-
1.发明授权Intra stack frame randomization for protecting applications against code injection attack 有权内部堆栈帧随机化,用于保护应用程序免遭代码注入攻击公开(公告)号:US09218467B2
公开(公告)日:2015-12-22
申请号:US13905122
申请日:2013-05-29
Applicant: Raytheon BBN Technologies, Corp.
Inventor: David Matthews , Robert Martz
CPC classification number: G06F21/125 , G06F12/14 , G06F12/1441 , G06F12/16 , G06F21/14 , G06F21/52 , G06F21/54
Abstract: A method of randomizing locations of variables in a stack includes: identifying a plurality of stack locations corresponding to a plurality of variables; shuffling the stack locations of the variables to produce shuffled stack locations; and updating the stack locations of the variables with the shuffled stack locations.
Abstract translation: 随机化堆栈中的变量的位置的方法包括:识别对应于多个变量的多个堆栈位置; 混合变量的堆栈位置以产生混洗堆栈位置; 并使用混洗堆栈位置更新变量的堆栈位置。
-
公开(公告)号:US09213807B2
公开(公告)日:2015-12-15
申请号:US14018234
申请日:2013-09-04
Applicant: Raytheon BBN Technologies, Corp.
Inventor: Robert Martz , David Matthews , Joshua Edmison , Greg Vorsanger
CPC classification number: G06F21/00 , G06F21/52 , G06F21/554
Abstract: A method for detecting foreign code injected into a computer system including a processor and memory, the processor being configured to execute instructions stored in the memory, includes: detecting, on the computer system, an illegal instruction error; recording the illegal instruction error; determining whether a threshold condition is met; and generating an alert if the threshold condition is met.
Abstract translation: 一种用于检测注入到包括处理器和存储器的计算机系统中的外部代码的方法,所述处理器被配置为执行存储在存储器中的指令,包括:在计算机系统上检测非法指令错误; 记录非法指令错误; 确定是否满足阈值条件; 并且如果满足阈值条件则产生警报。
-
公开(公告)号:US09158584B2
公开(公告)日:2015-10-13
申请号:US13856102
申请日:2013-04-03
Applicant: RAYTHEON BBN TECHNOLOGIES CORP.
Inventor: Robert Martz , David Matthews , Joshua Edmison
CPC classification number: G06F9/50 , G06F9/30 , G06F9/5044
Abstract: A method for distributing execution of a computer program to a plurality of hardware architectures of different types including: analyzing the computer program to identify a plurality of execution boundaries; selecting one or more execution boundaries from the plurality of execution boundaries; linking the computer program to the selected one or more execution boundaries; executing the computer program with linked execution boundaries; saving a hardware agnostic state of the execution of the computer program, when the execution encounters a boundary from the selected one or more execution boundaries; and transmitting the hardware agnostic state to a remote hardware architecture to be executed on the remote hardware architecture, responsive to the hardware agnostic state.
Abstract translation: 一种用于将计算机程序的执行分配给多种不同类型的硬件架构的方法,包括:分析计算机程序以识别多个执行边界; 从所述多个执行边界中选择一个或多个执行边界; 将所述计算机程序链接到所选择的一个或多个执行边界; 执行具有链接执行边界的计算机程序; 当执行从所选择的一个或多个执行边界遇到边界时,保存执行计算机程序的硬件不可知状态; 并且响应于硬件不可知状态,将硬件不可知状态发送到远程硬件架构以在远程硬件体系结构上执行。
-
公开(公告)号:US20140304708A1
公开(公告)日:2014-10-09
申请号:US13856102
申请日:2013-04-03
Applicant: RAYTHEON BBN TECHNOLOGIES CORP.
