|
Match
|
Document |
Document Title |
|
|
7627900 |
Attack graph aggregation
Disclosed is framework for aggregating network attack graphs. A network may be represented as a dependency graph. Condition set(s), exploit set(s) and machine set(s) may be generated using...
|
|
|
7627899 |
Method and apparatus for improving user experience for legitimate traffic of a service impacted by denial of service attack
A method for isolating legitimate network traffic during a denial of service attack involves receiving a plurality of packets from a network, detecting an attack from the network on a first virtual...
|
|
|
7627898 |
Method and system for detecting infection of an operating system
A method and system for detecting that a software system has been infected by software that attempts to hide properties related to the software system is provided. A detection system identifies...
|
|
|
7627758 |
Method and system for performing a security check
An access request is transmitted from a first device to a second device causing one or more security functions to be executed on the first device. Whether to grant the access request is based on a...
|
|
|
7624450 |
System, method, and computer program product for conveying a status of a plurality of security applications
A system, method and computer program product are provided for displaying a status of a security application. A status of at least one security application is initially identified. An index is...
|
|
|
7624445 |
System for dynamic network reconfiguration and quarantine in response to threat conditions
A method, apparatus, and computer instructions for responding to a threat condition within the network data processing system. A threat condition within the network data processing system is...
|
|
|
7624422 |
System and method for security information normalization
A prevention-based network auditing system includes an audit repository storing network information gathered by a plurality of heterogeneous information sources. A semantic normalization module...
|
|
|
7624304 |
Defect detection for integers
Various techniques can be used to detect programming defects relating to the use of integers. A data structure can be created to represent ordering relationships in software instructions. Such...
|
|
|
7624111 |
Active content trust model
An active content trust model provides security in a help system. The security is provided in response to a call from a calling application to access active content. When the call is received, a...
|
|
|
7620989 |
Network testing methods and systems
Network vulnerability testing methods, systems, devices, appliances and software products generate stateful and stateless network representative of network threats. The traffic is applied to a...
|
|
|
7620988 |
Protocol identification by heuristic content analysis
A system and method are disclosed for providing network traffic identification. In one embodiment, the method comprises receiving pattern matching data; comparing the pattern matching data with a...
|
|
|
7617534 |
Detection of SYSENTER/SYSCALL hijacking
Techniques are disclosed for detecting manipulations of user-kernel transition registers (such as the SYSENTER/SYSCALL critical registers of Intel/AMD processors, respectively), and other such...
|
|
|
7617526 |
Blocking of spam e-mail at a firewall
A method of blocking spam at a firewall involves applying blocking measures for an adaptively determined duration. The blocking measure is then suspended while determining whether the spam has...
|
|
|
7614085 |
Method for the automatic setting and updating of a security policy
The invention relates to a method for creating and/or updating a security policy within a computerized system protected by at least one security package, comprising: (a) Providing at least one...
|
|
|
7610625 |
Program control system, program control method and information control program
A program control system is capable of preventing an invalid program from being downloaded to a mobile terminal. When a programmer applies for the certification and registration of a developed...
|
|
|
7607174 |
Adaptive security for portable information devices
A portable information device includes a dynamically configurable security arrangement in which operational settings are automatically and dynamically configured for either thick client or thin...
|
|
|
7607173 |
Method and apparatus for preventing rootkit installation
Call to driver load functions, including associated driver objects to be loaded, are stalled and evaluated for indications of a rootkit. When a rootkit is indicated, protective action is taken, and...
|
|
|
7607170 |
Stateful attack protection
A method for detecting an attack in a computer network includes monitoring communication traffic transmitted over connections on the network that are associated with a stateful application protocol...
|
|
|
7607010 |
System and method for network edge data protection
Disclosed are systems and methods which examine information communication streams to identify and/or eliminate malicious code, while allowing the good code to pass unaffected. Embodiments operate...
|
|
|
7603716 |
Distributed network security service
A method and apparatus to distribute a network security service is disclosed. The security software may be distributed across nodes on a network and may use a separate security device that has two...
|
|
|
7603715 |
Containment of worms
One aspect of the invention is a vulnerability detection mechanism that can detect a large class of attacks through dynamic dataflow analysis. Another aspect of the invention includes...
|
|
|
7603714 |
Method, system and computer program product for computer system vulnerability analysis and fortification
A method, system, and computer program product for the automatic detection and fixing of security vulnerabilities in both individual software components and across complex, multi-component software...
|
|
|
7603713 |
Method for accelerating hardware emulator used for malware detection and analysis
A method and system for accelerating malware emulator by using an accelerator. The accelerator allows for a potentially malicious component (i.e., process) containing dummy processes to be executed...
|
|
|
7603705 |
Methods and systems for enforcing network and computer use policy
Network and computer use policy is enforced by employing client-side systems that analyze data usage at the client in terms of what the data is, who is using the data, and the context of the data,...
|
|
|
7602903 |
Cryptography correctness detection methods and apparatuses
Methods and apparatuses are provided that can inform certain processes and/or even the user about the relative strength/weakness of cryptography services being used. In certain methods, for...
|
|
|
7600259 |
Critical period protection
Systems and methods for protecting a computer during a period of increased vulnerability. In one implementation, a method for protecting a computer is provided. The method includes monitoring a...
