Abstract: A real-time sequence-based anomaly detection system is disclosed. In a preferred embodiment, the intrusion detection system is incorporated as part of a software wrapper. Event abstraction in the software wrapper enables the intrusion detection system to apply generically across various computing platforms. Real-time anomaly detection is enabled through the definition of a distance matrix that defines allowable separation distances between pairs of system calls. The distance matrix indirectly specifies known sequences of system calls and can be used to determine whether a sequence of system calls in an event window represents an anomaly. Anomalies that are detected are further analyzed through levenshtein distance calculations that also rely on the contents of the distance matrix.
Type:
Grant
Filed:
May 8, 2000
Date of Patent:
May 11, 2004
Assignee:
Networks Associates Technology, Inc.
Inventors:
Douglas Kilpatrick, Mark Lee Badger, Calvin Ko
Abstract: In a probe system for monitoring and analyzing data flow and associated activities between devices connected in common to a point in a network, in the mode of operation, the probe's driver runs in a “Kernel mode” on Windows NT for analyzing in relatively low detail packets of data retrieved from the network, whereby programming is provided for operating the Kernel mode driver to monitor the rate of traffic or data packets entering an NIC card buffer, for causing the CPU to respond to an interrupt issued by the NIC everytime a data packet is received at a traffic rate below a predetermined threshold to access data packets entering the NIC card buffer, and to cause the CPU to respond to polling pulses at regular predetermined intervals to access data packets, when the traffic rate exceeds the predetermined threshold, for providing more CPU cycles to analyze the data packets.
Type:
Grant
Filed:
May 4, 2000
Date of Patent:
May 11, 2004
Assignee:
Networks Associates Technology, Inc.
Inventors:
Dominick Anthony Cafarelli, III, Daniel Hansen
Abstract: A method, apparatus and article of manufacture are provided for handling both scalar and vector components during graphics processing. To accomplish this, vertex data is received in the form of vectors after which vector operations are performed on the vector vertex data. Next, scalar operations may be executed on an output of the vector operations, thereby rendering vertex data in the form of scalars. Such scalar vertex data may then be converted to vector vertex data for performing vector operations thereon.
Type:
Grant
Filed:
January 31, 2001
Date of Patent:
May 11, 2004
Assignee:
nVidia Corporation
Inventors:
John Erik Lindholm, Simon Moy, David B. Kirk, Paolo E. Sabella
Abstract: A system, method and computer program product are provided for filtering unwanted electronic mail messages. After receiving electronic mail messages, the electronic mail messages that are unwanted are filtered utilizing a combination of techniques including: compound filters, paragraph hashing, and Bayes rules. The electronic mail messages that are filtered as being unwanted are then categorized.
Abstract: A system, method and article of manufacture are provided for computer graphics processing. First, pixel data is received including a depth-value. Thereafter, the depth-value is modified based on a depth-component of an algorithm. An operation is subsequently performed on the pixel data taking into account the modified depth-value.
Type:
Grant
Filed:
October 2, 2000
Date of Patent:
May 4, 2004
Assignee:
NVIDIA Corporation
Inventors:
Henry P. Moreton, John Erik Lindholm, Matthew N. Papakipos, Harold Robert Feldman Zatz
Abstract: A method, system and computer program for providing multilevel security to a computer network. The method comprises the step of receiving a first communication packet on at least one network interface port from an outside network. The method further includes the steps of filtering the first packet in one of at least two levels of security comprising a first level of security which examines the content information of the packet and a second level of security which examines the first packet excluding the content information of the packet. The system includes a first packet filter configured to filter its input packets by examining content information of its packets and a second packet filter configured to filter its input packets by examining the header information without examining the content information of its packets. The system further includes a third filter which is configured to forward a number of packets to one of the first and second filters, thereby providing security to the computer network.
Type:
Grant
Filed:
October 8, 1999
Date of Patent:
April 27, 2004
Assignee:
Networks Associates Technology, Inc.
Inventors:
Kevin R. Taylor, Ganesh Murugesan, Homayoon Tajalli
Abstract: A graphical user interface is provided for displaying network analysis including a window including a plurality of gauges selected from the group consisting of a first gauge for indicating a number of packets specified by the network analysis, a second gauge for indicating a network utilization specified by the network analysis, and a third gauge for indicating a number of errors specified by the network analysis.
Abstract: A method and system for updating anti-intrusion software is provided. In a preferred embodiment, a computer program product updates anti-intrusion software on a computer network which has an anti-intrusion monitor server. The anti-intrusion monitor server recognizes attacks on the computer network in accordance with attack pattern information contained in the anti-intrusion software. The computer program product includes computer code that installs modified attack pattern information onto a central anti-intrusion server, and computer code that transfers the modified attack pattern information from the central anti-intrusion server to the anti-intrusion monitor server using push technology. The result is that newly discovered attack patterns are capable of being rapidly communicated from the central anti-intrusion server to the computer network.
Abstract: A method for recovering elastomeric material such as rubber from tires comprising the steps of soaking the tires in a mixture of an oil and a volatile solvent to soften the rubber, subjecting the softened tires to shear conditions in a separator having at least two pairs of counter rotating rollers mounted one above the other. The recovered rubber can be carbonized in a microwave chamber to produce carbon and oil.
Abstract: A system, method and article of manufacture are provided for anisotropic filtering during texture sampling. A description of a region, e.g. pixel footprint in a source image, to be texture sampled is initially received. Thereafter, the region is subdivided based on the description into a plurality of samples with a predetermined shape for mapping textures onto the samples. By subdividing the region in the source image into a plurality of samples having a predetermined shape, the region may be covered by samples that may be configured to be more suitable for an underlying process such as MIP mapping, thus allowing efficient texture sampling while reducing blurring, aliasing and other visual artifacts.
