-
21.发明授权Method and apparatus for protecting networks from unauthorized applications 有权用于保护网络免受未经授权的应用的方法和设备公开(公告)号:US08230513B2
公开(公告)日:2012-07-24
申请号:US13169627
申请日:2011-06-27
申请人: Wenfeng Chen , Michel Ouellette , Delfin Montuno , Kent Felske
发明人: Wenfeng Chen , Michel Ouellette , Delfin Montuno , Kent Felske
IPC分类号: H04L29/06
CPC分类号: H04L67/104 , H04L63/0227 , H04L63/145 , H04L67/1085
摘要: A traffic controller is provided which integrates black-box tests of unauthorized applications to extract application characteristics from associated Internet traffic, exploits the networking information learned by host clients, actively scans and controls hosts on the corporate network, and dynamically configures a corporate firewall to block traffic to and from critical application network elements. As a result, the traffic controller effectively manages unauthorized applications and their associated traffic in a corporate environment.
摘要翻译: 提供流量控制器,集成了未经授权的应用程序的黑匣子测试,从相关的Internet流量中提取应用特征,利用主机客户学习的网络信息,主动扫描和控制企业网络上的主机,并动态配置企业防火墙以阻止 来往关键应用网络元件的流量。 因此,流量控制器可有效地管理未经授权的应用程序及其在企业环境中的相关流量。
-
22.发明申请Method and Apparatus for Protecting Networks from Unauthorized Applications 有权用于保护网络免受未经授权的应用的方法和装置公开(公告)号:US20110320596A1
公开(公告)日:2011-12-29
申请号:US13169627
申请日:2011-06-27
申请人: Wenfeng Chen , Michel Ouellette , Delfin Montuno , Kent Felske
发明人: Wenfeng Chen , Michel Ouellette , Delfin Montuno , Kent Felske
IPC分类号: G06F15/173
CPC分类号: H04L67/104 , H04L63/0227 , H04L63/145 , H04L67/1085
摘要: A traffic controller is provided which integrates black-box tests of unauthorized applications to extract application characteristics from associated Internet traffic, exploits the networking information learned by host clients, actively scans and controls hosts on the corporate network, and dynamically configures a corporate firewall to block traffic to and from critical application network elements. As a result, the traffic controller effectively manages unauthorized applications and their associated traffic in a corporate environment.
摘要翻译: 提供流量控制器,集成了未经授权的应用程序的黑匣子测试,从相关的Internet流量中提取应用特征,利用主机客户学习的网络信息,主动扫描和控制企业网络上的主机,并动态配置企业防火墙以阻止 来往关键应用网络元件的流量。 因此,流量控制器可有效地管理未经授权的应用程序及其在企业环境中的相关流量。
-
23.发明授权Active queue management using proportional control and rate-based information 有权使用比例控制和基于速率的信息进行活动队列管理公开(公告)号:US07277391B1
公开(公告)日:2007-10-02
申请号:US10426763
申请日:2003-04-30
申请人: James Aweya , Michel Ouellette , Delfin Montuno , Kent Felske
发明人: James Aweya , Michel Ouellette , Delfin Montuno , Kent Felske
IPC分类号: G01R31/08
摘要: Disclosed is an Active Queue Management method and apparatus which uses traffic rate information for congestion control. Using a nonlinear fluid-flow model of Traffic Control Protocol, a proportional controller in a closed loop configuration with gain settings characterized for stable operation allows a matching of the aggregate rate of the active TCP connections to the available capacity. Further disclosed is a method for calculation of the regime of gains for which stable operation of a given network obtains. This approach allows for capacity matching while maintaining minimal queue size and high link utilization.
