|
Match
|
Document |
Document Title |
|
|
7599289 |
Electronic communication control
An electronic communication control device suitable for embedding into a network interface card or a line card of a switch or router. The electronic communication control device is capable of...
|
|
|
7600257 |
Method and an apparatus to perform multiple packet payloads analysis
A method and an apparatus to perform multiple packet payload analysis have been disclosed. In one embodiment, the method includes receiving a plurality of data packets, each of the plurality of...
|
|
|
7600259 |
Critical period protection
Systems and methods for protecting a computer during a period of increased vulnerability. In one implementation, a method for protecting a computer is provided. The method includes monitoring a...
|
|
|
7600255 |
Preventing network denial of service attacks using an accumulated proof-of-work approach
Accumulated proof-of-work approaches for protecting network resources against denial-of-service attacks are disclosed. A client computer or other requester is required to perform work, such as...
|
|
|
7596807 |
Method and system for reducing scope of self-propagating attack code in network
Technique for protecting a communications network, such a computer network, from attack such as self-propagating code violations of security policies, in which the network is divided into...
|
|
|
7596227 |
System method and model for maintaining device integrity and security among intermittently connected interoperating devices
System, device, method, and computer program and computer program products for providing communicating between devices having similar or dissimilar characteristics and facilitating seamless...
|
|
|
7596808 |
Zero hop algorithm for network threat identification and mitigation
A method, system, apparatus, and computer-readable medium to enable a set of security device interfaces within a broadcast domain to identify and mitigate attacks. For each address of a device...
|
|
|
7594273 |
Network security system having a device profiler communicatively coupled to a traffic monitor
A system and method for providing distributed security of a network. Several device profilers are placed at different locations of a network to assess vulnerabilities from different perspectives....
|
|
|
7594014 |
Abnormality detection system, abnormality management apparatus, abnormality management method, probe and program
An abnormality management apparatus, connected via a network to a plurality of probes disposed at arbitrary positions in the network, comprises an abnormality level reception unit that receives...
|
|
|
7594266 |
Data security and intrusion detection
Systems and methods are provided for the detection and prevention of intrusions in data at rest systems such as file systems and web servers. Item requests are examined to determine if the request...
|
|
|
7594263 |
Operating a communication network through use of blocking measures for responding to communication traffic anomalies
A communication network is operated by detecting an anomaly in the communication traffic at a plurality of nodes in a communication network. A first blocking measure A is independently applied at...
|
|
|
7594272 |
Detecting malicious software through file group behavior
A malicious software detection module (MSDM) detects worms and other malicious software. The MSDM executes on a computer system connected to a network. The MSDM monitors a storage device of the...
|
|
|
7594270 |
Threat scoring system and method for intrusion detection security networks
Embodiments of the invention provide a security expert system (SES) that automates intrusion detection analysis and threat discovery that can use fuzzy logic and forward-chaining inference engines...
|
|
|
7594269 |
Platform-based identification of host software circumvention
Hardware correlation of software performance statistics. Software may gather data relating to performance of a hardware resource. A hardware component of the system of the hardware resource may...
|
|
|
7594268 |
Preventing network discovery of a system services configuration
Techniques are provided for preventing network discovery of a system services configuration. Preventing network discovery of a host system services configuration includes receiving a request from a...
|
|
|
7594267 |
Stateful distributed event processing and adaptive security
The invention provides method and apparatus for maintaining a networked computer system including first and second nodes and an event processing server, the method comprising the first and second...
|
|
|
7591016 |
System and method for scanning memory for pestware offset signatures
Systems and methods for managing pestware processes on a protected computer are described. In one implementation, a reference point in the executable memory that is associated with a process...
|
|
|
7590113 |
Method and apparatus for generating a reconnaissance index
A method and apparatus for generating a reconnaissance index for a communications network is described. In one embodiment, scan detection data is initially received. A number of scan flows and a...
|
|
|
7590813 |
Cache scanning system and method
A method includes stalling a cache flush instruction to flush a cache; determining that the cache comprises a file that has been infected with malicious code, and terminating the cache flush...
|
|
|
7590870 |
Physical presence determination in a trusted platform
A computer system is presented which provides a trusted platform by which operations can be performed with an increased level trust and confidence. The basis of trust for the computer system is...
|
|
|
7590834 |
Method and apparatus for tracking boot history
A computer determines whether it has been booted from a hard disk drive or from an alternate source (e.g., a floppy drive or portable memory) that entails a higher risk of importing a virus into...
|
|
|
7590880 |
Circuitry and method for detecting and protecting against over-clocking attacks
The present invention is directed to circuitry for detecting and protecting against over-clocking attacks on hardware modules. The circuitry preferably comprises a test signal, a delay path for...
|
|
|
7591004 |
Using trusted communication channel to combat user name/password theft
A technique for defining a system with enhanced trust is disclosed, in which an immediate contact is made with the user on the enhanced trust system when a compromise is first detected. The service...
|
|
|
7587763 |
Systems and methods for detecting a security breach in a computer system
The present invention provides systems and methods for applying hard-real-time capabilities in software to software security. For example, the systems and methods of the present invention allow a...
|
|
|
7587765 |
Automatic virus fix
A client computer is connected via a network to an anti-virus server. A signal from the anti-virus server notifies the client computer that an anti-virus needs to be immediately downloaded from the...
