公开(公告)号：US08001189B2

公开(公告)日：2011-08-16

申请号：US10270445

申请日：2002-10-15

申请人： Henrik F. Nielsen ,  John P. Shewchuk ,  Erik B. Christensen ,  Alfred M. Lee ,  Christian Huitema ,  James M. Lyon ,  Mark H. Lukovsky ,  Andrew J. Layman ,  Satish R. Thatte ,  Christopher Kaler

发明人： Henrik F. Nielsen ,  John P. Shewchuk ,  Erik B. Christensen ,  Alfred M. Lee ,  Christian Huitema ,  James M. Lyon ,  Mark H. Lukovsky ,  Andrew J. Layman ,  Satish R. Thatte ,  Christopher Kaler

IPC分类号： G06F15/16

CPC分类号： H04L45/00 ,  H04L45/34 ,  H04L45/566 ,  H04L63/0428 ,  H04L63/102 ,  H04L63/123 ,  H04L63/126 ,  H04L67/02

摘要： A routing protocol is provided for exchanging messages between an initial sender and an ultimate receiver, potentially via a set of intermediaries. The routing protocol provides an optional reverse message path that enables two-way message exchange patterns. The routing protocol can be expressed as a header entry within a message envelope, is independent of the underlying protocol, and can be generated at the application layer of a protocol stack. The routing protocol may allow each intermediary to process the message and dynamically alter the message path en route to the intended recipient.

摘要翻译： 提供路由协议用于在初始发送者和最终接收者之间交换消息，潜在地通过一组中介。 路由协议提供可选的反向消息路径，实现双向消息交换模式。 路由协议可以表示为消息包络内的报头条目，独立于底层协议，并且可以在协议栈的应用层生成。 路由协议可以允许每个中间人处理该消息并且动态地改变到期望接收者的路由中的消息路径。

公开(公告)号：US20090013410A1

公开(公告)日：2009-01-08

申请号：US12058156

申请日：2008-03-28

申请人： Christopher Kaler ,  Giovanni Moises Della-Libera ,  John P. Shewchuk

发明人： Christopher Kaler ,  Giovanni Moises Della-Libera ,  John P. Shewchuk

IPC分类号： G06F21/00

CPC分类号： G06F21/554

摘要： A method and system are provided for managing a security threat in a distributed system. A distributed element of the system detects and reports suspicious activity to a threat management agent. The threat management agent determines whether an attack is taking place and deploys a countermeasure to the attack when the attack is determined to be taking place. Another method and system are also provided for managing a security threat in a distributed system. A threat management agent reviews reported suspicious activity including suspicious activity reported from at least one distributed element of the system, determines, based on the reports, whether a pattern characteristic of an attack occurred, and predicts when a next attack is likely to occur. Deployment of a countermeasure to the predicted next attack is directed in a time window based on when the next attack is predicted to occur.

摘要翻译： 提供了一种用于管理分布式系统中的安全威胁的方法和系统。 系统的分布式元素会将威胁管理代理的可疑活动检测并报告。 威胁管理代理确定攻击是否发生，并在攻击确定发生时部署对攻击的对策。 还提供另一种方法和系统来管理分布式系统中的安全威胁。 威胁管理代理审查报告了可疑活动，包括从系统的至少一个分布式元素报告的可疑活动，根据报告确定是否发生攻击的模式特征，并预测何时可能发生下一次攻击。 基于预测发生下一次攻击的时间窗口，针对预测的下一次攻击的对策部署。

公开(公告)号：US20070130478A1

公开(公告)日：2007-06-07

申请号：US11548266

申请日：2006-10-10

申请人： David Langworthy ,  Christopher Kaler ,  Luis Cabrera ,  Patrick Helland ,  Steven Lucco ,  John Shewchuk

发明人： David Langworthy ,  Christopher Kaler ,  Luis Cabrera ,  Patrick Helland ,  Steven Lucco ,  John Shewchuk

IPC分类号： H04L9/00 ,  G06F12/14

CPC分类号： H04L69/16 ,  H04L67/02 ,  H04L69/162 ,  H04L69/163

摘要： Reliable end-to-end messaging in which tracking and acknowledgement information are contained in the electronic message that is visible to layers above the transport layer, thereby being independent of what transport protocols, and whether different transport protocols, are used to comununicate between the two end points. Furthermore, acknowledgment messages may identify multiple ranges of sequence numbers corresponding to received electronic messages, thereby permitting further flexibility and completeness in acknowledging received messages.

