-
21.发明授权Method and apparatus to provide cryptographic identity assertion for the PSTN 有权为PSTN提供加密身份断言的方法和装置公开(公告)号:US08953771B2
公开(公告)日:2015-02-10
申请号:US11270017
申请日:2005-11-07
申请人: Daniel G. Wing
发明人: Daniel G. Wing
CPC分类号: H04L63/08 , H04L29/06027 , H04L63/18 , H04L65/1006 , H04M1/2535 , H04M3/42042 , H04M3/42059 , H04M7/0024 , H04M2242/22
摘要: The present application provides an authentication scheme that allows a device to provide additional authentication of a Publicly Switched Telephone Network (PSTN) identity assertion made in a PSTN call by also sending an Internet Protocol (IP) communication. The device sends the IP communication generally in parallel with the PSTN call. The IP communication includes a network identity assertion, which optionally may be authenticated using a cryptographically secure technique. The network identity assertion, being more difficult to falsify, provides additional authentication of the PSTN identity assertion.
摘要翻译: 本申请提供了一种认证方案,其允许设备通过还发送因特网协议(IP)通信来提供在PSTN呼叫中进行的公共交换电话网络(PSTN)身份断言的额外认证。 该设备通常与PSTN呼叫并行发送IP通信。 IP通信包括网络身份断言,其可选地可以使用加密安全技术来认证。 更难以伪造的网络身份断言提供对PSTN身份断言的附加认证。
-
22.发明授权公开(公告)号:US08402507B2
公开(公告)日:2013-03-19
申请号:US11867656
申请日:2007-10-04
申请人: Feng Cao , Daniel G. Wing
发明人: Feng Cao , Daniel G. Wing
CPC分类号: H04L63/20
摘要: In one embodiment, a network device generates a protection policy responsive to identifying undesired voice data traffic. The network device then distributes the generated protection policy along a call path used for transferring the undesired voice data traffic. The proxy may distribute the protection policy by inserting the protection policy in a call response or other message that traces the call path back to a calling endpoint.
摘要翻译: 在一个实施例中,网络设备响应于识别不期望的语音数据业务而生成保护策略。 然后,网络设备沿着用于传送不期望的语音数据业务的呼叫路径分配生成的保护策略。 代理可以通过将保护策略插入呼叫响应或跟踪呼叫路径回到呼叫端点的其他消息来分发保护策略。
-
公开(公告)号:US20120219153A1
公开(公告)日:2012-08-30
申请号:US13466598
申请日:2012-05-08
CPC分类号: H04L9/0827 , H04L9/083 , H04L63/0442 , H04L63/061 , H04L63/102 , H04L63/30 , H04L2209/60
摘要: Intercepting a secure communication session includes distributing a key from a key distribution point to establish a secure communication session between a first endpoint and a second endpoint. A secure channel is established between the key distribution point and an intercepting point. The intercepting endpoint may be determined to be authorized to intercept the secure communication session. The key is provided to the intercepting endpoint only if the intercepting endpoint is authorized to intercept the secure communication session, where the key provides the intercepting endpoint with access to intercept the secure communication session.
摘要翻译: 拦截安全通信会话包括从密钥分发点分配密钥以在第一端点和第二端点之间建立安全通信会话。 在密钥分发点和拦截点之间建立安全通道。 可以确定拦截端点被授权拦截安全通信会话。 仅当拦截端点被授权拦截安全通信会话时,密钥才被提供给拦截端点,其中密钥向拦截端点提供拦截安全通信会话的访问。
-
24.发明授权Monitoring of real-time transport protocol (RTP) packet flow along RTP path 有权监控沿RTP路径的实时传输协议(RTP)数据包流公开(公告)号:US08248942B2
公开(公告)日:2012-08-21
申请号:US12360247
申请日:2009-01-27
申请人: Daniel G. Wing , Ali C. Begen
发明人: Daniel G. Wing , Ali C. Begen
IPC分类号: G01R31/08
CPC分类号: H04L43/065 , H04L43/087
摘要: Techniques are provided herein to enable monitoring of a real-time transport protocol (RTP) packet flow in devices along the path that the RTP packet flow traversed from a source to a destination. A device that is a source or destination of a RTP packet flow transmits a monitor request message that requests one or more other devices along a path of the RTP packet flow to monitor the RTP packet flow. The device that is the source or destination of the RTP packet flow receives one or more monitoring reports from the one or more other devices along the path of the RTP packet flow. This allows a device that requested monitoring of the RTP packet flow to analyze the monitor reports in order to determine a location of a cause of reduced performance in the RTP packet flow. e.g., missing packets, overly delayed packets, etc.
