公开(公告)号：US08578499B1

公开(公告)日：2013-11-05

申请号：US13279746

申请日：2011-10-24

Applicant: Joey Zhu ,  Jialai Zhu ,  Kan Dong ,  Xiaodong Huang

Inventor： Joey Zhu ,  Jialai Zhu ,  Kan Dong ,  Xiaodong Huang

IPC: G06F11/00 ,  G06F7/04 ,  G06F11/30 ,  H04L29/06

CPC classification number: H04L67/02 ,  G06F21/567 ,  G06F2221/2115 ,  G06F2221/2119 ,  H04L63/1408 ,  H04L63/1433 ,  H04L63/168

Abstract: A script-based scan engine is embedded in a webpage requested by a client computer from a web server. The script-based scan engine may be embedded in the webpage by injecting the script-based scan engine in a header of the webpage in a computer security device between the client computer and the web server, or by integrating the script-based scan engine in the webpage as a library. The script-based scan engine executes in the client computer when the webpage is received by the client computer. The script-based scan engine scans the webpage for web threats, which may include malicious codes, exploits, and phishing, for example. The webpage is allowed to be rendered by a web browser in the client computer when the webpage is deemed safe by the script-based scan engine.

Abstract translation: 基于脚本的扫描引擎嵌入到客户端计算机从Web服务器请求的网页中。 基于脚本的扫描引擎可以嵌入到网页中，将基于脚本的扫描引擎注入到在客户计算机和web服务器之间的计算机安全设备中的网页的头部中，或者通过将基于脚本的扫描引擎集成在 网页作为图书馆。 当客户端计算机接收到网页时，基于脚本的扫描引擎在客户端计算机中执行。 基于脚本的扫描引擎扫描网页以进行Web威胁，例如可能包括恶意代码，漏洞和网络钓鱼。 当网页被基于脚本的扫描引擎视为安全时，该网页被允许在客户端计算机中的网络浏览器呈现。

公开(公告)号：US09049222B1

公开(公告)日：2015-06-02

申请号：US13365161

申请日：2012-02-02

Applicant: Juan He ,  Jialai Zhu ,  Xuewen Zhu ,  Xiaochuan Wan

Inventor： Juan He ,  Jialai Zhu ,  Xuewen Zhu ,  Xiaochuan Wan

IPC: H04L29/06 ,  G06F21/56 ,  G06F21/57

CPC classification number: H04L63/1416 ,  G06F21/566 ,  G06F21/577 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/145

Abstract: Cross-site scripting vulnerabilities in a Web browser that may lead to malware execution on a computing device are reduced. The specific vulnerabilities arise from HTML-based e-mails using e-mail service providers (e.g., Hotmail, Gmail, Yahoo) that have unknown or malformed HTML elements and Javascripts. These unknown elements may execute in a browser and cause harm to the computing device. To prevent this, the e-mail is parsed to create a DOM tree. The DOM tree is filtered using a normal element filter. The modified DOM tree is filtered a second time using a script analyzer filter to isolate potentially harmful HTML and Javascript elements. These elements are then emulated to determine which of them are in fact malicious. These malicious elements are then prevented from executing, for example, by preventing the e-mail recipient from opening the e-mail in the browser.

Abstract translation: Web浏览器中可能导致计算设备上恶意软件执行的跨站点脚本漏洞减少。 特定的漏洞源自使用电子邮件服务提供商（例如Hotmail，Gmail，Yahoo）的HTML电子邮件，其中包含未知或格式错误的HTML元素和Javascript。 这些未知元素可能在浏览器中执行，并对计算设备造成危害。 为了防止这种情况，电子邮件被解析为创建一个DOM树。 使用普通元素过滤器过滤DOM树。 修改后的DOM树第二次使用脚本分析器过滤器进行过滤，以隔离可能有害的HTML和Javascript元素。 然后将这些元素模拟以确定其中哪些实际上是恶意的。 然后，例如通过防止电子邮件接收者在浏览器中打开电子邮件来防止这些恶意元素的执行。

