公开(公告)号：US09535805B2

公开(公告)日：2017-01-03

申请号：US12717270

申请日：2010-03-04

Applicant: Krishnan Ananthanarayanan ,  Vijay Manian ,  Sankaran Narayanan ,  Dhigha Sekharan

Inventor： Krishnan Ananthanarayanan ,  Vijay Manian ,  Sankaran Narayanan ,  Dhigha Sekharan

IPC: G06F15/16 ,  G06F11/20 ,  H04L29/08

CPC classification number: G06F11/2038 ,  G06F11/2033 ,  G06F11/2048 ,  H04L67/1019 ,  H04L67/1034 ,  H04L67/1036

Abstract: Resilient routing management approaches are provided based on primary/backup and failover/failback relationships in a clustered network environment, where each user and/or resource is assigned to a primary cluster and at least one backup cluster. A distributed handover mechanism enables global knowledge of primary/backup relationships between clusters and their assigned users or resources.

Abstract translation: 基于集群网络环境中的主/备份和故障转移/故障恢复关系提供弹性路由管理方法，其中每个用户和/或资源分配给主集群和至少一个备份集群。 分布式切换机制实现了集群与其分配的用户或资源之间的主/备份关系的全球知识。

公开(公告)号：US20160353326A1

公开(公告)日：2016-12-01

申请号：US15103490

申请日：2015-12-22

Applicant: Telefonaktiebolaget LM Ericsson (publ)

Inventor： Oscar Novo Diaz ,  Nicklas Beijar

IPC: H04W28/08 ,  H04W76/06

CPC classification number: H04W28/085 ,  H04L67/1036 ,  H04L67/12 ,  H04W76/34 ,  H04W88/16

Abstract: The present disclosure relates to balancing load amongst different capillary-cellular gateways (24) to indirectly account for load attributable to self-managed devices (27) that are not directly managed by a management node (28). Embodiments include a method implemented by a management node (28) that directly manages managed device(s) (26) in capillary network(s) (16). The method comprises determining, for each of the managed device(s) (26), a weight metric that describes a collective load attributable to not only the managed device (26) but also to any self-managed devices (27) that connect to the cellular network (15) via the managed device (26). The method also comprises balancing load amongst the capillary-cellular gateways (24) based on the weight metrics, by requesting that at least one managed device (26) move its entire collective load to a different capillary-cellular gateway (24) or reduce its weight metric by shedding load.

Abstract translation: 本公开涉及平衡不同毛细管蜂窝网关（24）之间的负载以间接地考虑归因于管理节点（28）不直接管理的自管理设备（27）的负载。 实施例包括由管理节点（28）实现的方法，其直接管理毛细管网络（16）中的被管理设备（26）。 该方法包括为每个被管理设备（26）确定描述不仅归因于被管理设备（26）的总体负载的权重度量，还针对连接到被管理设备（26）的任何自管理设备（27） 蜂窝网络（15）经由被管理设备（26）。 该方法还包括通过请求至少一个被管理设备（26）将其整个集体负载移动到不同的毛细管蜂窝网关（24）或者减少其毛细管蜂窝网关（24），来平衡毛细管蜂窝网关（24）之间的负载，基于权重度量 通过减轻负载的重量度量。

公开(公告)号：US09503447B2

公开(公告)日：2016-11-22

申请号：US14168026

申请日：2014-01-30

Applicant: Svetoslav Manolov ,  Diyan Yordanov ,  Petio Petev ,  Bojidar Kadrev

Inventor： Svetoslav Manolov ,  Diyan Yordanov ,  Petio Petev ,  Bojidar Kadrev

IPC: G06F15/16 ,  H04L29/06 ,  H04L29/08 ,  G06F9/54

CPC classification number: H04L63/0823 ,  G06F9/54 ,  H04L63/168 ,  H04L67/02 ,  H04L67/10 ,  H04L67/1031 ,  H04L67/1036 ,  H04L67/42

Abstract: Secure communication between processes in cloud platform may be performed by receiving a request from a client application process hosted in an application virtual machine at a load balancer. A first secure communication channel is established between the client application process and the load balancer. The first secure communication channel is encrypted with the client certificate. The first secure communication channel is terminated at the load balancer. A service process in a service virtual machine is identified based on the request received from the client application process. A new request is sent to the service virtual machine to establish a second secure communication channel between the load balancer and the service virtual machine. The load balancer certificate signed by the internal certificate authority is validated at the service virtual machine. Upon successful validation of the load balancer certificate, the second secure communication channel is accepted at the service virtual machine.

