LIMITED
发明人: JOBSON, Michael Iain
IPC分类号: H04L29/06
CPC分类号: H04L63/0227 , H04L63/105
摘要: A cross-domain communication system and method is provided. The system comprises a data hub connectable to first domain and to a second domain, wherein the first and second domains are isolated from one another. The data hub may be connected independently to the first domain and to the second domain, such that it is able to receive data from the first domain and transmit data to the second domain. The data hub comprises a processor, and optionally a data diode, the processor being adapted to inspect packet data received from the first domain, and to run a set of user-defined rules, such that commands are applied to the packet data in accordance with the rules. When a command applied to packet data received from the first domain it creates packet data transmittable to the second domain in real time, such that the first and second domains communicate indirectly via the data hub.
摘要翻译: 提供了一种跨域通信系统和方法。 该系统包括可连接到第一域和第二域的数据集线器,其中第一和第二域彼此隔离。 数据集线器可以独立地连接到第一域和第二域,使得它能够接收来自第一域的数据并将数据发送到第二域。 数据中枢包括处理器和可选的数据二极管,处理器适于检查从第一域接收到的分组数据,并运行一组用户定义的规则,使得命令按照以下方式应用于分组数据: 规则。 当应用于从第一域接收到的分组数据的命令时,它创建实时可传输到第二域的分组数据,使得第一和第二域通过数据集线器间接通信。
-
-
-
-
-
-
-
-
-
搜索结果
992 条记录 (耗时 0.023 秒)