|
|
|
7600252 |
System method and model for social security interoperability among intermittently connected interoperating devices
System, device, method, and computer program and computer program products for providing communicating between devices having similar or dissimilar characteristics and facilitating seamless...
|
|
|
7596811 |
Methods and systems for network traffic security
The present invention is directed to methods of and systems for adaptive networking that monitors a network resource of a network. The method monitors an application performance. The method...
|
|
|
7596810 |
Apparatus and method of detecting network attack situation
Provided is an apparatus for detecting a network attack situation. The apparatus includes an alarm receiver receiving a plurality of alarms raised in a network to which the alarm receiver is...
|
|
|
7596808 |
Zero hop algorithm for network threat identification and mitigation
A method, system, apparatus, and computer-readable medium to enable a set of security device interfaces within a broadcast domain to identify and mitigate attacks. For each address of a device...
|
|
|
7594277 |
Method and system for detecting when an outgoing communication contains certain content
A method and system for detecting whether an outgoing communication contains confidential information or other target information is provided. The detection system is provided with a collection of...
|
|
|
7594273 |
Network security system having a device profiler communicatively coupled to a traffic monitor
A system and method for providing distributed security of a network. Several device profilers are placed at different locations of a network to assess vulnerabilities from different perspectives....
|
|
|
7594014 |
Abnormality detection system, abnormality management apparatus, abnormality management method, probe and program
An abnormality management apparatus, connected via a network to a plurality of probes disposed at arbitrary positions in the network, comprises an abnormality level reception unit that receives...
|
|
|
7590880 |
Circuitry and method for detecting and protecting against over-clocking attacks
The present invention is directed to circuitry for detecting and protecting against over-clocking attacks on hardware modules. The circuitry preferably comprises a test signal, a delay path for...
|
|
|
7590855 |
Steganographically authenticated packet traffic
To assist a destination/intermediary node in authenticating a communications packet as originating from a certain source node, the source node hides a cryptographically generated first special...
|
|
|
7590113 |
Method and apparatus for generating a reconnaissance index
A method and apparatus for generating a reconnaissance index for a communications network is described. In one embodiment, scan detection data is initially received. A number of scan flows and a...
|
|
|
7587761 |
Adaptive defense against various network attacks
An apparatus for optimizing a filter based on detected attacks on a data network includes an estimation means and an optimization means. The estimation means operates when a detector detects an...
|
|
|
7584508 |
Adaptive security for information devices
An information device includes a dynamically configurable security module in which operational settings are automatically and dynamically configured based on risk profile or computing capacity...
|
|
|
7584506 |
Method and apparatus for controlling packet transmission and generating packet billing data on wired and wireless network
Inventive embodiments relate to a method and apparatus for packet transmission control and packet charge data generation on wired/wireless network, especially, the apparatus can control the packet...
|
|
|
7584458 |
Source code annotation language
Techniques and tools for implementing a source code annotation language are described. In one aspect, keywords are added to a function interface to define a contract for the function independent of...
|
|
|
7581250 |
System, computer program product and method of selecting sectors of a hard disk on which to perform a virus scan
A system, computer program product and method of selecting sectors of a disk on which to perform a virus scan are provided. Initially, all data in all sectors of a disk is scanned for viruses....
|
|
|
7577994 |
Detecting local graphic password deciphering attacks
A mechanism for using a graphic password test while providing the ability for detecting attempts by programs to decipher the password for malicious attack is disclosed. An access module provides a...
|
|
|
7577991 |
Method to enhance platform firmware security for logical partition data processing systems by dynamic restriction of available external interfaces
A system and method to reduce external access to hypervisor interfaces in a computer system, thereby reducing the possibility of attacks. In a preferred embodiment, addresses for calls are used to...
|
|
|
7577623 |
Method for controlling risk in a computer security artificial neural network expert system
A computer implemented method, data processing system, and computer program product for monitoring system events and providing real-time response to security threats. System data is collected by...
|
|
|
7577424 |
Systems and methods for wireless vulnerability analysis
Security vulnerability assessment for wireless networks is provided. Systems and methods for security vulnerability assessment simulate an attack upon the wireless network, capture the response...
|
|
|
7574740 |
Method and system for intrusion detection in a computer network
An intrusion detection system for detecting intrusion events in a computer network and assessing the vulnerability of the network components to the detected events. The intrusion detection system...
|
|
|
7571482 |
Automated rootkit detector
Embodiments of a RootKit detector are directed to identifying a RootKit on a computer that is designed to conceal malware. Aspects of the RootKit detector leverage services provided by kernel...
|
|
|
7571477 |
Real-time network attack pattern detection system for unknown network attack and method thereof
In a real-time network attack pattern detection system and method, a common pattern is detected in real time from packets, which are suspected to be a network attack such as Worm, to effectively...
|
|
|
7568233 |
Detecting malicious software through process dump scanning
An executable file containing malicious software can be packed using a packer to make the software difficult to detect. The executable file is loaded into the computer's memory and executed as a...
|
|
|
7568232 |
Malicious access-detecting apparatus, malicious access-detecting method, malicious access-detecting program, and distributed denial-of-service attack-detecting apparatus
A malicious access-detecting apparatus which is cable of grasping the whole aspect of an attack which can occur, before it actually occurs. A monitoring information-collecting section collects...
|