|
Match
|
Document |
Document Title |
|
|
7620992 |
System and method for detecting multi-component malware
Malicious behavior of a computer program is detected using an emulation engine, an event detector and an event analyzer. The emulation engine includes a system emulator configured to emulate, in an...
|
|
|
7620989 |
Network testing methods and systems
Network vulnerability testing methods, systems, devices, appliances and software products generate stateful and stateless network representative of network threats. The traffic is applied to a...
|
|
|
7620987 |
Obfuscating computer code to prevent an attack
A method and system for obfuscating computer code of a program to protect it from the adverse effects of malware is provided. The obfuscation system retrieves an executable form of the computer...
|
|
|
7620986 |
Defenses against software attacks in distributed computing environments
The invention provides apparatus and methods for defending against attacks in a distributed computing environment, including (1) distinguishing attack traffic patterns from legitimate traffic...
|
|
|
7620985 |
Flood attack projection model
A flood attack of an information system is simulated by injecting an algorithmically compressed flood attack model into the information system to assess the effect of the attack upon the system....
|
|
|
7620984 |
Method of managing computer system
An embodiment of a method of managing a computer system begins with a step of placing a virtual machine monitor on a computer. The virtual machine monitor includes an interface for a module. The...
|
|
|
7620983 |
Behavior profiling
Providing security comprises accessing a database configured to store operational information associated with a process, determining a first behavior using the operational information wherein the...
|
|
|
7620851 |
Fault injection methods and apparatus
A method of testing a target in a network by fault injection, includes: defining a transaction baseline; modifying at least one of an order and a structure of the transaction baseline to obtain a...
|
|
|
7620821 |
Processor including general-purpose and cryptographic functionality in which cryptographic operations are visible to user-specified software
A processor including general-purpose and cryptographic functionality, in which cryptographic operations are visible to user-specified software. According to one embodiment, a processor may include...
|
|
|
7620181 |
Communications system with minimum error cryptographic resynchronization
A synchronized communications system permits resynchronization in late-entry or fade-recovery conditions. A plurality of communications devices are operative for communicating in a synchronized,...
|
|
|
7617534 |
Detection of SYSENTER/SYSCALL hijacking
Techniques are disclosed for detecting manipulations of user-kernel transition registers (such as the SYSENTER/SYSCALL critical registers of Intel/AMD processors, respectively), and other such...
|
|
|
7617533 |
Self-quarantining network
Mitigating network security threats through a self-quarantining network is disclosed. Traffic received from a local source via a physical port is monitored. If a threat is detected, traffic...
|
|
|
7617532 |
Protection of sensitive data from malicious e-mail
Methods, apparatuses, and computer-readable media protect sensitive data from being submitted in response to malicious e-mail. Responsive to initiating interaction with a remote site by clicking on...
|
|
|
7617531 |
Inferencing data types of message components
A security gateway receives messages and extracts components thereof, typically in the form of field name-value pairs. The security gateway determines a data type of the values for individual field...
|
|
|
7617526 |
Blocking of spam e-mail at a firewall
A method of blocking spam at a firewall involves applying blocking measures for an adaptively determined duration. The blocking measure is then suspended while determining whether the spam has...
|
|
|
7614084 |
System and method for detecting multi-component malware
Malicious behavior of a computer program is detected using an emulation engine, an event detector and an event analyzer. The emulation engine includes a system emulator configured to emulate, in an...
|
|
|
7614083 |
Process control methods and apparatus for intrusion detection, protection and network hardening
The invention provides an improved network and methods of operation thereof for use in or with process control systems, computer-based manufacturing or production control systems, environmental...
|
|
|
7613932 |
Method and system for controlling access to software features in an electronic device
A method and system for controlling access to features on an electronic device, such as a printer, is disclosed. The electronic device is shipped with multiple software features, but one or more of...
|
|
|
7610627 |
Secure data exchange technique
Techniques utilizing common encryption approaches for data from multiple parties enable those parties to discover information that is held in common by the parties without disclosing to any party...
|
|
|
7610624 |
System and method for detecting and preventing attacks to a target computer system
A system and method are provided for monitoring data packets received at a target system. The data packets may be monitored at any layer of the communication protocol to characterize the type of...
|
|
|
7610622 |
Supporting options in a communication session using a TCP cookie
A defender operable to support options in a communication session intercepts a connection request packet sent from a client to a server. The defender identifies a client option combination...
|
|
|
7610610 |
Integrated firewall, IPS, and virus scanner system and method
A system, method and computer program product are provided including a router and a security sub-system coupled to the router. Such security sub-system includes a plurality of virtual firewalls, a...
|
|
|
7610505 |
Violations in a peer-to-peer relay network
Methods and apparatus for implementing peer-to-peer relay. In one implementation, a method of detecting and recovering from violations in a peer-to-peer relay network includes: receiving a message...
|
|
|
7610448 |
Obscuring memory access patterns
For each memory location in a set of memory locations associated with a thread, setting an indication associated with the memory location to request a signal if data from the memory location is...
|
|
|
7609629 |
Network controller and control method with flow analysis and control function
A network controller, capable of high-speed extraction of malicious traffic from networks and determining characteristics of such traffic, includes a unit for accumulating a number of packets for...