摘要翻译: 公开了一种使用业务速率信息进行拥塞控制的活动队列管理方法和装置。 使用流量控制协议的非线性流体流模型,闭环配置中的比例控制器具有用于稳定操作的增益设置,允许活动TCP连接的总速率与可用容量的匹配。 进一步公开了一种用于计算给定网络的稳定运行获得的增益方案的方法。 这种方法允许容量匹配,同时保持最小的队列大小和高的链路利用率。
-
公开(公告)号:US08934357B2
公开(公告)日:2015-01-13
申请号:US13044598
申请日:2011-03-10
CPC分类号: H04L41/5006 , H04L41/046 , H04L41/5003 , H04L41/5009 , H04L41/5038 , H04L41/5054 , H04L41/5058
摘要: Domains (multiple collaborating service providers) create service offerings between pairs of edge nodes that interconnect with other domains in the network. The service offerings may specify the available bandwidth, quality of service, reliability, available security, price, subscriber and service contextual specific and other SLA information. When a new service is to be created, the service definition is used along with information about the available service offerings to determine a set of networks to implement the service. Information associated with the service offerings may be flooded to all other networks. Alternatively, the service offering information may be provided to a trusted third party (SLA broker) which may provide SLA services on the network to select sets of domains to implement inter-domain services, and may also proxy to set up the service for the SLA requesting party. A hybrid approach may also be used wherein some SLA information is flooded and other information is retained in secret and provided only to the SLA broker.
-
25.发明申请Method and apparatus for discovering, negotiating, and provisioning end-to-end SLAs between multiple service provider domains 有权用于在多个服务提供商域之间发现,协商和提供端到端SLA的方法和装置公开(公告)号:US20090279444A1
公开(公告)日:2009-11-12
申请号:US12152085
申请日:2008-05-12
IPC分类号: H04L12/26
CPC分类号: H04L41/5006 , H04L41/046 , H04L41/5003 , H04L41/5009 , H04L41/5038 , H04L41/5054 , H04L41/5058
摘要: Domains (multiple collaborating service providers) create service offerings between pairs of edge nodes that interconnect with other domains in the network. The service offerings may specify the available bandwidth, quality of service, reliability, available security, price, subscriber and service contextual specific and other SLA information. When a new service is to be created, the service definition is used along with information about the available service offerings to determine a set of networks to implement the service. Information associated with the service offerings may be flooded to all other networks. Alternatively, the service offering information may be provided to a trusted third party (SLA broker) which may provide SLA services on the network to select sets of domains to implement inter-domain services, and may also proxy to set up the service for the SLA requesting party. A hybrid approach may also be used wherein some SLA information is flooded and other information is retained in secret and provided only to the SLA broker.
摘要翻译: 域(多个协作服务提供商)在与网络中的其他域互连的边缘节点之间创建服务提供。 服务提供可以指定可用带宽,服务质量,可靠性,可用安全性,价格,订户和服务上下文特定和其他SLA信息。 当要创建新服务时,将使用服务定义以及有关可用服务产品的信息来确定一组实现该服务的网络。 与服务提供相关联的信息可能被洪泛到所有其他网络。 或者,可以将服务提供信息提供给可以在网络上提供SLA服务以选择一组域以实现域间服务的可信第三方(SLA代理),并且还可以代理为SLA建立服务 请求方。 还可以使用混合方法,其中一些SLA信息被淹没,并且其他信息被保密并且仅提供给SLA代理。
-
26.发明申请Method and apparatus for encoding a plurality of pre-defined codes into a search key and for locating a longest matching pre-defined code 失效用于将多个预定义代码编码到搜索关键字中并用于定位最长匹配的预定义代码的方法和装置公开(公告)号:US20050157724A1
公开(公告)日:2005-07-21
申请号:US11034839
申请日:2005-01-14
申请人: Delfin Montuno , James Aweya
发明人: Delfin Montuno , James Aweya
CPC分类号: H04L45/00 , H04L45/54 , Y10S707/99933
摘要: A method and apparatus for locating in a list of pre-defined codes, a longest code matching a given code. The method and apparatus involve producing a search mask encoding at least one portion of said given code and comparing the search mask to a search key having a Prefix Node Bit Array (PNBA) in which a bit is set active in at least one of a plurality of bit positions corresponding to possible bit combinations of bits in a bit string having a length equal to or less than the longest predefined code in the plurality of pre-defined codes and arranged by the lengths of possible bit combinations and by numeric values of the bit combinations, to identify a common active bit position in the search key and the search mask corresponding to one of the pre-defined codes having a length greater than all others of said pre-defined codes which correspond to common active bit positions.