Abstract translation: 可以通过在负载平衡器处接收来自托管在应用虚拟机中的客户端应用进程的请求来执行云平台中的进程之间的安全通信。 在客户端应用进程和负载平衡器之间建立第一个安全通信通道。 第一个安全通信通道用客户端证书加密。 第一个安全通信通道在负载平衡器处终止。 基于从客户端应用进程接收到的请求，识别服务虚拟机中的服务进程。 向服务虚拟机发送新请求，以在负载均衡器和服务虚拟机之间建立第二安全通信信道。 由内部认证机构签名的负载平衡器证书在服务虚拟机上进行验证。 在成功验证负载平衡器证书后，服务虚拟机接受第二安全通信通道。

公开(公告)号：US09432864B2

公开(公告)日：2016-08-30

申请号：US13962071

申请日：2013-08-08

Applicant: Alcatel-Lucent Canada, Inc.

Inventor： Peter K. Jorgensen ,  Robert A. Mann ,  Mikael Vihtari

IPC: G06F15/16 ,  H04W24/08 ,  H04L29/08 ,  H04L12/801 ,  H04L12/14 ,  H04L29/06

CPC classification number: H04W24/08 ,  H04L12/1407 ,  H04L47/12 ,  H04L63/0892 ,  H04L67/1036 ,  H04L67/1097 ,  H04L67/28 ,  H04L67/327

Abstract: Various exemplary embodiments relate to a method and related network node including one or more of the following: receiving a first Diameter message at the DRA; evaluating a first rule, including accessing data from a generic binding context object including: locating a record associated with a key specified by the first rule, and retrieving the data from the record; and transmitting a message based on the evaluation of the first rule. Various embodiments additionally relate to receiving a second Diameter message at the DRA; and evaluating a second rule, including accessing the generic binding context object, including storing the data in the record associated with the key.

Abstract translation: 各种示例性实施例涉及包括以下中的一个或多个的方法和相关网络节点：在DRA处接收第一Diameter消息; 评估第一规则，包括从通用绑定上下文对象访问数据，包括：定位与由所述第一规则指定的密钥相关联的记录，以及从所述记录检索所述数据; 以及基于所述第一规则的评估来发送消息。 各种实施例还涉及在DRA处接收第二Diameter消息; 以及评估第二规则，包括访问所述通用绑定上下文对象，包括将所述数据存储在与所述密钥相关联的记录中。

公开(公告)号：US20160112403A1

公开(公告)日：2016-04-21

申请号：US14858943

申请日：2015-09-18

Applicant: Barracuda Networks, Inc.

Inventor： Fleming SHI ,  Luo WANG

IPC: H04L29/06

CPC classification number: H04L9/3263 ,  H04L9/0643 ,  H04L9/14 ,  H04L9/302 ,  H04L63/0218 ,  H04L63/0227 ,  H04L63/0815 ,  H04L63/0823 ,  H04L63/105 ,  H04L63/107 ,  H04L67/1002 ,  H04L67/1036

Abstract: A new approach is proposed that contemplates systems and methods to support bulk authentication of an appliance associated with a user to all cloud-based services the appliance intends to access in one transaction instead of authenticating the appliance against each of the services individually. First, the appliance generates and transmits to an authentication service cluster an authentication request that includes its identification and authentication credentials in order to access to a plurality of services. Upon receiving the authentication request, the authentication service cluster authenticates the appliance for all of the services to be accessed based on the information in the authentication request. Once the appliance is authenticated, the authentication service cluster then retrieves entitlement information of the services to be accessed by the appliance, and identifies the service clusters/nodes that the appliance will connect to for the services with the fastest response time.