摘要翻译: 本文提供了技术来实现沿着RTP分组流从源到目的地的路径的设备中的实时传输协议(RTP)分组流的监控。 作为RTP分组流的源或目的地的设备发送监视请求消息,该请求消息沿着RTP分组流的路径请求一个或多个其他设备以监视RTP分组流。 作为RTP分组流的源或目的地的设备从沿着RTP分组流的路径的一个或多个其他设备接收一个或多个监视报告。 这允许请求监视RTP分组流的设备分析监视器报告,以便确定在RTP分组流中性能降低的原因的位置。 例如丢失数据包,过度延迟的数据包等
-
公开(公告)号:US08175277B2
公开(公告)日:2012-05-08
申请号:US11116644
申请日:2005-04-28
IPC分类号: H04L9/08
CPC分类号: H04L9/0827 , H04L9/083 , H04L63/0442 , H04L63/061 , H04L63/102 , H04L63/30 , H04L2209/60
摘要: Intercepting a secure communication session includes distributing a key from a key distribution point to establish a secure communication session between a first endpoint and a second endpoint. A secure channel is established between the key distribution point and an intercepting point. The intercepting endpoint may be determined to be authorized to intercept the secure communication session. The key is provided to the intercepting endpoint only if the intercepting endpoint is authorized to intercept the secure communication session, where the key provides the intercepting endpoint with access to intercept the secure communication session.
摘要翻译: 拦截安全通信会话包括从密钥分发点分配密钥以在第一端点和第二端点之间建立安全通信会话。 在密钥分发点和拦截点之间建立安全通道。 可以确定拦截端点被授权拦截安全通信会话。 仅当拦截端点被授权拦截安全通信会话时,密钥才被提供给拦截端点,其中密钥向拦截端点提供拦截安全通信会话的访问。
-
公开(公告)号:US20120110152A1
公开(公告)日:2012-05-03
申请号:US12916716
申请日:2010-11-01
申请人: Daniel G. Wing , Michael A. Ramalho
发明人: Daniel G. Wing , Michael A. Ramalho
IPC分类号: G06F15/173 , H04L12/26
CPC分类号: H04L45/02 , H04L12/4633 , H04L45/20 , H04L45/26 , H04L65/608
摘要: In one embodiment a method and apparatus are provided that automatically establish an real time protocol (RTP) tunnel between an originator node or router and a terminator node or router, wherein the terminator node is close to a remote RTP peer. A method includes detecting a new flow of RTP packets wherein the RTP packets are encoded with a destination Internet Protocol (IP) address. Responsive to detecting the new flow, a probe is sent towards a same IP address as the destination IP address of the RTP packets. A response to the probe is received, the response including an identifier of a node that generated the response. Then, using the identifier, a tunnel is established with the node that generated the response, and thereafter compressed packets (compressed headers, compressed payloads, or both) are passed via the tunnel.
摘要翻译: 在一个实施例中,提供了一种方法和装置,其自动建立发起者节点或路由器与终端节点或路由器之间的实时协议(RTP)隧道,其中终止器节点靠近远程RTP对等体。 一种方法包括检测RTP分组的新流程,其中RTP分组用目的地因特网协议(IP)地址编码。 响应于检测新流,探测器被发送到与RTP分组的目的地IP地址相同的IP地址。 接收到对探测器的响应,响应包括产生响应的节点的标识符。 然后,使用标识符,建立与生成响应的节点的隧道,然后经由隧道传递压缩分组(压缩报头,压缩的有效载荷或两者)。
-
27.发明授权Intelligent ALG functionality in networks supporting endpoints performing network address translation 有权网络中的智能ALG功能支持执行网络地址转换的端点公开(公告)号:US07978703B2
公开(公告)日:2011-07-12
申请号:US12724271
申请日:2010-03-15
申请人: Vinay J. Pande , Kaushik Biswas , Jayesh Chokshi , Daniel G. Wing
发明人: Vinay J. Pande , Kaushik Biswas , Jayesh Chokshi , Daniel G. Wing
CPC分类号: H04L29/12556 , H04L29/125 , H04L61/2564 , H04L61/2585
摘要: In one embodiment, a signaling message is received from an endpoint. It is determined from the signaling message whether, prior to sending the signaling message, the endpoint performed network address translation on the body of the signaling message. If it is determined from the signaling message that, prior to sending the signaling message, the endpoint did not perform network address translation on the body of the signaling message, application layer gateway functionality is applied to the body of the signaling message such that a modified signaling message is generated.