Abstract: A GMR magnetic sensor is described. The sensor uses one antiferromagnetic layer for stabilizing the pinned layer and another antiferromagnetic layer for providing magnetic bias stabilization of the free layer. Both antiferromagnetic layers are made of the same material and are initialized in the same process step.
Type:
Grant
Filed:
March 14, 2001
Date of Patent:
April 13, 2004
Assignee:
International Business Machines Corporation
Abstract: A system, method, and computer program product are provided for antialiasing during rendering in a graphics pipeline. Initially, a primitive of vertex data is received in a graphics pipeline. Next, a super-sampling operation is performed on the primitive of vertex data ufilizing the graphics pipeline. Further, a multi-sampling operation is performed on the primitive of vertex data utilizing the graphics pipeline.
Abstract: A system, method and computer program product are provided for analyzing a network utilizing an agent. Initially, a signal is sent from a computer to a host controller utilizing a network. Next, a response to the signal is received from the host controller. Information is then collected relating to network traffic involving the computer based on the response. The information is subsequently sent to the host controller on a periodic basis.
Type:
Grant
Filed:
December 21, 2001
Date of Patent:
March 30, 2004
Assignee:
Networks Associates Technology, Inc.
Inventors:
Herbert V. Joiner, Ravi Verma, Praveen Raghuraman, Ken W. Elwell
Abstract: A structure is integrated into the design and manufacture of a magnetic head that allows self-generation of magnetic fields. The structure includes a conductor or conductors placed in close proximity to the read portion of a magnetic head and connected to an externally accessible connection. A high frequency signal is passed through the conductor to generate a magnetic field through the read device and simulate, for example, the head crossing magnetic domains on a magnetic memory disk.
Type:
Grant
Filed:
August 22, 2002
Date of Patent:
March 30, 2004
Assignee:
International Business Machines Corporation
Inventors:
Kenneth Donald Mackay, Antonio Perez, Jr.
Abstract: A method, system and computer program product for analyzing link failure in a network is described, wherein a protocol analyzer captures handshake protocol frames exchanged by two nodes attempting to establish a physical link. The captured handshake protocol frames ordered sets are displayed to the user in a merged, time-ordered list, and the information contained in the frames is decoded and displayed. If an attempt to establish a link fails, the symptoms of the failure and a possible diagnosis are identified and displayed. The user is thereby provided with a complete, understandable picture of the events leading up to the link failure, and with symptoms and possible cause of the link failure.
Abstract: A system and method are provided for improved shadow mapping in a graphics pipeline. Raw depth values are initially collected from two depth layers in a scene to be rendered. Shadow-map depth values are then calculated utilizing the raw depth values. The scene is then shadow mapped utilizing the shadow-map depth values in order to improve the appearance of shadows in a rendered scene. The various steps are carried out by a hardware-implemented graphics pipeline, which may include texturing or shadowing mapping hardware.
Type:
Grant
Filed:
August 31, 2001
Date of Patent:
March 9, 2004
Assignee:
NVIDIA Corporation
Inventors:
Rui M. Bastos, Cass W. Everitt, Mark J. Kilgard
Abstract: A system, method and article of manufacture are provided for converting triangular patches into a form suitable for being rendered using a graphics pipeline adapted to render quadrilateral patches. First, a triangular patch is received. The received triangular patch is then divided into a plurality of quadrilateral patches. Such quadrilateral patches are suitable for being processed by a graphics pipeline specifically equipped to render quadrilateral patches.
Abstract: A method for adjusting a tape wrap angle is described comprising the steps of operating the tape system to generate or regenerate an electrical signal in the head from the tape, either increasing or reducing the tape wrap angle as appropriate until a signal from the tape head reappears or goes to zero, then increasing the wrap angle until the desired angle is achieved as measured by the signal from the head or by moving the tape support a fixed amount. A tape recording and/or reading system with adjustable wrap angles is described which can be used with the method of the invention. The system includes one or more rollers mounted on an adjustable shaft with an eccentric or axially offset portion supporting the roller. Preferably for a two or multibump head an adjustable shaft and roller according to the invention are located on the tape-in and tape-out side of the tape head.
Type:
Grant
Filed:
June 9, 2000
Date of Patent:
March 2, 2004
Assignee:
International Business Machines Corporation
Abstract: A spin valve sensor system and method for fabricating the same is provided. Included is a free layer and a pinned layer with a spacer layer disposed between the free layer and the pinned layer. Such spacer layer is oxidized for improving operational characteristics of the spin valve sensor.
Type:
Grant
Filed:
April 30, 2001
Date of Patent:
March 2, 2004
Assignee:
International Business Machines Corporation
Abstract: A system, method, and computer program product for delivery and automatic execution of security, management, or optimization software over an Internet connection to a user computer responsive to a user request entered via a web browser on the user computer. In a preferred embodiment, the user directs the Internet browser to a Internet clinical services provider web site computer and logs in to the site using an identifier and a secure password and optionally makes a selection of the type of servicing desired, wherein an automatically-executing software package encapsulated within a markup language communication unit deliverable across the Internet is delivered, to the user computer, the automatically-executing software package being adapted to perform security, management, or optimization functions on the user computer. User identifiers and passwords enabling the downloads may be provided on a per-download basis or on a subscription basis.