公开(公告)号：US20120131208A1

公开(公告)日：2012-05-24

申请号：US13362346

申请日：2012-01-31

申请人： ARKESH KUMAR ,  James Harris ,  Ajay Soni

发明人： ARKESH KUMAR ,  James Harris ,  Ajay Soni

IPC分类号： G06F15/16

CPC分类号： H04L63/0272 ,  H04L12/4641 ,  H04L67/14

摘要： Methods for establishing an SSL/VPN session on behalf of a user of a client where the user has a previously existing session are described. Methods include receiving, by an appliance, a request from a first client operated by a user to establish a virtual private network session; creating, by the appliance, a temporary virtual private network session with the client; identifying, by the appliance, an existing virtual private network session previously established on behalf of the user; terminating the previous session; and creating a new virtual private network session with the client using the temporary session. Other methods may further include transmitting a request to a user corresponding to whether to terminate one or more previous sessions, and transferring session data from a previously existing session to a current session. Corresponding systems are also described.

摘要翻译： 描述代表用户具有先前存在的会话的客户端的用户建立SSL / VPN会话的方法。 方法包括由设备接收来自用户操作的第一客户机的请求以建立虚拟专用网络会话; 由设备创建与客户端的临时虚拟专用网络会话; 由设备识别以前代表用户建立的现有虚拟专用网络会话; 终止前一届会议; 并使用临时会话与客户端创建新的虚拟专用网络会话。 其他方法还可以包括：向用户发送对应于是否终止一个或多个先前会话的请求，以及将会话数据从先前存在的会话传送到当前会话。 还描述了相应的系统。

公开(公告)号：US08151323B2

公开(公告)日：2012-04-03

申请号：US11566975

申请日：2006-12-05

申请人： James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

发明人： James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

IPC分类号： H04L29/06

CPC分类号： H04L67/06 ,  H04L63/0272 ,  H04L63/105 ,  H04L63/166 ,  H04L67/02 ,  H04L67/2842 ,  H04L67/34 ,  H04L69/10 ,  H04L69/16 ,  H04L69/165

摘要： The present invention relates to systems and methods to identify a level of access for a resource being accessed via a secure socket layer virtual private network (SSL VPN) connection to a network, and to control the action on the resource based on the identified level of access. The appliance described herein provides intelligent secure access and action control to resources based on a sense and respond mechanism. When a user requests access to a resource via the SSL VPN connection of the appliance, the appliance obtains information about the client to determine the user access scenario—the location, device, connection and identify of the user or client. Based on the collected information, the appliance responds to the detected user scenario by identifying a level of access to the resource for the user/client, such as rights to view, print, edit or save a document, Based on the identified level of access, the appliance controls the actions performs on the resource by various techniques described herein so that the user can only perform the allowed action n accordance with the level of access. As such, the present invention allows organization to control and provide the appropriate level of access to valuable, confidential or business critical information accessed remotely or via a pubic network while protecting such information by controlling the types of actions performed or allowed to be performed remotely on the information.

摘要翻译： 本发明涉及用于识别经由到网络的安全套接字层虚拟专用网（SSL VPN）连接被访问的资源的访问级别的系统和方法，并且基于所识别的级别来控制对资源的动作 访问。 本文所述的设备基于感测和响应机制来提供对资源的智能安全访问和动作控制。 当用户通过设备的SSL VPN连接请求访问资源时，设备将获取有关客户端的信息，以确定用户访问场景 - 用户或客户端的位置，设备，连接和标识。 基于收集的信息，设备通过识别用户/客户端对资源的访问级别（例如查看，打印，编辑或保存文档的权限）来响应所检测的用户场景。基于所识别的访问级别 ，设备通过本文描述的各种技术控制对资源执行的操作，使得用户只能根据访问级别执行允许的动作。 因此，本发明允许组织控制并提供对远程访问或通过公共网络访问的有价值的，机密的或业务关键信息的适当级别的访问，同时通过控制远程执行或允许执行的动作的类型来保护这些信息， 信息。

