156 results about "Mitigation methods" patented technology

The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of“anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, or the like) is then implemented.

The present invention provides a policy specification framework to enable an enterprise to specify a given insider attack using a holistic view of a given data access, as well as the means to specify and implement one or more intrusion mitigation methods in response to the detection of such an attack. The policy specification provides for the use of “anomaly” and “signature” attributes that capture sophisticated behavioral characteristics of illegitimate data access. When the attack occurs, a previously-defined administrator (or system-defined) mitigation response (e.g., verification, disconnect, de-provision, network re-routing, or the like) is then implemented.

Methods and apparatus for controlling switching in a DC-to-AC inverter to prevent overvoltages applied to an AC motor by determining the switching order of the phase voltage signals, providing gating signals at switching intervals by modulating a carrier wave with the phase voltage signals, comparing the switching intervals to a predetermined minimum time interval sufficient for reflected wave transients to dissipate, and adjusting the switching intervals to be at least equal to the predetermined minimum time interval.

A security intrusion mitigation system and method are presented. In one embodiment a security intrusion mitigation method includes utilizing network spanning tree configuration information to determine an action for mitigating diffusion of intrusive attacks. The spanning tree information can include an indication of an internal diffusion risks. An action for mitigating diffusion of intrusive attacks is automatically performed. The action for mitigating diffusion of the intrusive attacks includes compensation for functional support of prioritized applications.

A method for enhancing an ultrasound image is provided, wherein the ultrasound image is segmented into a feature region and a non-feature region, while sufficiently utilizing features contained in the ultrasound image, in particular including some inconspicuous features. The enhanced image according to present invention is not susceptive of the image segmentation and avoid dependence of the enhancement effect on the segmentation template, so as not to produce an evident artificial boundary between the feature region and the non-feature region but to highlight some special information in the image and to remove or mitigate invalid information. Thus the enhanced ultrasound image is particularly suitable for the visual system of the human beings.

A GPS receiver employing advanced spoofer mitigation, geolocation and tracking capabilities through the use of a utility channel coupled in parallel to a tracking channel. The tracking channel tracks the direct signal while the utility channel tracks one or more spoofer signals. A signal from the primary channel is used by the utility channel to locate spoofer signals, with the primary channel operating independently of the utility channel. Three complementary spoofer mitigation methods are disclosed for identifying advanced repeaters and security-compromised spoofers, which may also be used for geolocation of such spoofers: (1) the consistency routine; (2) the nuller routine; and (3) the multiple antennas routine. An improved architecture is disclosed to allow easy upgrading and retrofitting of an existing GPS receiver.

A wireless communication method has computer-implemented steps including identifying a location of a dead spot region within an expected route of a vehicle. The vehicle has a loss of wireless connectivity within the dead spot region. Lengths of time before the vehicle will arrive at the dead spot region and before the vehicle will exit the dead spot region are estimated. Audio content and/or video content are accessed from at least one source inside the vehicle and/or at least one source outside the vehicle such that playing of the content is uninterrupted while the vehicle is within the dead spot region, the accessing being dependent upon the estimated lengths of time.

An inter-cell interference mitigation method in an orthogonal frequency division multiple access (OFDM)-based cellular system includes: dividing wireless resources into a resource group for fractional frequency reuse and a resource group for removing inter-cell interference; and re-dividing the resource group for fractional frequency reuse into particular resource groups numbering the same as a number of cell types of fractional frequency reuse, and applying a maximum transmission power to a particular resource group according to a cell type for fractional frequency reuse.

Methods and apparatus for mitigating in-device interference are described. The methods may include an in-device interference event (e.g. an interference situation), and the processing of events may depend on the priority of the technologies. A handover to another frequency or radio access technology (RAT) may occur in case a co-existing technology may be activated. The network may signal to the device a list of frequencies or RATs that it may be allowed to measure and handoff to. A network may provide a scaling value that the device may use to speed up reaction to the interference. The device may apply a scaling factor to an "out of synch' counter and/or the radio link failure (RLF) timer used for the RLF procedure. The device may apply different scaling factors for the measurements and time to trigger events. The device may trigger a report to the network requesting gaps for an alternate RAT.

A method and apparatus mitigating the effects of cross-correlation signals on received satellite signals in a Global Positioning System (GPS) receiver is described. MS-Assisted and MS-Based cross-correlation detection and mitigation methods and apparatus are described. A GPS search mode architecture is used to detect SV signals and identify potential cross-correlations. The GPS search modes have different coherent integration lengths and different degrees of sensitivity. After detection, measurements are logged into a database for further processing. Several cross-correlation tests are described. For example, a “Mainlobe” cross-correlation test is described that identifies the most significant cross-correlations that occur when the Doppler difference between the interfering SV signal and the target SV signal is nonzero and a multiple of 1 kHz. Appropriate C/No and Doppler thresholds, or masks, are selected and used to identify the mainlobe cross-correlations. A wide Doppler mask is used to account for the effects on cross-correlations caused by BPSK data bit modulation. Appropriate MS-Assisted and MS-Based cross-correlation masks are described. Other cross-correlation tests include “variable C/No”, “strong”, “wide Doppler” and “pre-emptive” cross-correlation detection tests.