摘要翻译： 可靠的端到端消息传递，其中跟踪和确认信息包含在电子消息中，对于传输层之上的层可见，从而独立于什么传输协议以及是否使用不同的传输协议来在两者之间进行通信 终点 此外，确认消息可以标识与所接收的电子消息相对应的多个序列号范围，从而允许在确认所接收的消息时进一步的灵活性和完整性。

公开(公告)号：US20060117026A1

公开(公告)日：2006-06-01

申请号：US11325693

申请日：2006-01-04

申请人： Christopher Kaler ,  Gopala Kakivaya ,  Hervey Wilson ,  Richard Hasha

发明人： Christopher Kaler ,  Gopala Kakivaya ,  Hervey Wilson ,  Richard Hasha

IPC分类号： G06F17/30

CPC分类号： H04L67/104 ,  H04L67/1046 ,  H04L67/1059 ,  H04L67/1063 ,  H04L67/1065 ,  H04L67/24 ,  H04L67/32

摘要： Implementations of the present invention relate in part to optimizations to peer-to-peer communication systems. For example, one implementation relates to use of a smart transceiver that creates, caches, and manages communication channels dynamically between peers. Another implementation relates to use of a central tracking object that can be used to efficiently register and distribute peer messages among the various peers. In one implementation, the central tracking object is shared amongst peers in the group. Still another implementation relates to associating peer groups with namespaces, and for including peer groups of one namespace within still other peer groups of different namespaces. These and other aspects of the invention can also be used to ensure delivery intent of a given peer message is preserved, and to ensure that optimal numbers of messages are communicated to any given peer at any given time.

公开(公告)号：US20050278390A1

公开(公告)日：2005-12-15

申请号：US11207034

申请日：2005-08-19

申请人： Christopher Kaler ,  Giovanni Della-Libera ,  Elliot Waingold

发明人： Christopher Kaler ,  Giovanni Della-Libera ,  Elliot Waingold

IPC分类号： G06F21/00 ,  H04L12/56 ,  H04L29/06 ,  H04L29/08 ,  G06F7/00

CPC分类号： H04L63/126 ,  G06F21/6218 ,  G06F2221/2141 ,  H04L45/34 ,  H04L45/566 ,  H04L63/04 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/102 ,  H04L63/123 ,  H04L67/02 ,  Y10S707/99939

摘要： Methods, systems, and data structures for communicating object metadata are provided. A generic metadata container is presented that allows object metadata to be described in an extensible manner using protocol-neutral and platform-independent methodologies. A metadata scope refers to a dynamic universe of targets to which the included metadata statements correspond. Metadata properties provide a mechanism to describe the metadata itself, and metadata security can be used to ensure authentic metadata is sent and received. Mechanisms are also provided to allow refinement and replacement of metadata statements. The generic metadata container can be adapted to dynamically define access control rights to a range of objects by a range of users, including granted and denied access rights.

摘要翻译： 提供了传达对象元数据的方法，系统和数据结构。 提出了一个通用的元数据容器，允许使用协议中立和平台无关的方法以可扩展的方式描述对象元数据。 元数据范围是指所包含的元数据语句对应的目标的动态范围。 元数据属性提供了一种描述元数据本身的机制，并且可以使用元数据安全性来确保发送和接收真实的元数据。 还提供了机制来允许细化和替换元数据语句。 通用元数据容器可以被适配成动态地定义一系列用户对一系列对象的访问控制权限，包括授权和被拒绝的访问权限。

公开(公告)号：US20050240640A1

公开(公告)日：2005-10-27

申请号：US11171768

申请日：2005-06-30

申请人： Christopher Kaler ,  Martyn Lovell ,  Michael Grier ,  Bradley Bartz

发明人： Christopher Kaler ,  Martyn Lovell ,  Michael Grier ,  Bradley Bartz

IPC分类号： G01F1/56 ,  A61M5/168 ,  G06F9/44 ,  G06F17/30

CPC分类号： A61M5/1689 ,  A61M2205/3306 ,  G06F8/20

摘要： A software-development system or versioning system has a collection of modules for performing individual development functions such as document editing, keyword processing, and private-copy management. Each module has an interface compatible with that of the others, so that modules can be added to or substituted for the original modules, if the new modules conform to the interface. The architecture of this system supports the performance of development actions such as document merging and keyword expansion at any location within the system. The system operates upon documents and files as objects in an object space, rather than in name spaces.