公开(公告)号：US08874789B1

公开(公告)日：2014-10-28

申请号：US11864379

申请日：2007-09-28

Applicant: Jialai Zhu

Inventor： Jialai Zhu

IPC: G06F15/173

CPC classification number: H04L45/00

Abstract: An application-based routing arrangement for routing a plurality of data packets associated with a set of applications partially through a network is provided. The application based policy includes the first set of rules associated with the first application of the set of applications, which includes the first routing specification for routing the first set of data packets. The application routing table is configured to dynamically update the first set of parameters when the first application is connected to the network. The application routing table also includes a hook module to configure the matching of the first data packet associated with the first application against the application routing table to determine the first routing specification using the first routing specification if a match is found.

Abstract translation: 提供了用于通过网络部分地路由与一组应用相关联的多个数据分组的基于应用的路由布置。 基于应用的策略包括与该组应用的第一应用相关联的第一组规则，其包括用于路由第一组数据分组的第一路由规范。 应用路由表被配置为当第一应用连接到网络时动态地更新第一组参数。 应用路由表还包括挂钩模块，用于配置与第一应用相关联的第一数据分组与应用路由表的匹配，以便如果发现匹配，则使用第一路由规范来确定第一路由规范。

公开(公告)号：US07996879B1

公开(公告)日：2011-08-09

申请号：US11773045

申请日：2007-07-03

Applicant: Chao Fang ,  Yan Gu ,  Jialai Zhu

Inventor： Chao Fang ,  Yan Gu ,  Jialai Zhu

IPC: G06F17/00 ,  G06F7/04

CPC classification number: H04L63/20 ,  G06F21/35 ,  H04L63/0428 ,  H04L63/08 ,  H04L67/14 ,  H04L67/141 ,  H04L67/34 ,  H04L69/14 ,  H04W4/00

Abstract: A method for facilitating connection between an entity's network and a first electronic device is provided. The method includes receiving, using an RFID (radio frequency identification) reader associated with the first electronic device, a first file from an RFID tag, the RFID tag being provided by the entity. The method also includes obtaining connection information from the first file, the connection information including at least one of a security policy and network configuration. The method further includes enabling a user to attempt to log in via the first electronic device, using the connection information, into the network, wherein the log in is attempted using a different connection modality than that employed to receive the first file from the RFID tag.

Abstract translation: 提供了一种用于促进实体的网络和第一电子设备之间的连接的方法。 该方法包括从RFID标签接收使用与第一电子设备相关联的RFID（射频识别）阅读器，RFID标签由该实体提供。 该方法还包括从第一文件获取连接信息，连接信息包括安全策略和网络配置中的至少一个。 该方法还包括使得用户能够尝试通过第一电子设备使用连接信息登录到网络中，其中尝试使用与从RFID标签接收第一文件所采用的不同的连接模式进行登录 。

公开(公告)号：US08826452B1

公开(公告)日：2014-09-02

申请号：US13352634

申请日：2012-01-18

Applicant: Juan He ,  Dibin Tang ,  Jialai Zhu ,  Laiqiang Ding

Inventor： Juan He ,  Dibin Tang ,  Jialai Zhu ,  Laiqiang Ding

IPC: G06F7/04

CPC classification number: G06F21/84

Abstract: Disclosed are methods and apparatus for protecting computers from data loss involving screen capture. Screen capture events are detected in a computer. Documents that are visible on a computer screen are identified. Files of the visible documents are identified and scanned for sensitive data to determine whether the screen capture events are targeting contents of sensitive documents.

Abstract translation: 公开了用于保护计算机免遭涉及屏幕捕获的数据丢失的方法和装置。 在计算机中检测到屏幕捕获事件。 识别在计算机屏幕上可见的文档。 对可见文件的文件进行识别并扫描敏感数据，以确定屏幕捕获事件是否针对敏感文档的内容。