Raymond S Lu

US Patent:

7315801, Jan 1, 2008

Filed:

Jan 14, 2000

Appl. No.:

09/483127

Inventors:

Alan Dowd - White Bear Lake MN, US
Thomas R. Markham - Anoka MN, US
Tomo Foote-Lennox - Maple Grove MN, US
David Apostal - Roseville MN, US
Raymond Lu - Shoreview MN, US

Assignee:

Secure Computing Corporation - St. Paul MN

International Classification:

G06F 17/50
G06F 15/173

US Classification:

703 13, 709224

Abstract:

A network security modeling system which simulates a network and analyzes security vulnerabilities of the network. The system includes a simulator which includes a network vulnerabilities database and a network configuration module having network configuration data. The simulator determines vulnerabilities of the simulated network based on the network configuration data and the vulnerabilities database.

US Patent:

7263718, Aug 28, 2007

Filed:

Dec 2, 2003

Appl. No.:

10/726290

Inventors:

Richard O'Brien - Brooklyn Park MN, US
Raymond Lu - Shoreview MN, US
Terrence Mitchem - Andover MN, US
Spencer Minear - Fridley MN, US

Assignee:

Secure Computing Corporation - St. Paul MN

International Classification:

G06F 7/04
G06F 9/00
G06F 11/00

US Classification:

726 6, 726 7, 726 14, 726 18, 726 19, 726 26, 726 29

Abstract:

An inventive security framework for supporting kernel-based hypervisors within a computer system. The security framework includes a security master, one or more security modules and a security manager, wherein the security master and security modules execute in kernel space.

US Patent:

7996201, Aug 9, 2011

Filed:

Oct 23, 2007

Appl. No.:

11/977074

Inventors:

Alan Dowd - White Bear Lake MN, US
Thomas R. Markham - Anoka MN, US
Tomo Foote-Lennox - Maple Grove MN, US
David Apostal - Roseville MN, US
Raymond Lu - Shoreview MN, US

Assignee:

McAfee, Inc. - Santa Clara CA

International Classification:

G06F 17/50
G06F 15/173

US Classification:

703 13, 709224, 715736

Abstract:

A network security modeling system which simulates a network and analyzes security vulnerabilities of the network. The system includes a simulator which includes a network vulnerabilities database and a network configuration module having network configuration data. The simulator determines vulnerabilities of the simulated network based on the network configuration data and the vulnerabilities database.

US Patent:

6658571, Dec 2, 2003

Filed:

Feb 9, 1999

Appl. No.:

09/247721

Inventors:

Richard OBrien - Brooklyn Park MN
Raymond Lu - Shoreview MN
Terrence Mitchem - Andover MN
Spencer Minear - Fridley MN

Assignee:

Secure Computing Corporation - Roseville MN

International Classification:

G06F 1100

US Classification:

713200, 713159, 713167, 709225, 709229

Abstract:

A security framework for wrapping standard, commercially-available software applications in order to limit the amount of potential damage that a successful attacker or corrupt program can cause. The security framework includes a security master that coordinates installation and removal of kernel-based security modules and that provides a means for managing these modules. The security module are loadable kernel modules that include security information for enforcing application-specific or resource-specific policies. The security module are easy to install and require no modification to the existing operating system or to the software applications that they are monitoring. The security framework has a number of potential applications, including protecting a computing system from malicious software downloaded via a web browser, for wrapping web servers and firewalls in order to limit possible compromise and for replicating file operations.