-
11.发明申请公开(公告)号:US20090276828A1
公开(公告)日:2009-11-05
申请号:US12500381
申请日:2009-07-09
IPC分类号: G06F21/00
CPC分类号: H04L63/061 , H04L9/0844 , H04L63/0823 , H04L63/164 , H04L63/20
摘要: A method for authenticating and negotiating security parameters among two or more network devices is disclosed. The method has a plurality of modes including a plurality of messages exchanged between the two or more network devices. In a main mode, the two or more network devices establish a secure channel and select security parameters to be used during a quick mode and a user mode. In the quick mode, the two or more computers derive a set of keys to secure data sent according to a security protocol. The optional user mode provides a means of authenticating one or more users associated with the two or more network devices. A portion of the quick mode is conducted during the main mode thereby minimizing the plurality of messages that need to be exchanged between the initiator and the responder.
摘要翻译: 公开了一种用于在两个或多个网络设备之间认证和协商安全参数的方法。 该方法具有多个模式,包括在两个或多个网络设备之间交换的多个消息。 在主模式中,两个或多个网络设备建立安全通道并选择在快速模式和用户模式期间使用的安全参数。 在快速模式下,两台或多台计算机派生一组密钥来保护根据安全协议发送的数据。 可选的用户模式提供了认证与两个或多个网络设备相关联的一个或多个用户的手段。 快速模式的一部分在主模式期间进行,从而最小化需要在启动器和应答器之间交换的多个消息。
-
12.发明授权Method of negotiating security parameters and authenticating users interconnected to a network 有权协商安全参数和认证与网络互连的用户的方法公开(公告)号:US07574603B2
公开(公告)日:2009-08-11
申请号:US10713980
申请日:2003-11-14
IPC分类号: H04L9/00
CPC分类号: H04L63/061 , H04L9/0844 , H04L63/0823 , H04L63/164 , H04L63/20
摘要: A method for authenticating and negotiating security parameters among two or more network devices is disclosed. The method has a plurality of modes including a plurality of messages exchanged between the two or more network devices. In a main mode, the two or more network devices establish a secure channel and select security parameters to be used during a quick mode and a user mode. In the quick mode, the two or more computers derive a set of keys to secure data sent according to a security protocol. The optional user mode provides a means of authenticating one or more users associated with the two or more network devices. A portion of the quick mode is conducted during the main mode thereby minimizing the plurality of messages that need to be exchanged between the initiator and the responder.
摘要翻译: 公开了一种用于在两个或多个网络设备之间认证和协商安全参数的方法。 该方法具有多个模式,包括在两个或多个网络设备之间交换的多个消息。 在主模式中,两个或多个网络设备建立安全通道并选择在快速模式和用户模式期间使用的安全参数。 在快速模式下,两台或多台计算机派生一组密钥来保护根据安全协议发送的数据。 可选的用户模式提供了认证与两个或多个网络设备相关联的一个或多个用户的手段。 快速模式的一部分在主模式期间进行,从而最小化需要在启动器和应答器之间交换的多个消息。
-
公开(公告)号:US20080240267A1
公开(公告)日:2008-10-02
申请号:US11731269
申请日:2007-03-30
申请人: Amer Hassan , Christian Huitema , Wayne Stark , Yunnan Wu , Philip Chou
发明人: Amer Hassan , Christian Huitema , Wayne Stark , Yunnan Wu , Philip Chou
IPC分类号: H04L27/28
CPC分类号: H04W72/08 , H04L1/0045 , H04L1/0071 , H04L5/0007 , H04L5/0041 , H04L5/0046 , H04L5/0058 , H04L5/006 , H04L2001/0093
摘要: A multiuser scheme allowing for a number of users, sets of user, or carriers to share one or more channels is provided. In the invention, the available channel bandwidth is subdivided into a number of equal-bandwidth subchannels according to standard OFDM practice. A transmitter transmits data on a set of OFDM subchannels that need not be contiguous in the spectrum or belong to the same OFDM channel. A receiver receives and decodes the data and detects errors on subchannels. The receiver then broadcasts the identity of those subchannels on which the error rate exceeds a specific threshold, and the transmitter may select different subchannels for transmission based on this information.