摘要翻译: 用于定位在预定义代码列表中的方法和装置,其是与给定代码匹配的最长代码。 所述方法和装置包括产生编码所述给定代码的至少一部分的搜索掩码,并且将搜索掩码与具有前缀节点位阵列(PNBA)的搜索关键字进行比较,其中将位设置为多个 对应于具有等于或小于多个预定义代码中的最长预定义代码的长度的比特串中的比特的可能比特组合的比特位置,并且由可能的比特组合的长度和比特的数值 组合,以识别搜索关键字中的公共活动比特位置和对应于具有大于对应于公共活动比特位置的所述预定义码的所有其他长度的预定义码之一的搜索掩码。
-
公开(公告)号:US08369220B1
公开(公告)日:2013-02-05
申请号:US12006128
申请日:2007-12-31
申请人: Bakul Khanna , Jozef Babiarz , Ali Labed , Delfin Montuno , Hesham El-Bakoury
发明人: Bakul Khanna , Jozef Babiarz , Ali Labed , Delfin Montuno , Hesham El-Bakoury
IPC分类号: H04L12/26
CPC分类号: H04L45/22 , H04L41/5022 , H04L41/5087 , H04L43/08 , H04L43/0888 , H04L45/10 , H04L45/125 , H04L45/24 , H04L45/38
摘要: To route a flow of elastic traffic, plural candidate paths are identified for the flow of elastic traffic. A particular path from among the plural candidate paths is selected to route the flow of elastic traffic according to criteria including numbers of flows on respective candidate paths and measured performances of the respective candidate paths.
摘要翻译: 为了布置弹性交通流,针对弹性交通流量识别出多个候选路径。 选择多个候选路径中的特定路径,以根据包括各个候选路径上的流数和各个候选路径的测量性能的标准来路由弹性业务流。
-
28.发明申请Method and Apparatus for Discovering, Negotiating, and Provisioning End-to-End SLAS Between Multiple Service Provider Domains 有权用于在多个服务提供商域之间发现,协商和配置端到端SLAS的方法和设备公开(公告)号:US20110161526A1
公开(公告)日:2011-06-30
申请号:US13044598
申请日:2011-03-10
IPC分类号: G06F15/16
CPC分类号: H04L41/5006 , H04L41/046 , H04L41/5003 , H04L41/5009 , H04L41/5038 , H04L41/5054 , H04L41/5058
摘要: Domains (multiple collaborating service providers) create service offerings between pairs of edge nodes that interconnect with other domains in the network. The service offerings may specify the available bandwidth, quality of service, reliability, available security, price, subscriber and service contextual specific and other SLA information. When a new service is to be created, the service definition is used along with information about the available service offerings to determine a set of networks to implement the service. Information associated with the service offerings may be flooded to all other networks. Alternatively, the service offering information may be provided to a trusted third party (SLA broker) which may provide SLA services on the network to select sets of domains to implement inter-domain services, and may also proxy to set up the service for the SLA requesting party. A hybrid approach may also be used wherein some SLA information is flooded and other information is retained in secret and provided only to the SLA broker.