Abstract translation: 提出了一种新的方法，其考虑系统和方法来支持与用户相关联的设备的批量认证到设备打算在一个事务中访问的所有基于云的服务，而不是单独地针对每个服务验证设备。 首先，设备生成并向认证服务集群发送包括其身份验证凭证以便访问多个服务的认证请求。 认证服务集群在接收到认证请求后，根据认证请求中的信息对所有要访问的服务进行认证。 一旦设备被认证，认证服务集群然后检索设备要访问的服务的授权信息，并以最快的响应时间标识设备将为服务连接的服务集群/节点。

公开(公告)号：US09270750B1

公开(公告)日：2016-02-23

申请号：US14312985

申请日：2014-06-24

Applicant: Jisto Inc.

Inventor： Aleksandr Biberman ,  Andrey Turovsky ,  Brad Cordova

IPC: G06F15/16 ,  H04L29/08

CPC classification number: H04L67/1036 ,  G06F9/46 ,  G06F9/50 ,  H04L67/10 ,  H04L67/104

Abstract: Various embodiments of the invention provide methods and systems for providing a distributed computing platform. Tasks for execution are received from a remote computer and a set of computation users are identified to execute the set of computation task segments. The tasks are distributed to the set of computation users a solution segment is received from each computation user in the set of computation users to generate a set of solution segments, which are combined into a solution.

Abstract translation: 本发明的各种实施例提供了用于提供分布式计算平台的方法和系统。 从远程计算机接收用于执行的任务，并且识别一组计算用户以执行该组计算任务段。 这些任务被分配给一组计算用户，在该组计算用户中从每个计算用户接收到一个解决方案段，以生成一组解决方案，将其组合成一个解决方案。

公开(公告)号：US20160036709A1

公开(公告)日：2016-02-04

申请号：US14881737

申请日：2015-10-13

Applicant: Hewlett-Packard Development Company, L.P.

Inventor： Ramsundar Janakiraman ,  Avinash Sridharan ,  Ravinder Verma ,  Prasad Palkar

IPC: H04L12/851 ,  H04L29/06 ,  H04L12/743 ,  H04L29/08

CPC classification number: H04L47/2433 ,  H04L45/7457 ,  H04L67/1036 ,  H04L69/22

Abstract: According to one embodiment, a method comprises an operation of determining whether an ingress control message is locally terminated control traffic on a digital device prior to the ingress control message being forwarded to a hardware processor of the digital device for processing. A priority is assigned to the ingress control message based on information within the ingress control message, if the ingress control message is determined to be locally terminated control logic.

Abstract translation: 根据一个实施例，一种方法包括在入口控制消息被转发到数字设备的硬件处理器以进行处理之前，确定进入控制消息是否本地终止在数字设备上控制业务的操作。 如果入口控制消息被确定为本地终止控制逻辑，则基于入口控制消息内的信息将优先级分配给入口控制消息。

公开(公告)号：US20160028826A1

公开(公告)日：2016-01-28

申请号：US14802218

申请日：2015-07-17

Applicant: CEIVA Logic Inc.

Inventor： Dean Schiller ,  Paul Yanover

IPC: H04L29/08 ,  H04L29/06 ,  H04L12/58

CPC classification number: H04L67/12 ,  H04L29/06 ,  H04L51/066 ,  H04L63/102 ,  H04L67/1014 ,  H04L67/1017 ,  H04L67/1036 ,  H04L67/36 ,  H04L69/329

Abstract: A method and apparatus for distributing content via a communication network is presented. In one or more embodiments, the present invention comprises apparatus for receiving content from a server system. In one or more embodiments, the apparatus comprises a central processing unit, a video controller, a communications interface, and a memory comprising computer readable instructions for causing said apparatus to perform a variety of functions. In one or more embodiments, the computer readable instructions comprise instructions for causing the apparatus, upon connection to a power source and a communications source, to initiate a communications session with the server system. In one or more embodiments, the computer readable instructions comprise instructions to cause the apparatus to prompt a user of said apparatus to create an account at the server system.