公开(公告)号：US20120028406A1

公开(公告)日：2012-02-02

申请号：US13015316

申请日：2011-01-27

申请人： James Harris ,  Nigel Pickett

发明人： James Harris ,  Nigel Pickett

IPC分类号： H01L31/18

CPC分类号： H01L31/035227 ,  H01L51/0006 ,  H01L51/0036 ,  H01L51/422 ,  H01L51/426 ,  Y02E10/549 ,  Y02P70/521

摘要： Embodiments of the present invention involve photovoltaic (PV) cells comprising a semiconducting nanorod-nanocrystal-polymer hybrid layer, as well as methods for fabricating the same. In PV cells according to this invention, the nanocrystals may serve both as the light-absorbing material and as the heterojunctions at which excited electron-hole pairs split.

摘要翻译： 本发明的实施例涉及包含半导体纳米棒 - 纳米晶体 - 聚合物混合层的光伏（PV）电池及其制造方法。 在根据本发明的PV电池中，纳米晶体可以用作光吸收材料和作为激发的电子 - 空穴对分裂的异质结。

公开(公告)号：US20100242092A1

公开(公告)日：2010-09-23

申请号：US12409223

申请日：2009-03-23

申请人： James Harris ,  Rui R.L. ,  Arkesh Kumar ,  Ravindranath Thakur ,  Puneet Agarwal ,  Akshat Choudhary

发明人： James Harris ,  Rui R.L. ,  Arkesh Kumar ,  Ravindranath Thakur ,  Puneet Agarwal ,  Akshat Choudhary

IPC分类号： G06F21/00

CPC分类号： H04L63/0876 ,  G06F21/31 ,  G06F21/53 ,  G06F2009/4557 ,  H04L63/08 ,  H04L63/0884 ,  H04L63/10 ,  H04L63/105 ,  H04L63/166 ,  H04L63/20 ,  H04L67/2814

摘要： The present invention provides a system and method for dynamically selecting an authentication virtual server from a plurality of authentication virtual servers. A traffic management virtual server may determine from a request received from a client to access content of a server that the client has not been authenticated. The traffic management virtual server can identify a policy for selecting an authentication virtual server to provide authentication of the client. Responsive to the identification, the traffic management virtual server can select, via the policy, an authentication virtual server of the plurality of authentication virtual servers to authenticate the client. Responsive to the request, the traffic management virtual server may transmit a response to the client The response includes an instruction to redirect to the selected authentication virtual server.

摘要翻译： 本发明提供一种用于从多个认证虚拟服务器动态选择认证虚拟服务器的系统和方法。 流量管理虚拟服务器可以根据从客户端接收的请求来确定访问客户端尚未认证的服务器的内容。 流量管理虚拟服务器可以识别用于选择认证虚拟服务器以提供客户端认证的策略。 响应于识别，流量管理虚拟服务器可以通过策略选择多个认证虚拟服务器的认证虚拟服务器来认证客户端。 响应于该请求，流量管理虚拟服务器可以向客户端发送响应。响应包括重定向到所选择的认证虚拟服务器的指令。

公开(公告)号：US20100123155A1

公开(公告)日：2010-05-20

申请号：US12622012

申请日：2009-11-19

申请人： Nigel Pickett ,  James Harris

发明人： Nigel Pickett ,  James Harris

IPC分类号： H01L33/00 ,  H01L21/56 ,  C09K11/02

CPC分类号： H01L33/56 ,  B82Y15/00 ,  C09K11/02 ,  C09K11/565 ,  C09K11/70 ,  C09K11/883 ,  G01N33/588 ,  H01L33/005 ,  H01L33/04 ,  H01L33/501 ,  H01L33/502 ,  H01L2224/48091 ,  H01L2924/181 ,  H01L2933/0041 ,  H01L2933/005 ,  H01L2924/00012 ,  H01L2924/00014

摘要： Embodiments of the present invention relate to a formulation for use in the fabrication of a light-emitting device, the formulation including a population of semiconductor nanoparticles incorporated into a plurality of discrete microbeads comprising an optically transparent medium, the nanoparticle-containing medium being embedded in a host light-emitting diode encapsulation medium. A method of preparing such a formulation is described. There is further provided a light-emitting device including a primary light source in optical communication with such a formulation and a method of fabricating the same.