摘要翻译: 提供允许多个用户,一组用户或运营商共享一个或多个信道的多用户方案。 在本发明中,可用信道带宽根据标准OFDM实践被细分为多个等带宽子信道。 发射机在不需要在频谱中连续或属于相同OFDM信道的一组OFDM子信道上发送数据。 接收器接收并解码数据并检测子信道上的错误。 然后,接收机广播差错率超过特定阈值的子信道的身份,并且发射机可以基于该信息来选择用于发送的不同子信道。
-
公开(公告)号:US07406527B2
公开(公告)日:2008-07-29
申请号:US10002265
申请日:2001-11-02
申请人: Art Shelest , Christian Huitema
发明人: Art Shelest , Christian Huitema
CPC分类号: G06F9/44505
摘要: A method to negotiate computer settings in advance is presented. A prediction is made to determine if the computer setting will be needed, and if needed, whether a value outside of a normal range of values will be needed. A value for the computer setting that is outside of the normal range of values is determined and the value is set to the outside value. A value within the normal range of values is used if it was predicted that there is no need for a value outside of the normal range of values.
摘要翻译: 提出了一种提前协商计算机设置的方法。 进行预测以确定是否需要计算机设置,并且如果需要,是否需要在正常值范围之外的值。 确定超出正常值范围的计算机设置的值,并将该值设置为外部值。 如果预测不需要在正常值范围之外的值,则使用在正常范围内的值。
-
15.发明申请Providing guest users network access based on information read from a mobile telephone or other object 有权基于从移动电话或其他对象读取的信息来提供访客用户网络访问公开(公告)号:US20070255837A1
公开(公告)日:2007-11-01
申请号:US11490591
申请日:2006-07-21
申请人: Amer A. Hassan , Andrew T. Baron , Christian Huitema , Deyun Wu , Mahmood H. Khadeer , Vishesh M. Parikh , Wajih Yahyaoui
发明人: Amer A. Hassan , Andrew T. Baron , Christian Huitema , Deyun Wu , Mahmood H. Khadeer , Vishesh M. Parikh , Wajih Yahyaoui
IPC分类号: G06F15/16
CPC分类号: H04L63/0853 , H04L63/104 , H04W12/04 , H04W12/08
摘要: Guest user are enabled to access network resources through an enterprise network using a guest user account. A guest user account may be created for a guest for a limited time. Guest account credentials of the guest account may be provided to the guest to use the guest account using any of a variety of techniques described herein, for example, by scanning a guest access card, credit card or mobile telephone of guest user, and providing the guest account credentials to the user based on the information obtained. A guest access management server may be configured to generate and maintain guest accounts, authenticate guest users, and track and log guest activity. A VLAN technology may be used to separate guest traffic from host enterprise traffic on the host enterprise network. After a guest user is authenticated, communications to and from the guest user may be routed to a guest VLAN.
摘要翻译: 访客用户启用访问用户帐户通过企业网络访问网络资源。 可以在有限的时间内为访客创建访客用户帐户。 访客帐户的访客帐户凭证可以被提供给访客以使用本文描述的各种技术中的任何一种使用客户账户,例如通过扫描访客用户的访客访问卡,信用卡或移动电话,并且提供 基于获取的信息向用户提供客户帐户凭据。 访客访问管理服务器可以被配置为生成和维护访客帐户,验证访客用户以及跟踪和记录访客活动。 可以使用VLAN技术将客户流量与主机企业网络上的主机企业流量进行分离。 在访客用户被认证之后,与来宾用户的通信可以被路由到来宾VLAN。
-
公开(公告)号:US20070220134A1
公开(公告)日:2007-09-20
申请号:US11276798
申请日:2006-03-15
申请人: Kim Cameron , Arun Nanda , Christian Huitema , Carl Ellison
发明人: Kim Cameron , Arun Nanda , Christian Huitema , Carl Ellison
IPC分类号: G06F15/173
CPC分类号: H04L63/1441 , G06F21/31 , G06F2221/2119 , H04L63/126 , H04L63/1483 , H04L67/02
摘要: A computer system is configured to verify a connection to a web site. The computer system includes a user interface programmed to receive a uniform resource locator and a call sign associated with the web site. The computer system also includes a validator module programmed to calculate a hash value based on the uniform resource locator, a public key associated with the web site, and a salt, and the validator being programmed to compare the hash value to the call sign to verify the connection to the web site.
