-
1.发明申请Methods and Systems for Screening Input Strings Intended for Use by Web Servers 失效用于筛选要由Web服务器使用的输入字符串的方法和系统公开(公告)号:US20060117006A1
公开(公告)日:2006-06-01
申请号:US11275920
申请日:2006-02-03
申请人: Michael Howard , Vikas Malhotra
发明人: Michael Howard , Vikas Malhotra
IPC分类号: G06F17/30
CPC分类号: H04L63/168 , G06F21/554 , H04L63/1416
摘要: Methods and systems of screening input strings that are intended for use by a Web server are described. In the described embodiment, an attack pattern is determined that can be used to attack a Web server. A search pattern is defined that can be used to detect the attack pattern. The search pattern is defined in a flexible, extensible manner that permits variability among its constituent parts. An input string that is intended for use by a Web server is received and evaluated using the search pattern to ascertain whether the attack pattern is present. If an attack pattern is found that matches the search pattern, then a remedial action is implemented.
摘要翻译: 描述用于筛选要由Web服务器使用的输入字符串的方法和系统。 在描述的实施例中,确定可用于攻击Web服务器的攻击模式。 定义了可用于检测攻击模式的搜索模式。 搜索模式以灵活,可扩展的方式定义,允许其组成部分之间的变化。 使用搜索模式接收和评估要由Web服务器使用的输入字符串,以确定攻击模式是否存在。 如果发现与搜索模式匹配的攻击模式,则执行补救措施。
-
公开(公告)号:US09135460B2
公开(公告)日:2015-09-15
申请号:US13334360
申请日:2011-12-22
申请人: Jonathan Birch , Amit Date , Daniel Jump , Vikas Malhotra , Bradley Albrecht , Ali Deniz Demircioglu
发明人: Jonathan Birch , Amit Date , Daniel Jump , Vikas Malhotra , Bradley Albrecht , Ali Deniz Demircioglu
CPC分类号: G06F21/6209 , H04L63/08
摘要: Techniques to store secret information for global data centers securely may provide a front end service for a back end data store. The front end service may be responsible for deployment, upgrade, and disaster recovery aspects, and so forth, of data center maintenance. Data centers may access data and data-related services from the back end data store through the front end service. Secrets that are needed to access secure data may be stored on behalf of the data centers without providing the secrets to the data centers.
摘要翻译: 为安全地存储全球数据中心的秘密信息的技术可以为后端数据存储提供前端服务。 前端服务可能负责数据中心维护的部署,升级和灾难恢复等方面。 数据中心可以通过前端服务从后端数据存储区访问数据和与数据有关的服务。 访问安全数据所需的秘密可以代表数据中心存储,而不向数据中心提供秘密。
-
公开(公告)号:US09003517B2
公开(公告)日:2015-04-07
申请号:US12607074
申请日:2009-10-28
申请人: Vikas Malhotra , Benjamin E. Canning , Daniel B. Jump , David C. LeBlanc , Benjamen E. Ross , James Campbell , Brian Carver , Joshua Pollock
发明人: Vikas Malhotra , Benjamin E. Canning , Daniel B. Jump , David C. LeBlanc , Benjamen E. Ross , James Campbell , Brian Carver , Joshua Pollock
CPC分类号: G06F21/53 , G06F21/566 , G06F21/604 , G06F21/629 , G06F2221/033 , G06F2221/2149
摘要: Architecture that provides a secure environment in which data (e.g., code, instructions, files, images, etc.) can be opened and run by a client application. Once opened the data can be viewed (in a “protected view”) by the user without incurring risk to other client processing and systems. Accordingly, the architecture mitigates malicious attacks by enabling users to preview untrusted and potentially harmful data (e.g., files) in a low risk manner. Files opened in the protected view are isolated from accessing key resources on the client computer and provides the user a safer way to read files that can contain dangerous content. The protected view also provides a seamless user experience. The user is unaware that the client is operating on data in a different mode and allows for the reduction of security prompts.
摘要翻译: 提供安全环境的架构,其中可以由客户端应用程序打开和运行数据(例如,代码,指令,文件,图像等)。 一旦打开,用户可以查看(在“受保护的视图”)中的数据,而不会对其他客户端处理和系统造成风险。 因此,该架构通过使用户能够以低风险的方式来预览不可信和潜在的有害数据(例如,文件)来减轻恶意攻击。 在受保护视图中打开的文件与访问客户端计算机上的密钥资源是隔离的,并为用户提供了一种更安全的方式来读取可能包含危险内容的文件。 受保护的视图还提供无缝的用户体验。 用户不知道客户端以不同的模式操作数据,并允许减少安全提示。
-
公开(公告)号:US20110010923A1
公开(公告)日:2011-01-20
申请号:US12504739
申请日:2009-07-17
申请人: JAMES CHARLES LESLIE GUARINO , JAMES W. KENDALL , ALAN S. LUCAS , VIKAS MALHOTRA , KEITH ALLEN SNYDER , JOHN J. VONDERHAAR
发明人: JAMES CHARLES LESLIE GUARINO , JAMES W. KENDALL , ALAN S. LUCAS , VIKAS MALHOTRA , KEITH ALLEN SNYDER , JOHN J. VONDERHAAR
IPC分类号: B23P17/00
摘要: A method of making an appliance door includes inserting a door pan into a fixture having first and second forming molds. An inner door liner is placed over the door pan. The first and second forming molds are pressed together. A mold cavity is formed between the door pan and the inner door liner. An insulative material is injected into the mold cavity defined by the space between the door pan and the inner door liner. The inner door liner is secured to the door pan to form a base door. A removable decorative exterior skin is extended over the base door.