摘要翻译： 本发明的实施方案涉及用于制造发光器件的制剂，所述制剂包含掺入多个离散微珠中的半导体纳米颗粒群，所述多个离散微珠包括光学透明介质，所述含纳米颗粒的介质嵌入 主机发光二极管封装介质。 描述了制备这种制剂的方法。 还提供了一种包括与这种制剂光学连通的初级光源的发光器件及其制造方法。

公开(公告)号：US20090203054A1

公开(公告)日：2009-08-13

申请号：US12298878

申请日：2007-05-14

申请人： Lindy Murphy ,  Carla Burrows ,  Simon Bayly ,  Katherine Wilkinson ,  James Harris

发明人： Lindy Murphy ,  Carla Burrows ,  Simon Bayly ,  Katherine Wilkinson ,  James Harris

IPC分类号： C12Q1/60

CPC分类号： G01N33/92 ,  C12Q1/60

摘要： A method for the determination of the amount of cholesterol in high density lipoproteins in a high density lipoprotein containing sample, said method comprising reacting the sample with a surfactant which selectively reacts with high density lipoproteins in the sample, said surfactant being selected from sucrose esters, and maltosides, and measuring the amount of cholesterol in the high density lipoproteins, for example using an electrochemical technique.

摘要翻译： 一种用于测定含高密度脂蛋白的样品中高密度脂蛋白中胆固醇含量的方法，所述方法包括使样品与选择性地与样品中的高密度脂蛋白反应的表面活性剂反应，所述表面活性剂选自蔗糖酯， 和麦芽糖苷，并测量高密度脂蛋白中胆固醇的量，例如使用电化学技术。

公开(公告)号：US20080043760A1

公开(公告)日：2008-02-21

申请号：US11465950

申请日：2006-08-21

申请人： Charu Venkatraman ,  Junxiao He ,  Ajay Soni ,  James Harris ,  Arkesh Kumar

发明人： Charu Venkatraman ,  Junxiao He ,  Ajay Soni ,  James Harris ,  Arkesh Kumar

IPC分类号： H04L12/56

CPC分类号： H04L12/4641 ,  H04L63/0272 ,  H04L63/166 ,  H04L69/16 ,  H04L69/161 ,  H04L69/163 ,  H04L69/164

摘要： The present invention is related to a method for establishing via an appliance a transport layer protocol connection initiated by a server on a first network to a client connected from a second network to the first network via a secure socket layer virtual private network (SSL VPN) connection. The method includes the step of receiving, by an appliance, a transport layer connection request from a server on a first network to connect to a client connected to the first network via a SSL VPN connection from a second network. The transport layer connection request identifies a client destination internet protocol address and a client destination port on the first network. The method includes establishing, by the appliance, a first transport layer connection to the server on the first network, determining, by the appliance, the client on the second network associated with the client destination internet protocol address on the first network, and transmitting, by the appliance, connection information identifying the client destination port to an agent on the client. The agent establishes a second transport layer connection to the client destination port using a local internet protocol address of the client on the second network and establishes a third transport layer connection to the appliance, which it associates with the second transport layer connection.

摘要翻译： 本发明涉及一种用于经由设备建立由第一网络上的服务器通过安全套接层虚拟专用网（SSL VPN）从第二网络连接到第一网络的客户端发起的传输层协议连接的方法， 连接。 该方法包括以下步骤：通过设备从第一网络的服务器接收传输层连接请求，以经由来自第二网络的SSL VPN连接连接到连接到第一网络的客户端。 传输层连接请求标识第一网络上的客户端目标网络协议地址和客户端目的端口。 该方法包括由设备建立与第一网络上的服务器的第一传输层连接，由设备确定与第一网络上的客户端目的地网际协议地址相关联的第二网络上的客户端， 由设备将连接信息标识到客户机上的代理的客户端目的地端口。 代理使用第二网络上的客户端的本地互联网协议地址建立与客户端目的地端口的第二传输层连接，并建立与设备相关联的第三传输层连接，其与第二传输层连接相关联。

