-
公开(公告)号:US20140024354A1
公开(公告)日:2014-01-23
申请号:US13551613
申请日:2012-07-18
申请人: Fadi Haik , Adi Ben-Dayan , Or Kaplan , Gilad Oren , Eran Yariv
发明人: Fadi Haik , Adi Ben-Dayan , Or Kaplan , Gilad Oren , Eran Yariv
CPC分类号: H04W52/0258 , G01C21/20 , G01S5/0018 , G01S5/0257 , G01S5/0278 , G01S5/0294 , H04W4/02 , H04W4/029 , H04W4/046 , H04W4/21 , H04W48/04 , H04W52/02 , H04W52/0251 , H04W52/0254 , H04W64/00 , Y02B70/30 , Y02D70/00 , Y02D70/142 , Y02D70/144 , Y02D70/146 , Y02D70/164 , Y02D70/166
摘要: Architecture that facilitates power conservation in mobile devices such as cell phones using prediction. The architecture is an algorithmic-based solution that transforms infrequently-captured geolocation data of an entity into a continuous probable location approximation. Given the location history and additional data about the recent location of the mobile device, the current location of the device can be estimated with some probability. Additionally, given the location history and additional data about the recent location of the device, the probability of the device actually being at a given point on a map is computed.
摘要翻译: 支持使用预测的移动设备(如手机)实现节能的体系结构。 该架构是一种基于算法的解决方案,将实体的不经常捕获的地理位置数据转换为连续可能的位置近似。 给定位置历史和关于移动设备的最近位置的附加数据,可以以某种概率估计设备的当前位置。 此外,考虑到位置历史和关于设备的最近位置的附加数据,计算设备实际在地图上给定点的概率。
-
公开(公告)号:US20130091197A1
公开(公告)日:2013-04-11
申请号:US13334065
申请日:2011-12-22
申请人: Avi Bar-Zeev , Gur Kimchi , Brian C. Beckman , Scott Isaacs , Meir Ben-Itay , Eran Yariv , Blaise Aguera y Arcas
发明人: Avi Bar-Zeev , Gur Kimchi , Brian C. Beckman , Scott Isaacs , Meir Ben-Itay , Eran Yariv , Blaise Aguera y Arcas
IPC分类号: G06F15/16
CPC分类号: H04L67/42 , G06F1/3203 , G06F1/3215 , H04L67/02 , H04L67/32 , H04L67/34
摘要: Architecture that embeds a server (a local server) inside a mobile device operating system (OS) close to the data (but under the OS services) such that the server has access to native capabilities, and offers an Internet-like frontend with which a browser or application can communicate. The local server appears as a web server, and small programs can be pushed into the local server from the browser or a remote server such that the local server can be made to perform work more effectively. Local and remote events can be triggered such as launching a browser (or other application(s)), initiating remote server calls, triggering battery save mode, locking the phone, etc. The local server can run a script execution environment such as node.js, an event driven I/O model where callbacks are invoked to handle emergent conditions (e.g., explicit requests, state changes, etc.).
摘要翻译: 将服务器(本地服务器)嵌入到靠近数据(但在OS服务下)的移动设备操作系统(OS)内的架构,以便服务器可以访问本地功能,并提供类似Internet的前端, 浏览器或应用程序可以进行通信。 本地服务器显示为Web服务器,小型程序可以从浏览器或远程服务器推送到本地服务器,从而可以使本地服务器更有效地执行工作。 可以触发本地和远程事件,例如启动浏览器(或其他应用程序),启动远程服务器呼叫,触发电池保存模式,锁定手机等。本地服务器可以运行脚本执行环境(如节点)。 js是一种事件驱动的I / O模型,其中调用回调来处理紧急情况(例如,显式请求,状态更改等)。
-
公开(公告)号:US20120316774A1
公开(公告)日:2012-12-13
申请号:US13156365
申请日:2011-06-09
申请人: Eran Yariv , Yair E. Geva , Fadi Haik
发明人: Eran Yariv , Yair E. Geva , Fadi Haik
IPC分类号: G01C21/00
CPC分类号: G01C21/26 , G01C21/3685
摘要: The disclosed architecture facilitates the capture of data associated with a specific geographic location, as captured by a mobile device of a user at the geographic location, for the purpose of guiding the user back to that specific geographic location. When applied to vehicles or other types of user mobility (e.g., walking) the architecture automatically detects that a user has controlled a means of transportation to a stationary (or parked) state, such as associated with a parked car. When the stationary state is reached, the location is detected (e.g., using user device sensing systems). Detection can include recording images, sounds, speech, geolocation data, etc., associated with the location and/or means of transportation. The user can configure a reminder to activate at the location to assist in the user recalling the location when returning to the means of transportation.