摘要翻译: 制造器具门的方法包括将门盘插入具有第一和第二成形模具的固定装置中。 内门衬板放置在门盘上。 将第一和第二成型模压在一起。 在门盘和内门衬套之间形成模腔。 将绝缘材料注入由门盘和内门衬套之间的空间限定的模腔中。 内门衬板固定在门盘上以形成底座门。 可移动的装饰外观皮肤延伸到基座上。
-
5.发明授权Methods and systems for screening input strings intended for use by Web servers 失效筛选Web服务器使用的输入字符串的方法和系统公开(公告)号:US07197769B2
公开(公告)日:2007-03-27
申请号:US11275920
申请日:2006-02-03
申请人: Michael Howard , Vikas Malhotra
发明人: Michael Howard , Vikas Malhotra
CPC分类号: H04L63/168 , G06F21/554 , H04L63/1416
摘要: Methods and systems of screening input strings that are intended for use by a Web server are described. In the described embodiment, an attack pattern is determined that can be used to attack a Web server. A search pattern is defined that can be used to detect the attack pattern. The search pattern is defined in a flexible, extensible manner that permits variability among its constituent parts. An input string that is intended for use by a Web server is received and evaluated using the search pattern to ascertain whether the attack pattern is present. If an attack pattern is found that matches the search pattern, then a remedial action is implemented.
摘要翻译: 描述用于筛选要由Web服务器使用的输入字符串的方法和系统。 在描述的实施例中,确定可用于攻击Web服务器的攻击模式。 定义了可用于检测攻击模式的搜索模式。 搜索模式以灵活,可扩展的方式定义,允许其组成部分之间的变化。 使用搜索模式接收和评估要由Web服务器使用的输入字符串,以确定攻击模式是否存在。 如果发现与搜索模式匹配的攻击模式,则执行补救措施。
-
公开(公告)号:US09310123B2
公开(公告)日:2016-04-12
申请号:US13479915
申请日:2012-05-24
申请人: James Charles Leslie Guarino , James W. Kendall , Alan S. Lucas , Vikas Malhotra , Keith Allen Snyder , John J. VonderHaar
发明人: James Charles Leslie Guarino , James W. Kendall , Alan S. Lucas , Vikas Malhotra , Keith Allen Snyder , John J. VonderHaar
摘要: A method of making an appliance door includes inserting a door pan into a fixture having first and second forming molds, which are pressed together. An inner door liner is placed over the door pan and secured thereto to form a base door. A mold cavity is formed between the door pan and the inner door liner. An insulative material is injected into the mold cavity defined by the space between the door pan and the inner door liner. A removable decorative exterior skin is extended over the base door. A support frame and a plurality of utility lines are provided. An insulative material contacts the support frame. A base door is formed by an inner door liner secured to the insulative material and the support frame.
摘要翻译: 制造器具门的方法包括将门盘插入具有被压在一起的第一和第二成形模具的固定器中。 将内门衬套放置在门盘上并固定在其上以形成底座门。 在门盘和内门衬套之间形成模腔。 将绝缘材料注入由门盘和内门衬套之间的空间限定的模腔中。 可移动的装饰外观皮肤延伸到基座上。 提供支撑框架和多条公用设施线路。 绝缘材料接触支架。 基门由固定在绝缘材料和支撑框架上的内门衬垫形成。
-
公开(公告)号:US08640215B2
公开(公告)日:2014-01-28
申请号:US11690631
申请日:2007-03-23
IPC分类号: H04L29/06
CPC分类号: G06F21/604 , G06F2221/2141
摘要: A secure web hosting system is provided. In various embodiments, the secure web hosting system identifies an application that is to be loaded, creates a security token that is unique to the computer system and based on a name of the identified application, receives a request to load the identified application, and creates a process in which to load the identified application, the process having security attributes associated with the created security token. In various embodiments, the secure web hosting system includes an isolation service component that creates a security token based on an application name of an application identified by the configuration file.
