Patents by Inventor David Keppler
David Keppler has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11405285Abstract: Described are methods, systems, and computer-program product embodiments for deriving a model of computation of a cyber-physical system (CPS). In some embodiments, a method includes receiving, from the CPS network, network-events data corresponding to a process performed by the CPS and including network events and associated group IDs. A plurality of events logs for a plurality of selections of group IDs are generated with each events log including a sequence of network events selected from the network events based on the selection of group IDs for that events log. A plurality of directed graphs for the plurality of events logs are generated with each directed graph generated based on the sequence of network events in the events log. A plurality of group IDs can be determined based on a directed graph selected from the plurality of directed graphs based on a complexity score calculated for each directed graph.Type: GrantFiled: July 29, 2020Date of Patent: August 2, 2022Assignee: The MITRE CorporationInventors: David Keppler, Robert L. Haverkos, James R. Morris-King
-
Patent number: 11080399Abstract: A system and method for implementing a software emulation environment is provided. In one example, a mobile application can interface with an emulation environment that can be used to test whether the mobile application includes malware that can compromise the security and integrity of an enterprise's computing infrastructure. When the mobile application issues a call for data, a device mimic module can intercept the call and determine if the call includes a call for one or more checkable artifacts that can reveal the existence of the emulation environment. If such a call for data occurs, the device mimic module can provide one or more spoofed checkable artifacts that have been recorded from a real-world mobile device. In this way, the existence of the emulation environment can be concealed so as to allow for a more thorough analysis of a mobile application for potential hidden malware.Type: GrantFiled: December 19, 2019Date of Patent: August 3, 2021Assignee: The MITRE CorporationInventors: David Keppler, Ivan Lozano, Joseph Portner, Andrew Pyles, Christina L. Johns, David Bryson
-
Publication number: 20200358661Abstract: Described are methods, systems, and computer-program product embodiments for deriving a model of computation of a cyber-physical system (CPS). In some embodiments, a method includes receiving, from the CPS network, network-events data corresponding to a process performed by the CPS and including network events and associated group IDs. A plurality of events logs for a plurality of selections of group IDs are generated with each events log including a sequence of network events selected from the network events based on the selection of group IDs for that events log. A plurality of directed graphs for the plurality of events logs are generated with each directed graph generated based on the sequence of network events in the events log. A plurality of group IDs can be determined based on a directed graph selected from the plurality of directed graphs based on a complexity score calculated for each directed graph.Type: ApplicationFiled: July 29, 2020Publication date: November 12, 2020Applicant: The MITRE CorporationInventors: David KEPPLER, Robert L. HAVERKOS, James R. MORRIS-KING
-
Patent number: 10764149Abstract: Described are methods, systems, and computer-program product embodiments for deriving a model of computation of a cyber-physical system (CPS). In some embodiments, a method includes receiving, from the CPS network, network-events data corresponding to a process performed by the CPS and including network events and associated group IDs. A plurality of events logs for a plurality of selections of group IDs are generated with each events log including a sequence of network events selected from the network events based on the selection of group IDs for that events log. A plurality of directed graphs for the plurality of events logs are generated with each directed graph generated based on the sequence of network events in the events log. A plurality of group IDs can be determined based on a directed graph selected from the plurality of directed graphs based on a complexity score calculated for each directed graph.Type: GrantFiled: September 12, 2018Date of Patent: September 1, 2020Assignee: The MITRE CorporationInventors: David Keppler, Robert L. Haverkos, James R. Morris-King
-
Publication number: 20200125730Abstract: A system and method for implementing a software emulation environment is provided. In one example, a mobile application can interface with an emulation environment that can be used to test whether the mobile application includes malware that can compromise the security and integrity of an enterprise's computing infrastructure. When the mobile application issues a call for data, a device mimic module can intercept the call and determine if the call includes a call for one or more checkable artifacts that can reveal the existence of the emulation environment. If such a call for data occurs, the device mimic module can provide one or more spoofed checkable artifacts that have been recorded from a real-world mobile device. In this way, the existence of the emulation environment can be concealed so as to allow for a more thorough analysis of a mobile application for potential hidden malware.Type: ApplicationFiled: December 19, 2019Publication date: April 23, 2020Applicant: The MITRE CorporationInventors: David KEPPLER, Ivan LOZANO, Joseph PORTNER, Andrew PYLES, Christina L. JOHNS, David BRYSON