摘要翻译: 计算机系统被配置为验证到网站的连接。 计算机系统包括被编程为接收统一资源定位符的用户界面和与该网站相关联的呼号。 该计算机系统还包括一个验证器模块,该验证器模块被编程为基于统一资源定位器计算散列值,与该网站相关联的公共密钥和一个盐,并且该验证器被编程为将散列值与呼号进行比较以验证 与网站的连接。
-
17.发明申请公开(公告)号:US20070124625A1
公开(公告)日:2007-05-31
申请号:US11290144
申请日:2005-11-30
申请人: Amer Hassan , Deyun Wu , Christian Huitema , Vishesh Parikh
发明人: Amer Hassan , Deyun Wu , Christian Huitema , Vishesh Parikh
IPC分类号: G06F11/00
CPC分类号: G06F11/076 , G06F11/079 , H04L1/0009 , H04L1/002 , H04L1/20 , H04L43/50
摘要: Applicants have discovered that error detection techniques, such as Forward Error Correction techniques, may be used to predict the degradation below a certain threshold of an ability to accurately convey information on a communication channel, for example, to predict a failure of the communication channel. In response, transmission and/or reception of information on the channel may be adapted, for example, to prevent the degradation below the threshold, e.g., prevent channel failure. Predicting the degradation may be based, at least in part, on data transmission error information corresponding to one or more blocks of information received on the channel and may include determining an error rate pattern over time. Based on these determinations, the degradation below the threshold may be predicted and the transmission and/or reception adapted. Adapting may include initiating use of a different error encoding scheme and/or using an additional communication channel to convey information.
摘要翻译: 申请人已经发现,诸如前向纠错技术之类的错误检测技术可用于预测低于在通信信道上精确传送信息的能力的某个阈值以下的劣化,例如,以预测通信信道的故障。 作为响应,信道上的信息的传输和/或接收可以适应于例如防止劣化到阈值以下,例如防止信道故障。 可以至少部分地基于与信道上接收的一个或多个信息块相对应的数据传输错误信息来预测劣化,并且可以包括随时间确定错误率模式。 基于这些确定,可以预测低于阈值的劣化,并且传输和/或接收适应。 适应可以包括启动使用不同的错误编码方案和/或使用附加通信信道来传达信息。
-
公开(公告)号:US20070104218A1
公开(公告)日:2007-05-10
申请号:US11268800
申请日:2005-11-08
申请人: Amer Hassan , Christian Huitema , Thomas Kuehnel , Vishesh Parikh
发明人: Amer Hassan , Christian Huitema , Thomas Kuehnel , Vishesh Parikh
IPC分类号: H04J3/22
摘要: Systems and methods are disclosed for adapting a communication system to varying conditions. Using some form of discovery protocol, the communication standards supported by at least two communicants are determined. Each communicant may then periodically monitor the quality of the channel established by the communication standard and dynamically select a set of one or more communication standards to use for communicating. Further, when communicants share common non-standard parameterized implementations of communication standards, changes to the protocols which the communication standards comprise can be used to add options for a more dynamic response to changing conditions than is possible when adhering only to an established communication standard.
摘要翻译: 公开了用于使通信系统适应不同条件的系统和方法。 使用某种形式的发现协议,确定由至少两个通信者支持的通信标准。 然后,每个通信者可以周期性地监视由通信标准建立的信道的质量,并动态地选择一组用于通信的通信标准。 此外,当通信者共享通信标准的公共非标准参数化实现时,可以使用通信标准包括的协议的改变来增加用于对仅在遵循建立的通信标准的情况下可变的条件的更多动态响应的选项。
-
公开(公告)号:US20060242301A1
公开(公告)日:2006-10-26
申请号:US11112040
申请日:2005-04-22
申请人: Noah Horton , Ravi Rao , Radu Simionescu , Todd Manion , Christian Huitema
发明人: Noah Horton , Ravi Rao , Radu Simionescu , Todd Manion , Christian Huitema
IPC分类号: G06F15/16
CPC分类号: H04L29/12 , H04L29/12047 , H04L61/15 , H04L67/104
摘要: A method of converting a peer name to a PNRP DNS is disclosed. The method may take a peer name and encode it into a common DNS name. The method may also take a PNRP DNS name and convert it to a peer name.
-
公开(公告)号:US07065587B2
公开(公告)日:2006-06-20
申请号:US09942164
申请日:2001-08-29
申请人: Christian Huitema , John L. Miller
发明人: Christian Huitema , John L. Miller
IPC分类号: G06F15/73
CPC分类号: H04L29/12066 , H04L29/12811 , H04L61/1511 , H04L61/6009 , H04L67/104 , H04L67/1065
摘要: A serverless name resolution protocol ensures convergence despite the size of the network, without requiring an ever-increasing cache and with a reasonable numbers of hops. This convergence is ensured through a multi-level cache and a proactive cache initialization strategy. The multi-level cache is built based on a circular number space. Each level contains information from different levels of slivers of the circular space. A mechanism is included to add a level to the multi-level cache when the node determines that the last level is full. A peer-to-peer name resolution protocol (PNRP) includes a mechanism to allow resolution of names which are mapped onto the circular number space through a hash function. Further, the PNRP may also operate with the domain name system by providing each node with an identification consisting of a domain name service (DNS) component and a unique number.
-
-
-
-
-
-
-
-
-
搜索结果
135 条记录 (耗时 0.026 秒)