摘要翻译: 所公开的架构便于捕获与由地理位置处的用户的移动设备捕获的特定地理位置相关联的数据,以便将用户引导回该特定地理位置。 当应用于车辆或其他类型的用户移动性(例如,步行)时,架构自动检测用户已经将运输工具控制到静止(或停放)状态,例如与停放的汽车相关联的状态。 当达到静止状态时,检测位置(例如,使用用户设备感测系统)。 检测可以包括与位置和/或运输方式相关联的记录图像,声音,语音,地理定位数据等。 用户可以配置提醒以在该位置激活以帮助用户在返回到运输工具时召回该位置。
-
公开(公告)号:US20120295645A1
公开(公告)日:2012-11-22
申请号:US13110001
申请日:2011-05-18
申请人: Eran Yariv , Yair E. Geva , Fadi Haik
发明人: Eran Yariv , Yair E. Geva , Fadi Haik
CPC分类号: H04W4/12 , H04L12/1895 , H04L51/24 , H04L67/322 , H04W68/00
摘要: Architecture that enables alerts and notifications to have priorities and time/space durations. Non-critical alerts can be displayed in a non-obtrusive manner and alert/notifications coalesced. Alerts/notifications can be assigned priorities, thereby enabling the alerts/notifications to be non-intrusive to the user. Methods include detecting when the user is using a mobile phone (or other suitable device) and then sending the alert/notification in response to the detected use based on threshold criteria relative to an accumulated sum of alerts/notifications, and an importance level (e.g., of each). Additionally, alert/notification priority can be changed (e.g. elevated, lowered) according to time (when) and space (where), thereby enabling the user to be intrusively notified based on the level, even if not previously signaled. Time and space bounds (criteria) can be assigned to alerts/notifications for merger/grouping and/or set to be auto-dismissed if no longer applicable.
摘要翻译: 使警报和通知具有优先级和时间/空间持续时间的体系结构。 非关键警报可以以非突出的方式显示,警报/通知合并。 可以为警报/通知分配优先级,从而使警报/通知不会侵入用户。 方法包括检测用户何时使用移动电话(或其他合适的设备),然后响应于检测到的使用,基于相对于累加的警报/通知总和的阈值标准来发送警报/通知,以及重要性级别(例如, , 每个)。 此外,警报/通知优先级可以根据时间(何时)和空间(其中)改变(例如,升高,降低),从而使用户能够基于电平被静态地通知用户,即使以前没有被通知。 可以将时间和空间界限(条件)分配给用于合并/分组的警报/通知,和/或将其设置为自动关闭(如果不再适用)。
-
公开(公告)号:US20120239584A1
公开(公告)日:2012-09-20
申请号:US13052093
申请日:2011-03-20
申请人: Eran Yariv , Gur Kimchi , Barney Darryl Pell , Yair E. Gheva , Brian Beckman , Elad Ben-Israel
发明人: Eran Yariv , Gur Kimchi , Barney Darryl Pell , Yair E. Gheva , Brian Beckman , Elad Ben-Israel
CPC分类号: G01C21/3438
摘要: Turn-by-turn directions can guide a user to a dynamic destination, such as a person or a rendezvous location. The turn-by-turn directions enable one user to follow another or, alternatively, multiple people to rendezvous with each other. The selection can be via identifiers used in network contexts, such as social networking Individuals can select the circumstances under which their location can be revealed. Turn-by-turn directions enabling following utilize anticipated locations or predictions of likely destinations based on historical and contextual information. Turn-by-turn directions enabling rendezvous reference a rendezvous location, which is either the same for all users, or which differs among them. Also, the directions can reference intermediate, “staging”, locations from which further intermediate, or ultimate, destinations can be routed to.