-
Publication number: 20200084114Abstract: Described are methods, systems, and computer-program product embodiments for deriving a model of computation of a cyber-physical system (CPS). In some embodiments, a method includes receiving, from the CPS network, network-events data corresponding to a process performed by the CPS and including network events and associated group IDs. A plurality of events logs for a plurality of selections of group IDs are generated with each events log including a sequence of network events selected from the network events based on the selection of group IDs for that events log. A plurality of directed graphs for the plurality of events logs are generated with each directed graph generated based on the sequence of network events in the events log. A plurality of group IDs can be determined based on a directed graph selected from the plurality of directed graphs based on a complexity score calculated for each directed graph.Type: ApplicationFiled: September 12, 2018Publication date: March 12, 2020Applicant: The MITRE CorporationInventors: David KEPPLER, Robert L. HAVERKOS, James R. MORRIS-KING
-
Patent number: 10528734Abstract: A system and method for implementing a software emulation environment is provided. In one example, a mobile application can interface with an emulation environment that can be used to test whether the mobile application includes malware that can compromise the security and integrity of an enterprise's computing infrastructure. When the mobile application issues a call for data, a device mimic module can intercept the call and determine if the call includes a call for one or more checkable artifacts that can reveal the existence of the emulation environment. If such a call for data occurs, the device mimic module can provide one or more spoofed checkable artifacts that have been recorded from a real-world mobile device. In this way, the existence of the emulation environment can be concealed so as to allow for a more thorough analysis of a mobile application for potential hidden malware.Type: GrantFiled: March 25, 2016Date of Patent: January 7, 2020Assignee: The MITRE CorporationInventors: David Keppler, Ivan Lozano, Joseph Portner, Andrew Pyles, Christina L. Johns, David Bryson
-
Publication number: 20170277891Abstract: A system and method for implementing a software emulation environment is provided. In one example, a mobile application can interface with an emulation environment that can be used to test whether the mobile application includes malware that can compromise the security and integrity of an enterprise's computing infrastructure. When the mobile application issues a call for data, a device mimic module can intercept the call and determine if the call includes a call for one or more checkable artifacts that can reveal the existence of the emulation environment. If such a call for data occurs, the device mimic module can provide one or more spoofed checkable artifacts that have been recorded from a real-world mobile device. In this way, the existence of the emulation environment can be concealed so as to allow for a more thorough analysis of a mobile application for potential hidden malware.Type: ApplicationFiled: March 25, 2016Publication date: September 28, 2017Applicant: The MITRE CorporationInventors: David KEPPLER, Ivan LOZANO, Joseph PORTNER, Andrew PYLES, Christina L. JOHNS, David BRYSON
-
Patent number: 8935793Abstract: A mobile device charging station configured to analyze, measure and respond to/correct the state of a mobile device. The charging station can employ an embedded cryptographic subsystem that can make use of anti-tamper/tamper evident techniques to protect stored firmware images/cryptographic material.Type: GrantFiled: March 29, 2012Date of Patent: January 13, 2015Assignee: The MITRE CorporationInventors: David Weinstein, David Keppler
-
Publication number: 20130227694Abstract: A mobile device charging station configured to analyze, measure and respond to/correct the state of a mobile device. The charging station can employ an embedded cryptographic subsystem that can make use of anti-tamper/tamper evident techniques to protect stored firmware images/cryptographic material.Type: ApplicationFiled: March 29, 2012Publication date: August 29, 2013Applicant: The MITRE CorporationInventors: David Weinstein, David Keppler
-