Inventor: Robert Martz , David Matthews , Joshua Edmison
IPC: G06F9/30
CPC classification number: G06F9/50 , G06F9/30 , G06F9/5044
Abstract: A method for distributing execution of a computer program to a plurality of hardware architectures of different types including: analyzing the computer program to identify a plurality of execution boundaries; selecting one or more execution boundaries from the plurality of execution boundaries; linking the computer program to the selected one or more execution boundaries; executing the computer program with linked execution boundaries; saving a hardware agnostic state of the execution of the computer program, when the execution encounters a boundary from the selected one or more execution boundaries; and transmitting the hardware agnostic state to a remote hardware architecture to be executed on the remote hardware architecture, responsive to the hardware agnostic state.
Abstract translation: 一种用于将计算机程序的执行分配给多种不同类型的硬件架构的方法,包括:分析计算机程序以识别多个执行边界; 从所述多个执行边界中选择一个或多个执行边界; 将所述计算机程序链接到所选择的一个或多个执行边界; 执行具有链接执行边界的计算机程序; 当执行从所选择的一个或多个执行边界遇到边界时,保存执行计算机程序的硬件不可知状态; 并且响应于硬件不可知状态,将硬件不可知状态发送到远程硬件架构以在远程硬件架构上执行。
-
5.发明授权Synthetic processing diversity with multiple architectures within a homogeneous processing environment 有权在均匀处理环境中具有多种架构的合成处理多样性公开(公告)号:US09218483B2
公开(公告)日:2015-12-22
申请号:US13939061
申请日:2013-07-10
Applicant: Raytheon BBN Technologies, Corp.
Inventor: David Matthews , Robert Martz
CPC classification number: G06F21/52
Abstract: A method of increasing processing diversity on a computer system includes: loading a plurality of instruction streams, each of the plurality of instruction streams being equivalent; executing, in a context, a first stream of the plurality of instruction streams; stopping execution of the first stream at a first location of the first stream; and executing, in the context, a second stream of the plurality of instruction streams at a second location of the second stream, the second location corresponding to the first location of the first stream.
Abstract translation: 一种增加计算机系统上的处理分集的方法包括:加载多个指令流,所述多个指令流中的每一个等效; 在上下文中执行所述多个指令流中的第一流; 在第一流的第一位置停止第一流的执行; 以及在所述上下文中,在所述第二流的第二位置处执行所述多个指令流中的第二流,所述第二位置对应于所述第一流的所述第一位置。
-
Patent Agency Ranking
6.发明申请SYNTHETIC PROCESSING DIVERSITY WITH MULTIPLE ARCHITECTURES WITHIN A HOMOGENEOUS PROCESSING ENVIRONMENT 有权在均质加工环境中具有多种结构的合成加工多样性公开(公告)号:US20150020206A1
公开(公告)日:2015-01-15
申请号:US13939061
申请日:2013-07-10
Applicant: Raytheon BBN Technologies, Corp.
Inventor: David Matthews , Robert Martz
IPC: G06F21/62
CPC classification number: G06F21/52
Abstract: A method of increasing processing diversity on a computer system includes: loading a plurality of instruction streams, each of the plurality of instruction streams being equivalent; executing, in a context, a first stream of the plurality of instruction streams; stopping execution of the first stream at a first location of the first stream; and executing, in the context, a second stream of the plurality of instruction streams at a second location of the second stream, the second location corresponding to the first location of the first stream.
Abstract translation: 一种增加计算机系统上的处理分集的方法包括:加载多个指令流,所述多个指令流中的每一个等效; 在上下文中执行所述多个指令流中的第一流; 在第一流的第一位置停止第一流的执行; 以及在所述上下文中,在所述第二流的第二位置处执行所述多个指令流中的第二流,所述第二位置对应于所述第一流的所述第一位置。
-
7.发明申请公开(公告)号:US20150019844A1
公开(公告)日:2015-01-15
申请号:US13939064
申请日:2013-07-10
Applicant: Raytheon BBN Technologies. Corp.
Inventor: David Matthews , Robert Martz
IPC: G06F9/38
CPC classification number: G06F9/30178 , G06F9/30196 , G06F9/3851 , G06F21/52
Abstract: A method of increasing processing diversity on a computer system includes: loading a plurality of instruction streams, each of the plurality of instruction streams being equivalent; executing, in a context, a first stream of the plurality of instruction streams; stopping execution of the first stream at a first location of the first stream; and executing, in the context, a second stream of the plurality of instruction streams at a second location of the second stream, the second location corresponding to the first location of the first stream.