摘要翻译: 转弯方向可以将用户引导到动态目的地,例如人或交会位置。 转弯方向使一个用户可以跟随另一个或另一个使用者彼此交会。 选择可以通过在网络环境中使用的标识符,例如社交网络。个人可以选择可以揭示其位置的情况。 根据历史和上下文信息,可以使用预期的位置或预测可能的目的地。 转弯方向使会合参考会合位置,对于所有用户来说都是相同的,或者它们之间有所不同。 此外,方向可以参考中间,“分期”,进一步中间或最终目的地可以路由到的位置。
-
公开(公告)号:US08266685B2
公开(公告)日:2012-09-11
申请号:US11804409
申请日:2007-05-18
IPC分类号: H04L29/06
CPC分类号: H04L63/0263 , G06F8/61 , G06F9/44505 , G06F21/57 , H04L41/0806 , H04L41/082
摘要: Embodiments of the invention are directed to a firewall installer that receives a set of configuration instructions for configuring a firewall in a declarative format that describes one or more rules to be implemented by the firewall, and that automatically configures the firewall. Providing a firewall installer that is capable of configuring a firewall based upon declarative input rather than procedural process-oriented input facilitates administration of a firewall by allowing an administrator to specify desired firewall configuration at a higher, declarative level and frees the administrator from the need to specify procedures for implementing configuration changes in the firewall. In one embodiment of the invention, the firewall installer can receive and store input for configuring a firewall even when the firewall is not running, such that the firewall executes on those configuration changes when it next comes online.
摘要翻译: 本发明的实施例涉及一种防火墙安装程序,其接收一组配置指令,用于以说明性格式配置防火墙,该声明性格式描述要由防火墙实现的一个或多个规则,并且自动配置防火墙。 提供能够基于声明性输入而不是过程性过程导向输入配置防火墙的防火墙安装程序,通过允许管理员以更高的声明级别指定所需的防火墙配置,从而有助于管理防火墙,并释放管理员不需要 指定在防火墙中实现配置更改的过程。 在本发明的一个实施例中,防火墙安装者可以接收和存储用于配置防火墙的输入,即使在防火墙未运行时,防火墙安装者也可以接收和存储用于配置防火墙的输入,使得防火墙在下一次联机时对这些配置更改执行。
-
公开(公告)号:US20120054825A1
公开(公告)日:2012-03-01
申请号:US13292018
申请日:2011-11-08
申请人: Charles D. Bassett , Eran Yariv , Ian M. Carbaugh , Lokesh Srinivas Koppolu , Maksim Noy , Sarah A. Wahlert , Pradeep Bahl
发明人: Charles D. Bassett , Eran Yariv , Ian M. Carbaugh , Lokesh Srinivas Koppolu , Maksim Noy , Sarah A. Wahlert , Pradeep Bahl
IPC分类号: G06F21/00
CPC分类号: H04L63/0263 , H04L63/20
摘要: A method and system for creating security policies for firewall and connection policies in an integrated manner is provided. The security system provides a user interface through which a user can define a security rule that specifies both a firewall policy and a connection policy. After the security rule is specified, the security system automatically generates a firewall rule and a connection rule to implement the security rule. The security system provides the firewall rule to a firewall engine that is responsible for enforcing the firewall rules and provides the connection rule to an IPsec engine that is responsible for enforcing the connection rules.
摘要翻译: 提供了以综合方式为防火墙和连接策略创建安全策略的方法和系统。 安全系统提供用户界面,用户可以通过该界面定义指定防火墙策略和连接策略的安全规则。 指定安全规则后,安全系统自动生成防火墙规则和连接规则,实现安全规则。 安全系统向防火墙引擎提供防火墙规则,该引擎负责执行防火墙规则,并向负责执行连接规则的IPsec引擎提供连接规则。
-
公开(公告)号:US08056124B2
公开(公告)日:2011-11-08
申请号:US11183317
申请日:2005-07-15
申请人: Charles D. Bassett , Eran Yariv , Ian M. Carbaugh , Lokesh Srinivas Koppolu , Maksim Noy , Sarah A. Wahlert , Pradeep Bahl
发明人: Charles D. Bassett , Eran Yariv , Ian M. Carbaugh , Lokesh Srinivas Koppolu , Maksim Noy , Sarah A. Wahlert , Pradeep Bahl
CPC分类号: H04L63/0263 , H04L63/20
摘要: A method and system for creating security policies for firewall and connection policies in an integrated manner is provided. The security system provides a user interface through which a user can define a security rule that specifies both a firewall policy and a connection policy. After the security rule is specified, the security system automatically generates a firewall rule and a connection rule to implement the security rule. The security system provides the firewall rule to a firewall engine that is responsible for enforcing the firewall rules and provides the connection rule to an IPsec engine that is responsible for enforcing the connection rules.