|
|
|
7587764 |
Cryptic information and behavior generation for competitive environments
An invention was developed to improve the performance and survivability of units in a competitive environment. Cryptic Command, Control, and Planning, and Management increases to apparent...
|
|
|
7587761 |
Adaptive defense against various network attacks
An apparatus for optimizing a filter based on detected attacks on a data network includes an estimation means and an optimization means. The estimation means operates when a detector detects an...
|
|
|
7587762 |
Intrusion detection system and network flow director method
A system and related methods are disclosed for detecting the occurrence of an intrusion attack. A network device, such a probe, monitors traffic on a first network and converts the traffic to a...
|
|
|
7587724 |
Kernel validation layer
Systems and method of computer security are provided. In one implementation, a method is provided. The method includes monitoring incoming kernel mode calls and identifying a kernel mode call to...
|
|
|
7584509 |
Inhibiting software tampering
Tampering with pieces of software is inhibited. The obfuscation of a software image so as to becloud the comprehension of hackers in reverse engineering pieces of software comprising the software...
|
|
|
7584507 |
Architecture, systems and methods to detect efficiently DoS and DDoS attacks for large scale internet
The present invention efficiently detects various DDoS attacks for large scale Internet with the temporal correlation of traffic flows on the two directions of a single link, the spatial...
|
|
|
7581250 |
System, computer program product and method of selecting sectors of a hard disk on which to perform a virus scan
A system, computer program product and method of selecting sectors of a disk on which to perform a virus scan are provided. Initially, all data in all sectors of a disk is scanned for viruses....
|
|
|
7581249 |
Distributed intrusion response system
A system and method to respond to intrusions detected on a network system including attached functions and a network infrastructure. The system includes means for receiving from an intrusion...
|
|
|
7577998 |
Method of detecting critical file changes
The present invention is used to monitor a user specified set of files for successful attempts to change the content. Templates are used to monitor user specified directories (with exclusion rules)...
|
|
|
7574740 |
Method and system for intrusion detection in a computer network
An intrusion detection system for detecting intrusion events in a computer network and assessing the vulnerability of the network components to the detected events. The intrusion detection system...
|
|
|
7574743 |
Method for ensuring security, data storage apparatus, security ensuring server, and storage medium storing program for the same
A method for ensuring security and a data storage apparatus that enable an efficient security check on a notebook PC or like that are taken outside are provided. By executing a program that is read...
|
|
|
7574741 |
Method and system for preventing operating system detection
A method and system for preventing the detection of an operating system by an intruder, the operating system installed on a host in a network, is provided. The intruder transmits a network probe...
|
|
|
7571478 |
Method of and system for detecting an anomalous operation of a computer system
A real-time approach for detecting aberrant modes of system behavior induced by abnormal and unauthorized system activities that are indicative of an intrusive, undesired access of the system. This...
|
|
|
7571482 |
Automated rootkit detector
Embodiments of a RootKit detector are directed to identifying a RootKit on a computer that is designed to conceal malware. Aspects of the RootKit detector leverage services provided by kernel...
|
|
|
7571477 |
Real-time network attack pattern detection system for unknown network attack and method thereof
In a real-time network attack pattern detection system and method, a common pattern is detected in real time from packets, which are suspected to be a network attack such as Worm, to effectively...
|
|
|
7571319 |
Validating inbound messages
A system and method for verifying messages. The method may include the steps of receiving an inbound message and characterizing the inbound message by analyzing a latent cryptographic identifier in...
|
|
|
7568229 |
Real-time training for a computer code intrusion detection system
Systems, methods, and computer-readable media for training a computer code intrusion detection system in real time. A method embodiment of the present invention comprises the steps of observing (...
|
|
|
7568228 |
Intrusion detection in data processing systems
Described is apparatus for testing an intrusion detection system in a data processing system. The apparatus comprises an attack generator for generating attack traffic on a communications path in...
|
|
|
7568230 |
System for selective disablement and locking out of computer system objects
A method for disabling a process in a computer, particularly including processes such as viruses, spyware, adware, and malware generally. A file object (file or folder) is identified in the...
|
|
|
7568233 |
Detecting malicious software through process dump scanning
An executable file containing malicious software can be packed using a packer to make the software difficult to detect. The executable file is loaded into the computer's memory and executed as a...
|
|
|
7568232 |
Malicious access-detecting apparatus, malicious access-detecting method, malicious access-detecting program, and distributed denial-of-service attack-detecting apparatus
A malicious access-detecting apparatus which is cable of grasping the whole aspect of an attack which can occur, before it actually occurs. A monitoring information-collecting section collects...
|
|
|
7565696 |
Synchronizing network security devices within a network security system
Clocks used by network security devices can be synchronized by a network security system. In one embodiment, the synchronization can include the network security system receiving a first stream of...
|
|
|
7565695 |
System and method for directly accessing data from a data storage medium
Systems and methods for scanning files for pestware on a protected computer are described. In one variation, locations of each of a plurality of files in a file storage device of the protected...
|
|
|
7565693 |
Network intrusion detection and prevention system and method thereof
The present invention relates to a network intrusion detection and prevention system. The system includes: a signature based detecting device; an anomaly behavior based detecting device; and a new...
|
|
|
7565686 |
Preventing unauthorized loading of late binding code into a process
A late binding code manager prevents the unauthorized loading of late binding code into a process. The late binding code manager detects an attempt to load late binding code into a process's...
|