公开(公告)号：US20080066143A1

公开(公告)日：2008-03-13

申请号：US11518005

申请日：2006-09-07

申请人： Tsung-Yuan Charles Tai ,  Kapil Sood

发明人： Tsung-Yuan Charles Tai ,  Kapil Sood

IPC分类号： H04L9/00

CPC分类号： G06F21/57 ,  G06F8/61 ,  G06F9/45545 ,  G06F9/45558 ,  G06F9/5077 ,  G06F21/53 ,  G06F2009/45587

摘要： A method, apparatus and system enable a temporary partition on a host to be isolated. More specifically, a temporary partition may be initialized in a partitioned host, assigned its own security policy and given the necessary resources to complete a task. Thereafter, the temporary partition may be dismantled. Since the temporary partition is isolated from the remaining partitions on the host, the temporary partition may be allowed to run a “weaker” security policy than the rest of the partitions because the isolation of the temporary partition ensures that the security of the remaining partitions may remain uncompromised.

摘要翻译： 方法，装置和系统使主机上的临时分区能够被隔离。 更具体地说，可以在分配的主机中初始化临时分区，分配其自己的安全策略并给出必要的资源来完成任务。 此后，可以拆除临时隔离物。 由于临时分区与主机上的剩余分区隔离，因此临时分区可能会比其他分区运行“较弱”的安全策略，因为临时分区的隔离可确保其余分区的安全性 保持不妥协

公开(公告)号：US06247061B1

公开(公告)日：2001-06-12

申请号：US09094045

申请日：1998-06-09

申请人： John R. Douceur ,  Yoram Bernet ,  Ofer Bar ,  Carol Ann Bell ,  Tsung-Yuan Charles Tai ,  Rajendra S. Yavatkar

发明人： John R. Douceur ,  Yoram Bernet ,  Ofer Bar ,  Carol Ann Bell ,  Tsung-Yuan Charles Tai ,  Rajendra S. Yavatkar

IPC分类号： G06F1516

CPC分类号： H04L47/32 ,  H04L47/10 ,  H04L47/21 ,  H04L47/215 ,  H04L47/22 ,  H04L47/2433 ,  H04L47/2441 ,  H04L47/28 ,  H04L47/50 ,  H04L47/564 ,  H04L47/60 ,  H04L47/621 ,  H04L47/627

摘要： A method and computer program product for scheduling network communication packets in a multimedia environment where different packet streams have reservations of network bandwidth to form packet flows. The present invention divides the packet scheduling function into distinct components that may be implemented as separate drivers in a layered driver environment as exists, for example, in the Microsoft Windows NT operating system. One component is called a conformer and will generate and assign to each packet in the packet flow at least one conformance time that signifies the earliest a packet may be sent and still conform to the network resource requirements associated with the flow. Many different conformance algorithms can be supported so that the best algorithm is used for a particular packet flow and the service requirements that it represents. Should it be necessary to actually hold a packet until the conformance time is met, a shaper component is used to delay the packets. Finally, a sequencer component will send packets out as fast as possible over the network interface card. Each flow of packets processed by the sequencer component has at least two priorities, one for when the packets are conforming and one for when the packets are non-conforming. The sequencer component maintains priority lists of packet flow queues and will service the highest priority queue list followed by each successive priority list until no packets remain for transmission or the network interface card is unable to handle more packets. Each priority list will have a queue discipline associated therewith that will determine in what order the packets are taken off of the respective flow queues.

摘要翻译： 一种用于在多媒体环境中调度网络通信分组的方法和计算机程序产品，其中不同分组流具有网络带宽的预留以形成分组流。 本发明将分组调度功能划分为不同的组件，其可以被实现为分层驱动程序环境中的独立驱动程序，例如在Microsoft Windows NT操作系统中。 一个组件被称为构图器，并且将生成并分配给分组流中的每个分组至少一个一致的时间，其表示分组可以被发送的最早的一致性，并且仍然符合与流相关联的网络资源需求。 可以支持许多不同的一致性算法，以便将最佳算法用于特定数据包流及其所代表的服务要求。 如果需要在一致性时间之前实际保存数据包，则会使用整形器来延迟数据包。 最后，定序器组件将通过网络接口卡尽快发送数据包。 由定序器组件处理的每个流的流具有至少两个优先级，一个用于当数据包一致时，一个用于当数据包不符合时。 定序器组件保持分组流队列的优先级列表，并且将服务于优先级最高的队列列表，随后是每个连续的优先级列表，直到没有分组保留用于传输或网络接口卡不能处理更多分组。 每个优先级列表将具有与其相关联的队列规则，其将以什么顺序确定分组从相应的流队列中取走。