|
|
|
7607173 |
Method and apparatus for preventing rootkit installation
Call to driver load functions, including associated driver objects to be loaded, are stalled and evaluated for indications of a rootkit. When a rootkit is indicated, protective action is taken, and...
|
|
|
7607170 |
Stateful attack protection
A method for detecting an attack in a computer network includes monitoring communication traffic transmitted over connections on the network that are associated with a stateful application protocol...
|
|
|
7607169 |
User interface for network security console
A user interface for a network security console associated with multiple network security devices is disclosed. A graphical user interface (GUI) for use with an intrusion detection system,...
|
|
|
7607010 |
System and method for network edge data protection
Disclosed are systems and methods which examine information communication streams to identify and/or eliminate malicious code, while allowing the good code to pass unaffected. Embodiments operate...
|
|
|
7606840 |
Version control in a distributed computing environment
The present disclosure provides systems and methods for maintaining and controlling different versions of electronic files in a distributed server environment. As such, one embodiment, among...
|
|
|
7606214 |
Anti-spam implementations in a router at the network layer
In one embodiment, a router inspects at a network layer source addresses of network layer packets flowing through the router. The router compares the source addresses to addresses of computers...
|
|
|
7603716 |
Distributed network security service
A method and apparatus to distribute a network security service is disclosed. The security software may be distributed across nodes on a network and may use a separate security device that has two...
|
|
|
7603715 |
Containment of worms
One aspect of the invention is a vulnerability detection mechanism that can detect a large class of attacks through dynamic dataflow analysis. Another aspect of the invention includes...
|
|
|
7603714 |
Method, system and computer program product for computer system vulnerability analysis and fortification
A method, system, and computer program product for the automatic detection and fixing of security vulnerabilities in both individual software components and across complex, multi-component software...
|
|
|
7603712 |
Protecting a computer that provides a Web service from malware
In accordance with the present invention, a system, method, and computer-readable medium for identifying malware in a request to a Web service is provided. One aspect of the present invention is a...
|
|
|
7603710 |
Method and system for detecting characteristics of a wireless network
Characteristics about one or more wireless access devices in a wireless network, whether known or unknown entities, can be determined using a system and method according to the present invention....
|
|
|
7603708 |
Securing network services using network action control lists
A computer system having secured network services is presented. The computer system comprises a processor, a memory, and a network action processing module. The network action processing module...
|
|
|
7603707 |
Tamper-aware virtual TPM
Methods, software/firmware and apparatus for implementing a tamper-aware virtual trusted platform module (TPM). Under the method, respective threads comprising a virtual TPM thread and a...
|
|
|
7603706 |
System security using human authorization
In response to the occurrence of a restricted event in a computing device, a user of the computing device is presenting with a challenge including information designed to assist in determining...
|
|
|
7603705 |
Methods and systems for enforcing network and computer use policy
Network and computer use policy is enforced by employing client-side systems that analyze data usage at the client in terms of what the data is, who is using the data, and the context of the data,...
|
|
|
7603704 |
Secure execution of a computer program using a code cache
Hijacking of an application is prevented by monitoring control flow transfers during program execution in order to enforce a security policy. At least three basic techniques are used. The first...
|
|
|
7603703 |
Method and system for controlled distribution of application code and content data within a computer network
A secure communication methodology is presented. The client device is configured to download application code and/or content data from a server operated by a service provider. Embedded within the...
|
|
|
7603376 |
File and folder scanning method and apparatus
A method, apparatus and computer program product for file and folder scanning is presented. A host agent uses a scanning policy from a server, and scans the storage for the host system in...
|
|
|
7602731 |
System and method for integrated header, state, rate and content anomaly prevention with policy enforcement
The present invention provides an integrated prevention of header, state, rate and content anomalies along with network policy enforcement. A hardware based apparatus classifies layers 2, 3, 4 ...
|
|
|
7600256 |
Security critical data containers
Described are security critical data containers for platform code, comprising a Get container and Set container that allow data to be marked as security critical for critical usage of that data,...
|
|
|
7600255 |
Preventing network denial of service attacks using an accumulated proof-of-work approach
Accumulated proof-of-work approaches for protecting network resources against denial-of-service attacks are disclosed. A client computer or other requester is required to perform work, such as...
|
|
|
7600126 |
Efficient processing of time-bounded messages
Efficient processing of time-bound messages is described herein. In an implementation, messages are classified either time-bounded messages or non-time-bounded messages. The time-bounded messages...
|
|
|
7600113 |
Secure network channel
Methods and systems for establishing a secure network channel between two or more devices in a communication network are disclosed. In exemplary implementations the network may be a UPnP network. A...
|
|
|
7596810 |
Apparatus and method of detecting network attack situation
Provided is an apparatus for detecting a network attack situation. The apparatus includes an alarm receiver receiving a plurality of alarms raised in a network to which the alarm receiver is...
|
|
|
7596809 |
System security approaches using multiple processing units
A method and system for ensuring system security is disclosed. The method and system utilize a first processing unit to split a regular expression that corresponds to a number of patterns into...
|