摘要翻译： 软件开发系统或版本控制系统具有用于执行诸如文档编辑，关键词处理和私人副本管理之类的个人开发功能的模块集合。 每个模块都具有与其他模块兼容的接口，因此如果新模块符合接口，则可以将模块添加到或替代原始模块。 该系统的架构支持系统内任何位置的文档合并和关键字扩展等开发操作的性能。 系统将文档和文件作为对象空间中的对象而不是名称空间进行操作。

公开(公告)号：US20050182935A1

公开(公告)日：2005-08-18

申请号：US10988875

申请日：2004-11-15

申请人： Max Morris ,  Christopher Kaler

发明人： Max Morris ,  Christopher Kaler

IPC分类号： G06F21/20 ,  H04L9/32 ,  H04L29/06 ,  H04L9/00

CPC分类号： H04L9/3271 ,  G06Q20/382 ,  H04L63/0428 ,  H04L63/0853 ,  H04L2209/56

摘要： A secure electronic transfer mechanism that does not require that the computing entities that are parties to the transaction be aware of the secret data used to secure the transfer. A transferring computing entity provides a request from a billing agent computing entity to transfer the electronically transferable item to a computing entity. The billing agent computing entity responds to the request by providing approval data to the second computing entity, the approval data being encrypted using secret data known to the billing agent computing entity and a supplemental computing entity associated with the transferee computing entity, but not to the transferring and transferee computing entity. The approval is provided to the supplemental computing entity, which then credits the transferee account.

摘要翻译： 一种安全的电子传输机制，不要求交易方的计算实体知道用于确保传输的秘密数据。 转移计算实体提供来自计费代理计算实体的请求以将电子可转移项转移到计算实体。 计费代理计算实体通过向第二计算实体提供批准数据来响应该请求，所述批准数据使用计费代理计算实体已知的秘密数据和与受让人计算实体相关联的补充计算实体进行加密，但不对 转移和受让计算实体。 批准提供给补充计算实体，然后补充计算实体将受让人账户记入账户。

公开(公告)号：US20060253699A1

公开(公告)日：2006-11-09

申请号：US11254539

申请日：2005-10-20

申请人： Giovanni Della-Libera ,  Christopher Kaler ,  Scott Konersmann ,  Butler Lampson ,  Paul Leach ,  Bradford Lovering ,  Steven Lucco ,  Stephen Millet ,  Richard Rashid ,  John Shewchuk

发明人： Giovanni Della-Libera ,  Christopher Kaler ,  Scott Konersmann ,  Butler Lampson ,  Paul Leach ,  Bradford Lovering ,  Steven Lucco ,  Stephen Millet ,  Richard Rashid ,  John Shewchuk

IPC分类号： H04L9/00 ,  G06F12/14 ,  H04L9/32 ,  G06F11/30

CPC分类号： H04L63/08 ,  G06Q20/3676 ,  H04L63/10 ,  H04L63/168 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2804 ,  H04L67/2823

摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.