摘要翻译: 在一个实施例中,从端点接收信令消息。 从信令消息确定在发送信令消息之前,终端是否在信令消息的主体上执行网络地址转换。 如果从信令消息确定,在发送信令消息之前,端点没有在信令消息的主体上执行网络地址转换,则应用层网关功能被应用于信令消息的主体,使得修改 生成信令消息。
-
公开(公告)号:US07822046B2
公开(公告)日:2010-10-26
申请号:US11564808
申请日:2006-11-29
IPC分类号: H04L12/56
CPC分类号: H04L47/724 , H04L47/10 , H04L47/11 , H04L47/2458 , H04L47/2491 , H04L47/70 , H04L47/748 , H04L47/805 , H04L65/80 , H04L67/28
摘要: In one embodiment, a reservation proxy monitors for received connectivity check messages or beginning-of-media-flow indication messages. When either type of message is observed, the reservation proxy requests resource allocation for a media flow associated with the received message. The amount of resource allocation requested may be coordinated by exchanging messages with a call controller or policy server for one of the endpoints of the media flow, or the amount of resource allocation may be identified within the received message.
摘要翻译: 在一个实施例中,预留代理监视所接收的连接性检查消息或媒体流指示消息的开始。 当观察到任一类型的消息时,预留代理请求与所接收消息相关联的媒体流的资源分配。 可以通过与媒体流的端点之一的呼叫控制器或策略服务器交换消息来协调所请求的资源分配的量,或者可以在所接收的消息内识别资源分配的量。
-
29.发明申请MONITORING OF REAL-TIME TRANSPORT PROTOCOL (RTP) PACKET FLOW ALONG RTP PATH 有权实时传输协议(RTP)分组流程在RTP路径监控公开(公告)号:US20100188989A1
公开(公告)日:2010-07-29
申请号:US12360247
申请日:2009-01-27
申请人: Daniel G. Wing , Ali C. Begen
发明人: Daniel G. Wing , Ali C. Begen
IPC分类号: G06F11/30
CPC分类号: H04L43/065 , H04L43/087
摘要: Techniques are provided herein to enable monitoring of a real-time transport protocol (RTP) packet flow in devices along the path that the RTP packet flow traversed from a source to a destination. A device that is a source or destination of a RTP packet flow transmits a monitor request message that requests one or more other devices along a path of the RTP packet flow to monitor the RTP packet flow. The device that is the source or destination of the RTP packet flow receives one or more monitoring reports from the one or more other devices along the path of the RTP packet flow. This allows a device that requested monitoring of the RTP packet flow to analyze the monitor reports in order to determine a location of a cause of reduced performance in the RTP packet flow. e.g., missing packets, overly delayed packets, etc.
摘要翻译: 本文提供了技术来实现沿着RTP分组流从源到目的地的路径的设备中的实时传输协议(RTP)分组流的监控。 作为RTP分组流的源或目的地的设备发送监视请求消息,该请求消息沿着RTP分组流的路径请求一个或多个其他设备以监视RTP分组流。 作为RTP分组流的源或目的地的设备从沿着RTP分组流的路径的一个或多个其他设备接收一个或多个监视报告。 这允许请求监视RTP分组流的设备分析监视器报告,以便确定在RTP分组流中性能降低的原因的位置。 例如丢失数据包,过度延迟的数据包等
-
30.发明授权Domain based routing for managing devices operating behind a network address translator 有权用于管理在网络地址转换器之后运行的设备的基于域的路由公开(公告)号:US07706371B1
公开(公告)日:2010-04-27
申请号:US11177160
申请日:2005-07-07
CPC分类号: H04L12/56 , G06F15/16 , H04L61/103 , H04L61/2514 , H04L61/2567 , H04L61/2592 , H04L2212/00
摘要: A domain based tunneling scheme allows a Network Management System (NMS) to manage devices in a private network operating behind a NAT boundary. A device in the private network provides the NMS with information including a public NAT IP address, a private device IP address, and a unique device identifier. The NMS uses the public NAT IP address to set up and maintain a tunnel to the private network. The NMS stores the NAT information and a tunnel identifier in a table entry associated with the device. The NMS then uses the tunnel and the contents of the table entry to conduct management operations with the device operating in the private network.
摘要翻译: 基于域的隧道方案允许网络管理系统(NMS)管理在NAT边界之后运行的专用网络中的设备。 私有网络中的一个设备向网管提供包括公共NAT IP地址,专用设备IP地址和唯一设备标识符等信息。 网管使用公网IP地址建立和维护到专网的隧道。 NMS将NAT信息和隧道标识符存储在与设备相关联的表条目中。 然后,NMS使用隧道和表条目的内容对在专用网络中运行的设备进行管理操作。
-
-
-
-
-
-
-
-
-
搜索结果
61 条记录 (耗时 0.028 秒)