摘要翻译: 提供了以综合方式为防火墙和连接策略创建安全策略的方法和系统。 安全系统提供用户界面,用户可以通过该界面定义指定防火墙策略和连接策略的安全规则。 指定安全规则后,安全系统自动生成防火墙规则和连接规则,实现安全规则。 安全系统向防火墙引擎提供防火墙规则,该引擎负责执行防火墙规则,并向负责执行连接规则的IPsec引擎提供连接规则。
-
39.发明授权Transparent auto-discovery of network devices logically located between a client and server 有权网络设备的透明自动发现逻辑上位于客户端和服务器之间公开(公告)号:US07970928B2
公开(公告)日:2011-06-28
申请号:US11958374
申请日:2007-12-17
申请人: Murari Sridharan , Deepak Bansal , Eran Yariv , Ronen Barenboim , Maxim Stepin , Alexander Malysh
发明人: Murari Sridharan , Deepak Bansal , Eran Yariv , Ronen Barenboim , Maxim Stepin , Alexander Malysh
IPC分类号: G06F15/16
CPC分类号: H04L69/16 , H04L69/163
摘要: Discovery of intermediate network devices is performed using a technique that piggybacks upon the existing standard TCP (Transport Control Protocol) “SACK” (Selective Acknowledgment) option in a SYN/ACK packet so that discovery information may be shared between pair-wise-deployed peer intermediate devices when a TCP/IP connection (Transport Control Protocol/Internet Protocol) is first established between network endpoints using a conventional three-way handshake. Use of the SACK option is combined with another technique which comprises modifying the original 16-bit value of the TCP receive window size to a special arbitrary value to mark a SYN packet as being generated by a first peer device. The marked SYN when received by the second peer device triggers that device's discovery information to be piggybacked in the SACK option of the SYN/ACK packet. The first device then piggybacks its discovery information in the SACK option of the ACK packet which completes the three-way handshake.
摘要翻译: 使用搭载SYN / ACK分组中的现有标准TCP(传输控制协议)“SACK”(选择性确认)选项的技术来执行中间网络设备的发现,使得发现信息可以在成对部署的对等体之间共享 当使用传统的三次握手在网络端点之间首先建立TCP / IP连接(传输控制协议/互联网协议)时的中间设备。 使用SACK选项与另一种技术相结合,其中包括将TCP接收窗口大小的原始16位值修改为特殊任意值,以将SYN分组标记为由第一对等设备生成。 标记的SYN在第二个对等设备接收时触发该设备的发现信息被捎带在SYN / ACK数据包的SACK选项中。 然后,第一个设备在ACK包的SACK选项中搭载其发现信息,完成三次握手。
-
公开(公告)号:US07836495B2
公开(公告)日:2010-11-16
申请号:US11495412
申请日:2006-07-28
申请人: Gerardo Diaz-Cuellar , Eran Yariv , David Abzarian
发明人: Gerardo Diaz-Cuellar , Eran Yariv , David Abzarian
IPC分类号: G06F9/00
CPC分类号: H04L63/1441 , H04L63/08
摘要: A proxy service receives requests from a remote caller to configure a main service. The proxy service authenticates the caller and validates the request. The proxy service then passes the request along to the main service if the caller can be authenticated and if the request can be validated. The proxy service runs at a non-privileged level, but when the proxy service passes the request to the main service, the proxy service impersonates the caller so that the request to the main service is made at the original caller's level of privilege. The main service can block all inbound network traffic, since network requests to configure the main service are received by the proxy, which is a local object from the perspective of the main service. Additionally, the proxy can block inbound traffic other than a certain class of requests (e.g., Remote Procedure Calls).
摘要翻译: 代理服务从远程主叫方接收请求以配置主服务。 代理服务认证呼叫者并验证请求。 代理服务然后将请求传递到主服务,如果呼叫者可以被认证,并且请求可以被验证。 代理服务以非特权级别运行,但是当代理服务将请求传递给主服务时,代理服务模拟主叫方,使得对主服务的请求是在原始呼叫者的权限级别进行的。 主服务可以阻止所有入站网络流量,因为从主服务的角度看,代理服务器接收到配置主服务的网络请求,这是一个本地对象。 此外,代理可以阻止除特定类别的请求之外的入站流量(例如,远程过程调用)。
-
-
-
-
-
-
-
-
-
搜索结果
61 条记录 (耗时 0.023 秒)