Conventional packet network nodes react to congestion in the packet network by dropping packets in a manner which is perceived by users to be indiscriminate. In embodiments of the present invention, indiscriminate packet discards are prevented by causing packets to be discarded according to bandwidth allocations that intelligently track flow sending rates. Flows are allocated bandwidth based on policy information. Where such policy information indicates that the flow should be treated as delay-sensitive, the present invention includes means to allocate an initial minimum rate that will be guaranteed and such flows will also have the use of an additional capacity that varies depending on the number of such flows that currently share an available pool of capacity. This provides a congestion alleviation method which is less annoying to users since communications that have been in existence for longer are less susceptible to component packets being deleted.

The invention relates to a method for detecting and alleviating DDoS attack of an industrial SDN network, wherein the method belongs to the field of network safety. According to the method of the invention, by means of cooperative function between an east-and-west direction interface of an SDN controller in an industrial backhaul network and a system manager of an industrial access network, according to the characteristics of the industrial backhaul network and an industrial access network data packet, an OpenFlow switch flow item matching domain is expanded, and a flow table 0 is set to an elevate DDoS attack specialized flow table for resisting an attack data flow in time. the SDN controller and the DDoS attack detecting and alleviating system of the industrial backhaul network are utilized, thereby identifying an attacking data flow and finding out a DDoS attack source, and applying a DDoS attack alleviating strategy through scheduling an industrial access network system manager. The method ensures normal flow of the industrial backhaul network and the industrial access network and overcomes threat of DDoS attack to safety of the industrial network.

Methods and apparatuses are described for timing skew mitigation in time-interleaved ADCs (TI-ADCs) that may be performed for any receive signal without any special signals during blind initialization, which may be followed by background calibration. The same gain/skew calibration metrics may be applied to baud sampled and oversampled systems, including wideband receivers and regardless of any modulation, by applying a timing or frequency offset to non-stationary sampled signals during initial training. Skew mitigation is low latency, low power, low area, noise tolerant and scalable. Digital estimation may be implemented with accumulators and multipliers while analog calibration may be implemented with adjustable delays. DC and gain offsets may be calibrated before skew calibration. The slope of the correlation function between adjacent samples may be used to move a timing skew estimate stochastically at a low adaptive rate until the skew algorithm converges.

Methods and systems for a scalable solution to behavioral Distributed Denial of Service (DDoS) attacks targeting a network are provided. According to one embodiment, a method to determine the scaling treatment is provided for various granular layer parameters of the Open System Interconnection (OSI) model for communication systems. A hardware-based apparatus helps identify packet rates and determine packet rate thresholds through continuous and adaptive learning with multiple DDoS attack mitigation components. The system can be scaled up by stacking multiple DDoS attack mitigation components to provide protection against large scale DDoS attacks by distributing load across these stacked components.

Various embodiments of a method of mitigating interference in an OFDMA cellular network and a user terminal incorporating various of the embodiments. In one embodiment, the method includes: (1) selecting at least one dominant interfering signal, (2) generating estimates of a desired signal and the at least one dominant interfering signal, (3) jointly deciding based on the estimates such that an energy of a residual error is reduced and (4) mitigating interference based on the estimates.

Defect mitigation in display panels. Defects in a display panel are mapped, and the defect information is associated with the display system or associated with the panel. During panel operation, the values of pixels neighboring defective pixels are altered to minimize their visibility to the observer. In a first model, luminance error caused by a defect is compensated by adjust neighboring pixels. In a second model, Error in luminance and one of the two chrominance channels is compensated by adjusting neighboring pixels. The defect mitigation methods seek to shift the errors introduced by defective pixels into high spatial frequency elements and chromatic elements, which the human eye is not sensitive to.

Disclosed is an inter-cell interference mitigation method using a spatial covariance matrix (SCM) estimation method in a multi-input multi-output (MIMO) orthogonal frequency division multiplexing (OFDM) communication system for mitigating interference between asynchronous cells. The inter-cell interference mitigation method includes extracting a reference symbol (RS) of a received OFDM symbol and performing channel estimation, estimating an initial SCM using the RS signal and the channel estimation result, applying time-domain sinc type weighting to the initial SCM and applying an SCM, and demodulating a data symbol with mitigated inter-cell interference using the channel estimation result and the estimated SCM. By applying time-domain sinc type weighting to SCM estimation, it is possible to reduce an SCM estimation error occurring due to a spectral leakage induced by an abrupt change in a signal at a border point between an effective sub carrier zone and a guard band zone, and a simple design of a moving average filter form for a frequency domain signal can be made instead of frequency-time-frequency domain transformation using an inverse fast Fourier transform (IFFT) and fast Fourier transfer (FFT).

Systems and methods for an improved DDoS mitigation approach are provided. According to one embodiment, a current threshold for a network connection characteristic is established within a Denial-of-Service (DoS) mitigation device logically interposed between a protected resource of a private network and multiple client devices residing external to the private network. A number of connections between the client devices and the protected network resource are tracked. During a period of time in which the number of connections exceeds a connection count threshold: (i) for each of the connections, a measured value for the network connection characteristic is compared to the current threshold; (ii) responsive to a determination that the measured value exceeds the current threshold, the connection is dropped; and (iii) the current threshold is periodically reduced, such that only those connections complying with the current threshold are maintained.