摘要翻译: 域(多个协作服务提供商)在与网络中的其他域互连的边缘节点之间创建服务提供。 服务提供可以指定可用带宽,服务质量,可靠性,可用安全性,价格,订户和服务上下文特定和其他SLA信息。 当要创建新服务时,将使用服务定义以及有关可用服务产品的信息来确定一组实现该服务的网络。 与服务产品相关联的信息可能被洪泛到所有其他网络。 或者,可以将服务提供信息提供给可以在网络上提供SLA服务的可信第三方(SLA代理),以选择一组域来实现域间服务,并且还可以代理为SLA建立服务 请求方。 还可以使用混合方法,其中一些SLA信息被淹没,并且其他信息被保密并且仅提供给SLA代理。
-
29.发明授权Method and apparatus for discovering, negotiating, and provisioning end-to-end SLAs between multiple service provider domains 有权用于在多个服务提供商域之间发现,协商和提供端到端SLA的方法和装置公开(公告)号:US07924715B2
公开(公告)日:2011-04-12
申请号:US12152085
申请日:2008-05-12
IPC分类号: H04J1/16
CPC分类号: H04L41/5006 , H04L41/046 , H04L41/5003 , H04L41/5009 , H04L41/5038 , H04L41/5054 , H04L41/5058
摘要: Domains (multiple collaborating service providers) create service offerings between pairs of edge nodes that interconnect with other domains in the network. The service offerings may specify the available bandwidth, quality of service, reliability, available security, price, subscriber and service contextual specific and other SLA information. When a new service is to be created, the service definition is used along with information about the available service offerings to determine a set of networks to implement the service. Information associated with the service offerings may be flooded to all other networks. Alternatively, the service offering information may be provided to a trusted third party (SLA broker) which may provide SLA services on the network to select sets of domains to implement inter-domain services, and may also proxy to set up the service for the SLA requesting party. A hybrid approach may also be used wherein some SLA information is flooded and other information is retained in secret and provided only to the SLA broker.
摘要翻译: 域(多个协作服务提供商)在与网络中的其他域互连的边缘节点之间创建服务提供。 服务提供可以指定可用带宽,服务质量,可靠性,可用安全性,价格,订户和服务上下文特定和其他SLA信息。 当要创建新服务时,将使用服务定义以及有关可用服务产品的信息来确定一组实现该服务的网络。 与服务产品相关联的信息可能被洪泛到所有其他网络。 或者,可以将服务提供信息提供给可以在网络上提供SLA服务的可信第三方(SLA代理),以选择一组域来实现域间服务,并且还可以代理为SLA建立服务 请求方。 还可以使用混合方法,其中一些SLA信息被淹没,并且其他信息被保密并且仅提供给SLA代理。
-
公开(公告)号:US07409020B1
公开(公告)日:2008-08-05
申请号:US10732532
申请日:2003-12-11
IPC分类号: H04B1/10
CPC分类号: H03L7/093 , H04J3/0632
摘要: A technique for filter-enhanced clock synchronization is disclosed. In one particular exemplary embodiment, the technique may be realized by/as a method for filter-enhanced clock synchronization. The method comprises subjecting a clock error signal to a first exponentially weighted moving average (EWMA) filter to generate a first output signal, where the first EWMA filter comprises a first gain element. And the method further comprises subjecting the first output signal to a second EWMA filter to generate a second output signal, where the second EWMA filter comprises a second gain element and the second EWMA filter is coupled with a feedback loop having a delay element and a summing junction.
摘要翻译: 公开了一种用于滤波器增强时钟同步的技术。 在一个特定的示例性实施例中,该技术可以通过/作为滤波器增强时钟同步的方法来实现。 该方法包括使时钟误差信号经受第一指数加权移动平均(EWMA)滤波器以产生第一输出信号,其中第一EWMA滤波器包括第一增益元件。 并且该方法还包括使第一输出信号经受第二EWMA滤波器以产生第二输出信号,其中第二EWMA滤波器包括第二增益元件,而第二EWMA滤波器与具有延迟元件的反馈回路耦合, 交界处
-
-
-
-
-
-
-
-
-
搜索结果
33 条记录 (耗时 0.023 秒)