公开(公告)号：US20060150200A1

公开(公告)日：2006-07-06

申请号：US11003307

申请日：2004-12-03

申请人： Shy Cohen ,  Geary Eppley ,  Douglas Purdy ,  James Johnson ,  Stephen Millet ,  Stephen Swartz ,  Vijay Gajjala ,  Aaron Stern ,  Alexander DeJarnatt ,  Alfred Lee ,  Anand Rjagopalan ,  Anastasios Kasiolas ,  Chaitanya Upadhyay ,  Christopher Kaler ,  Craig Critchley ,  David Levin ,  David Driver ,  David Wortendyke ,  Douglas Walter ,  Elliot Waingold ,  Erik Christensen ,  Erin Honeycutt ,  Eugene Shvets ,  Evgeny Osovetsky ,  Giovanni Della-Libera ,  Jesus Ruiz-Scougall ,  John Doty ,  Jonathan Wheeler ,  Kapil Gupta ,  Kenneth Wolf ,  Krishnan Srinivasan ,  Lance Olson ,  Matthew Tavis ,  Mauro Ottaviani ,  Max Feingold ,  Michael Coulson ,  Michael Marucheck ,  Michael Vernal ,  Michael Dice ,  Mohamed-Hany Ramadan ,  Mohammad Makarechian ,  Natasha Jethanandani ,  Richard Dievendorff ,  Richard Hill ,  Ryan Sturgell ,  Saurab Nog ,  Scott Seely ,  Serge Sverdlov ,  Siddhartha Puri ,  Sowmyanarayanan Srinivasan ,  Stefan Batres ,  Stefan Pharies ,  Tirunelveli Vishwanath ,  Tomasz Janczuk ,  Uday Hegde ,  Umesh Madan ,  Vaithialingam Balayogan ,  Vipul Modi ,  Yaniv Pessach ,  Yasser Shohoud

发明人： Shy Cohen ,  Geary Eppley ,  Douglas Purdy ,  James Johnson ,  Stephen Millet ,  Stephen Swartz ,  Vijay Gajjala ,  Aaron Stern ,  Alexander DeJarnatt ,  Alfred Lee ,  Anand Rjagopalan ,  Anastasios Kasiolas ,  Chaitanya Upadhyay ,  Christopher Kaler ,  Craig Critchley ,  David Levin ,  David Driver ,  David Wortendyke ,  Douglas Walter ,  Elliot Waingold ,  Erik Christensen ,  Erin Honeycutt ,  Eugene Shvets ,  Evgeny Osovetsky ,  Giovanni Della-Libera ,  Jesus Ruiz-Scougall ,  John Doty ,  Jonathan Wheeler ,  Kapil Gupta ,  Kenneth Wolf ,  Krishnan Srinivasan ,  Lance Olson ,  Matthew Tavis ,  Mauro Ottaviani ,  Max Feingold ,  Michael Coulson ,  Michael Marucheck ,  Michael Vernal ,  Michael Dice ,  Mohamed-Hany Ramadan ,  Mohammad Makarechian ,  Natasha Jethanandani ,  Richard Dievendorff ,  Richard Hill ,  Ryan Sturgell ,  Saurab Nog ,  Scott Seely ,  Serge Sverdlov ,  Siddhartha Puri ,  Sowmyanarayanan Srinivasan ,  Stefan Batres ,  Stefan Pharies ,  Tirunelveli Vishwanath ,  Tomasz Janczuk ,  Uday Hegde ,  Umesh Madan ,  Vaithialingam Balayogan ,  Vipul Modi ,  Yaniv Pessach ,  Yasser Shohoud

IPC分类号： G06F9/46

CPC分类号： G06F9/547 ,  H04L67/02

摘要： A web services namespace pertains to an infrastructure for enabling creation of a wide variety of applications. The infrastructure provides a foundation for building message-based applications of various scale and complexity. The infrastructure or framework provides APIs for basic messaging, secure messaging, reliable messaging and transacted messaging. In some embodiments, the associated APIs are factored into a hierarchy of namespaces in a manner that balances utility, usability, extensibility and versionability.

公开(公告)号：US20060080600A1

公开(公告)日：2006-04-13

申请号：US11260656

申请日：2005-10-27

申请人： Christopher Kaler ,  Allen Brown ,  Robert Atkinson ,  Steven Lucco

发明人： Christopher Kaler ,  Allen Brown ,  Robert Atkinson ,  Steven Lucco

IPC分类号： G06F17/21

CPC分类号： G06F17/30961 ,  G06F17/2229 ,  G06F17/2247 ,  G06F17/227

摘要： A group identifier represents an association between each of a number of different abbreviated namespace identifiers with a corresponding hierarchical namespace (e.g., an XML namespace). A hierarchically-structured document (e.g., an XML document) is accessed by a computing system that determines that the group identifier is associated with the hierarchically-structured document. Hence, when using the abbreviated namespace identifiers in the hierarchically-structured document, the computing system knows that the corresponding namespace is associated with the designated portions of the hierarchically-structured document. Also, a schema description language document (e.g., an XSD document) may specify multiple target namespaces for a single element. Accordingly, groupings of elements may be included in different namespaces to creating overlapping or even nested namespaces.