Patent number: 8170054Abstract: Apparatus and method for providing a data interface to a plurality of radio transceivers such as between a personal computer or other information processing device to one or more radio transmitter/receiver systems having a serial data interface in a manner that provides control of the radio and means to send and receive data via the radio without regard to the characteristics of the radio or its serial interface. A common control protocol is employed that exposes the functionality necessary to control the radio transmitter/receiver device in a generic manner. The invention may communicate with the data terminal equipment via a widely-available data interface or network protocol, such as an asynchronous serial interface, the Universal Serial Bus (USB), or an Internet Protocol (IP) network. The invention also provides a means of implementing synchronous serial framing formats through software implementation, allowing compatibility with future data systems to be achieved without requiring hardware modifications.Type: GrantFiled: November 21, 2008Date of Patent: May 1, 2012Assignee: The United States of America as represented by the Secretary of the Air ForceInventors: David Keppler, Nathan Lutchansky
-
Patent number: 7630395Abstract: Apparatus and method for providing a data interface to a plurality of radio transceivers such as between a personal computer or other information processing device to one or more radio transmitter/receiver systems having a serial data interface in a manner that provides control of the radio and means to send and receive data via the radio without regard to the characteristics of the radio or its serial interface. A common control protocol is employed that exposes the functionality necessary to control the radio transmitter/receiver device in a generic manner. The invention may communicate with the data terminal equipment via a widely-available data interface or network protocol, such as an asynchronous serial interface, the Universal Serial Bus (USB), or an Internet Protocol (IP) network. The invention also provides a means of implementing synchronous serial framing formats through software implementation, allowing compatibility with future data systems to be achieved without requiring hardware modifications.Type: GrantFiled: December 8, 2004Date of Patent: December 8, 2009Assignee: The United States of America as represented by the Secretary of the Air ForceInventors: David Keppler, Nathan Lutchansky
-
Publication number: 20090257367Abstract: A half duplex digital communications system and control means providing a data interface to a plurality of radio transceivers such as between a personal computer or other information processing device to one or more radio transmitter/receiver systems having a serial data interface in a manner that provides control of the radio and means to send and receive data via the radio without regard to the characteristics of the radio or its serial interface. A common control protocol is employed to control the radio transmitter/receiver device in a generic manner through software implementation, allowing compatibility with future data systems.Type: ApplicationFiled: March 27, 2009Publication date: October 15, 2009Inventors: David Keppler, Nathan Lutchansky
-
Publication number: 20090111498Abstract: Apparatus and method for providing a data interface to a plurality of radio transceivers such as between a personal computer or other information processing device to one or more radio transmitter/receiver systems having a serial data interface in a manner that provides control of the radio and means to send and receive data via the radio without regard to the characteristics of the radio or its serial interface. A common control protocol is employed that exposes the functionality necessary to control the radio transmitter/receiver device in a generic manner. The invention may communicate with the data terminal equipment via a widely-available data interface or network protocol, such as an asynchronous serial interface, the Universal Serial Bus (USB), or an Internet Protocol (IP) network. The invention also provides a means of implementing synchronous serial framing formats through software implementation, allowing compatibility with future data systems to be achieved without requiring hardware modifications.Type: ApplicationFiled: November 21, 2008Publication date: April 30, 2009Inventors: David Keppler, Nathan Lutchansky
-
Publication number: 20050266881Abstract: Apparatus and method for providing a data interface to a plurality of radio transceivers such as between a personal computer or other information processing device to one or more radio transmitter/receiver systems having a serial data interface in a manner that provides control of the radio and means to send and receive data via the radio without regard to the characteristics of the radio or its serial interface. A common control protocol is employed that exposes the functionality necessary to control the radio transmitter/receiver device in a generic manner. The invention may communicate with the data terminal equipment via a widely-available data interface or network protocol, such as an asynchronous serial interface, the Universal Serial Bus (USB), or an Internet Protocol (IP) network. The invention also provides a means of implementing synchronous serial framing formats through software implementation, allowing compatibility with future data systems to be achieved without requiring hardware modifications.Type: ApplicationFiled: December 8, 2004Publication date: December 1, 2005Inventors: David Keppler, Nathan Lutchansky