Abstract translation: 一种增加计算机系统上的处理分集的方法包括:加载多个指令流,所述多个指令流中的每一个等效; 在上下文中执行所述多个指令流中的第一流; 在第一流的第一位置停止第一流的执行; 以及在所述上下文中,在所述第二流的第二位置处执行所述多个指令流中的第二流,所述第二位置对应于所述第一流的所述第一位置。
-
8.发明授权公开(公告)号:US09256431B2
公开(公告)日:2016-02-09
申请号:US13939064
申请日:2013-07-10
Applicant: Raytheon BBN Technologies, Corp.
Inventor: David Matthews , Robert Martz
CPC classification number: G06F9/30178 , G06F9/30196 , G06F9/3851 , G06F21/52
Abstract: A method of increasing processing diversity on a computer system includes: loading a plurality of instruction streams, each of the plurality of instruction streams being equivalent; executing, in a context, a first stream of the plurality of instruction streams; stopping execution of the first stream at a first location of the first stream; and executing, in the context, a second stream of the plurality of instruction streams at a second location of the second stream, the second location corresponding to the first location of the first stream.
Abstract translation: 一种增加计算机系统上的处理分集的方法包括:加载多个指令流,所述多个指令流中的每一个等效; 在上下文中执行所述多个指令流中的第一流; 在第一流的第一位置停止第一流的执行; 以及在所述上下文中,在所述第二流的第二位置处执行所述多个指令流中的第二流,所述第二位置对应于所述第一流的所述第一位置。
-
公开(公告)号:US20150067409A1
公开(公告)日:2015-03-05
申请号:US14018234
申请日:2013-09-04
Applicant: Raytheon BBN Technologies, Corp.
Inventor: Robert Martz , David Matthews , Joshua Edmison , Greg Vorsanger
IPC: G06F11/07
CPC classification number: G06F21/00 , G06F21/52 , G06F21/554
Abstract: A method for detecting foreign code injected into a computer system including a processor and memory, the processor being configured to execute instructions stored in the memory, includes: detecting, on the computer system, an illegal instruction error; recording the illegal instruction error; determining whether a threshold condition is met; and generating an alert if the threshold condition is met.
Abstract translation: 一种用于检测注入到包括处理器和存储器的计算机系统中的外部代码的方法,所述处理器被配置为执行存储在存储器中的指令,包括:在计算机系统上检测非法指令错误; 记录非法指令错误; 确定是否满足阈值条件; 并且如果满足阈值条件则产生警报。
-
10.发明申请INTRA STACK FRAME RANDOMIZATION FOR PROTECTING APPLICATIONS AGAINST CODE INJECTION ATTACK 有权防止代码注入攻击应用的内部堆栈框架随机公开(公告)号:US20140359773A1
公开(公告)日:2014-12-04
申请号:US13905122
申请日:2013-05-29
Applicant: Raytheon BBN Technologies, Corp.
Inventor: David Matthews , Robert Martz
IPC: G06F21/12
CPC classification number: G06F21/125 , G06F12/14 , G06F12/1441 , G06F12/16 , G06F21/14 , G06F21/52 , G06F21/54
Abstract: A method of randomizing locations of variables in a stack includes: identifying a plurality of stack locations corresponding to a plurality of variables; shuffling the stack locations of the variables to produce shuffled stack locations; and updating the stack locations of the variables with the shuffled stack locations.
Abstract translation: 随机化堆栈中的变量的位置的方法包括:识别对应于多个变量的多个堆栈位置; 混合变量的堆栈位置以产生混洗堆栈位置; 并使用混洗堆栈位置更新变量的堆栈位置。
-
-
-
-
-
-
-
-
-
Search Results
10
records
(took 0.015 seconds)