摘要翻译: 提供安全的网络托管系统。 在各种实施例中,安全网络托管系统识别要加载的应用,创建对计算机系统唯一的安全令牌,并且基于所识别的应用的名称,接收加载所识别的应用的请求,并创建 加载所识别的应用的过程,该过程具有与所创建的安全令牌相关联的安全属性。 在各种实施例中,安全web托管系统包括基于由配置文件标识的应用的应用名称来创建安全令牌的隔离服务组件。
-
公开(公告)号:US20110099609A1
公开(公告)日:2011-04-28
申请号:US12607074
申请日:2009-10-28
申请人: Vikas Malhotra , Benjamin E. Canning , Daniel B. Jump , David C. LeBlanc , Benjamen E. Ross , James Campbell , Brian Carver , Joshua Pollock
发明人: Vikas Malhotra , Benjamin E. Canning , Daniel B. Jump , David C. LeBlanc , Benjamen E. Ross , James Campbell , Brian Carver , Joshua Pollock
CPC分类号: G06F21/53 , G06F21/566 , G06F21/604 , G06F21/629 , G06F2221/033 , G06F2221/2149
摘要: Architecture that provides a secure environment in which data (e.g., code, instructions, files, images, etc.) can be opened and run by a client application. Once opened the data can be viewed (in a “protected view”) by the user without incurring risk to other client processing and systems. Accordingly, the architecture mitigates malicious attacks by enabling users to preview untrusted and potentially harmful data (e.g., files) in a low risk manner. Files opened in the protected view are isolated from accessing key resources on the client computer and provides the user a safer way to read files that can contain dangerous content. The protected view also provides a seamless user experience. The user is unaware that the client is operating on data in a different mode and allows for the reduction of security prompts.
摘要翻译: 提供安全环境的架构,其中可以由客户端应用程序打开和运行数据(例如,代码,指令,文件,图像等)。 一旦打开,用户可以查看(在“受保护的视图”)中的数据,而不会对其他客户端处理和系统造成风险。 因此,该架构通过使用户能够以低风险的方式来预览不可信和潜在的有害数据(例如,文件)来减轻恶意攻击。 在受保护视图中打开的文件与访问客户端计算机上的密钥资源是隔离的,并为用户提供了一种更安全的方式来读取可能包含危险内容的文件。 受保护的视图还提供无缝的用户体验。 用户不知道客户端以不同的模式操作数据,并允许减少安全提示。
-
公开(公告)号:US20080235790A1
公开(公告)日:2008-09-25
申请号:US11690631
申请日:2007-03-23
IPC分类号: G06F7/04
CPC分类号: G06F21/604 , G06F2221/2141
摘要: A secure web hosting system is provided. In various embodiments, the secure web hosting system identifies an application that is to be loaded, creates a security token that is unique to the computer system and based on a name of the identified application, receives a request to load the identified application, and creates a process in which to load the identified application, the process having security attributes associated with the created security token. In various embodiments, the secure web hosting system includes an isolation service component that creates a security token based on an application name of an application identified by the configuration file.
摘要翻译: 提供安全的网络托管系统。 在各种实施例中,安全网络托管系统识别要加载的应用,创建对于计算机系统是唯一的安全令牌,并且基于所标识的应用的名称,接收加载所识别的应用的请求,并创建 加载所识别的应用的过程,该过程具有与所创建的安全令牌相关联的安全属性。 在各种实施例中,安全web托管系统包括基于由配置文件标识的应用的应用名称来创建安全令牌的隔离服务组件。
-
公开(公告)号:US20130167200A1
公开(公告)日:2013-06-27
申请号:US13334360
申请日:2011-12-22
申请人: Jonathan Birch , Amit Date , Daniel Jump , Vikas Malhotra , Bradley Albrecht , Ali Deniz Demircioglu
发明人: Jonathan Birch , Amit Date , Daniel Jump , Vikas Malhotra , Bradley Albrecht , Ali Deniz Demircioglu
CPC分类号: G06F21/6209 , H04L63/08
摘要: Techniques to store secret information for global data centers securely are described. Various embodiments may provide a front end service for a back end data store. The front end service may be responsible for deployment, upgrade, and disaster recovery aspects, and so forth, of data center maintenance. Data centers may access data and data-related services from the back end data store through the front end service. Secrets that are needed to access secure data may be stored on behalf of the data centers without providing the secrets to the data centers. Other embodiments are described and claimed.
摘要翻译: 描述了安全地存储全局数据中心的秘密信息的技术。 各种实施例可以为后端数据存储提供前端服务。 前端服务可能负责数据中心维护的部署,升级和灾难恢复等方面。 数据中心可以通过前端服务从后端数据存储区访问数据和与数据有关的服务。 访问安全数据所需的秘密可以代表数据中心存储,而不向数据中心提供秘密。 描述和要求保护其他实施例。
-
-
-
-
-
-
-
-
-
搜索结果
12 条记录 (耗时 0.128 秒)