Abstract translation: 提出了一种通过通信网络分发内容的方法和装置。 在一个或多个实施例中，本发明包括用于从服务器系统接收内容的装置。 在一个或多个实施例中，该装置包括中央处理单元，视频控制器，通信接口和包括用于使所述设备执行各种功能的计算机可读指令的存储器。 在一个或多个实施例中，计算机可读指令包括用于在连接到电源和通信源时引起该装置发起与服务器系统的通信会话的指令。 在一个或多个实施例中，计算机可读指令包括使得设备提示所述设备的用户在服务器系统处创建帐户的指令。

公开(公告)号：US20150381719A1

公开(公告)日：2015-12-31

申请号：US14843127

申请日：2015-09-02

Applicant: AT&T Intellectual Property I, L.P.

Inventor： James E. Jackson ,  Chaoxin Qiu ,  Mehrad Yasrebi

IPC: H04L29/08 ,  H04L29/06

CPC classification number: H04L65/1073 ,  H04L12/66 ,  H04L41/50 ,  H04L47/286 ,  H04L47/765 ,  H04L61/1511 ,  H04L61/2007 ,  H04L65/1006 ,  H04L65/1016 ,  H04L67/1036 ,  H04M7/006

Abstract: A mechanism controls global synchronization, or registration floods, that may result when a large number of endpoints in a Voice over Internet Protocol (VoIP) network such as an Internet Protocol Multimedia Subsystem (IMS) come online simultaneously after a catastrophic failure. The mechanism allows the Domain Name System (DNS) infrastructure to efficiently control the overload condition by registering user end points with backup border elements, and by staggering and by randomizing the time-to-live (TTL) parameter in registrations with backup border elements.

Abstract translation: 一种机制控制全球同步或注册洪水，当互联网协议多媒体子系统（IMS）上的互联网协议语音（VoIP）网络中的大量端点在灾难性故障之后同时上线时可能导致。 该机制允许域名系统（DNS）基础设施通过注册具有备份边界元素的用户终点以及通过在备份边界元素的注册中随机分配生存时间（TTL）参数来有效地控制过载状况。

公开(公告)号：US09219705B2

公开(公告)日：2015-12-22

申请号：US11768083

申请日：2007-06-25

Applicant: Bill Heinson ,  Jason A. Antonelli ,  Thomas Jeyaseelan ,  Jacob Kim ,  Amy McDonald ,  Greg Phipps

Inventor： Bill Heinson ,  Jason A. Antonelli ,  Thomas Jeyaseelan ,  Jacob Kim ,  Amy McDonald ,  Greg Phipps

IPC: H04L29/12 ,  H04L29/08

CPC classification number: H04L61/1511 ,  H04L29/12066 ,  H04L29/12132 ,  H04L61/1552 ,  H04L67/1002 ,  H04L67/1023 ,  H04L67/1036

Abstract: Lookup requests received by a domain name service (DNS) are processed based on the actual location of data associated with a requested content page rather than a domain mapping of IP addresses. A DNS server which receives a request initiates a query for the location of user data associated with the request based on an object handle contained in a domain name of the request. The location data is used to construct an IP address which is provided in response to the IP lookup request received by the DNS server. The DNS system may be used to provide IP addresses for a scaled web-based networking service, alternate versions of a service and a service implementing rolling upgrades.

Abstract translation: 基于与所请求的内容页面相关联的数据的实际位置而不是IP地址的域映射来处理由域名服务（DNS）接收到的查找请求。 接收请求的DNS服务器基于包含在请求的域名中的对象句柄来发起与请求相关联的用户数据的位置的查询。 位置数据用于构建响应于DNS服务器接收的IP查询请求而提供的IP地址。 DNS系统可用于为缩放的基于网络的网络服务，服务的替代版本和实施滚动升级的服务提供IP地址。