Disclosed are systems and methods of transferring computer hardware from one set of users to another set of users. An exemplary receives units of circuitry from a plurality of business entities, and determines if access to a unit is blocked by lack of a primary password. If access is blocked, the method determines whether a value of the unit exceeds a threshold. If the value exceeds a threshold, the method attaches a connector to the unit, uses the processor to send a first set of signals into a...

According to the invention, a video system for playing licensed video content is disclosed. The video system includes a video, a video selection interface, a video storage device, and a license control process. The video is selected from a plurality of videos stored on the video storage device. There is a plurality of content licenses for the video, where the plurality of content licenses is comprised of at least a first content license and a second content license. The first content license has...

A client computer is connected via a network to an anti-virus server. A signal from the anti-virus server notifies the client computer that an anti-virus needs to be immediately downloaded from the anti-virus server. The client computer disengages from the network, and re-establishes a link with only the trusted anti-virus server. The anti-virus fix is installed, the client computer re-booted, and the client computer is then allowed to reconnect to the full network. If the client's primary opera...

An invention was developed to improve the performance and survivability of units in a competitive environment. Cryptic Command, Control, and Planning, and Management increases to apparent randomness of a plan from an opponent's perspective without increasing the randomness that is apparent to friendly parties. Friendly systems each carry a keyed pseudo-random or chaotic number generating process and a known method for mapping the numbers to behavioral modifications. Since the opponent does not k...

The present invention provides systems and methods for applying hard-real-time capabilities in software to software security. For example, the systems and methods of the present invention allow a programmer to attach a periodic integrity check to an application so that an attack on the application would need to succeed completely within a narrow and unpredictable time window in order to remain undetected.

A system and related methods are disclosed for detecting the occurrence of an intrusion attack. A network device, such a probe, monitors traffic on a first network and converts the traffic to a format that is suitable for transmission on a second network. The converted traffic is forwarded to an intrusion detection system for further processing. Prior to transmission, the converted data may be filtered to remove data that is not useful in detecting an intrusion attack.

An apparatus for optimizing a filter based on detected attacks on a data network includes an estimation means and an optimization means. The estimation means operates when a detector detects an attack and the detector transmits an inaccurate attack severity. The estimation means determines an accurate attack severity. The optimization means adjusts a parameter and the parameter is an input to a filter.

Conventional countermeasures to Distributed Denial of Service (DDoS) attacks typically focus on practices and rules for organizing a robust, DDoS-resilient network which anticipates proactive cooperation of users. Such measures involve widespread implementation cooperation and may be difficult or problematic to enforce in a large organization. Configurations of the invention employ the attacker's technique preventatively against the attack to identify sources likely to be employed for DDoS attac...

Intrusion prevention for a computer is based on intrusion rules corresponding to active networked applications executing on the computer. The intrusion rules are a subset of a full ruleset that may include signatures of known attacks or heuristic rules. The subset changes as network connections for active applications are initiated and terminated, or as the active applications terminate.

System 10 distributes information data packets 10D from multiple send endpoint ports 11S in send endpoint unit 12S, to multiple receive endpoint ports 11R in receive endpoint unit 12R. The packets pass through standard based send firewall adapter 14S (shown in detail in FIG. 3), traverse at least one firewall 15W through selected port 15P, and pass through standard based receive firewall adapter 14R. The endpoint units in the send and receive stations may be simple PCs operated by individuals at...