公开(公告)号：US20080034418A1

公开(公告)日：2008-02-07

申请号：US11462321

申请日：2006-08-03

申请人： Charu Venkatraman ,  Junxiao He ,  Amarnath Mullick ,  Shashi Nanjundaswami ,  James Harris ,  Ajay Soni

发明人： Charu Venkatraman ,  Junxiao He ,  Amarnath Mullick ,  Shashi Nanjundaswami ,  James Harris ,  Ajay Soni

IPC分类号： G06F15/16

CPC分类号： H04L63/0227 ,  H04L63/0272 ,  H04L63/0876 ,  H04L63/102

摘要： A method for intercepting, by an agent of a client, communications from the client to be transmitted via a virtual private network connection includes the step of intercepting communications based on identification of an application from which the communication originates. The agent receives information identifying a first application. The agent determines a network communication transmitted by the client originates from the first application and intercepts that communication. The agent transmits the intercepted communication via the virtual private network connection.

摘要翻译： 用于由客户的代理拦截要通过虚拟专用网络连接发送的通信的方法包括基于来自该通信的应用的识别来拦截通信的步骤。 代理接收标识第一应用的信息。 代理确定由客户端发送的网络通信源自第一应用，并拦截该通信。 该代理通过虚拟专用网络连接发送被拦截的通信。

公开(公告)号：US20080034057A1

公开(公告)日：2008-02-07

申请号：US11462341

申请日：2006-08-03

申请人： Arkesh Kumar ,  James Harris ,  Ajay Soni

发明人： Arkesh Kumar ,  James Harris ,  Ajay Soni

IPC分类号： G06F15/16

CPC分类号： H04L63/0272 ,  H04L12/4641 ,  H04L67/14

摘要： Methods for establishing an SSL/VPN session on behalf of a user of a client where the user has a previously existing session are described. Methods include receiving, by an appliance, a request from a first client operated by a user to establish a virtual private network session; creating, by the appliance, a temporary virtual private network session with the client; identifying, by the appliance, an existing virtual private network session previously established on behalf of the user; terminating the previous session; and creating a new virtual private network session with the client using the temporary session. Other methods may further include transmitting a request to a user corresponding to whether to terminate one or more previous sessions, and transferring session data from a previously existing session to a current session. Corresponding systems are also described.

摘要翻译： 描述代表用户具有先前存在的会话的客户端的用户建立SSL / VPN会话的方法。 方法包括由设备接收来自用户操作的第一客户机的请求以建立虚拟专用网络会话; 由设备创建与客户端的临时虚拟专用网络会话; 由设备识别以前代表用户建立的现有虚拟专用网络会话; 终止前一届会议; 并使用临时会话与客户端创建新的虚拟专用网络会话。 其他方法还可以包括：向用户发送对应于是否终止一个或多个先前会话的请求，以及将会话数据从先前存在的会话传送到当前会话。 还描述了相应的系统。

公开(公告)号：US20070245409A1

公开(公告)日：2007-10-18

申请号：US11566975

申请日：2006-12-05

申请人： James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

发明人： James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

IPC分类号： H04L9/32

CPC分类号： H04L67/06 ,  H04L63/0272 ,  H04L63/105 ,  H04L63/166 ,  H04L67/02 ,  H04L67/2842 ,  H04L67/34 ,  H04L69/10 ,  H04L69/16 ,  H04L69/165

摘要： The present invention relates to systems and methods to identify a level of access for a resource being accessed via a secure socket layer virtual private network (SSL VPN) connection to a network, and to control the action on the resource based on the identified level of access. The appliance described herein provides intelligent secure access and action control to resources based on a sense and respond mechanism. When a user requests access to a resource via the SSL VPN connection of the appliance, the appliance obtains information about the client to determine the user access scenario—the location, device, connection and identify of the user or client. Based on the collected information, the appliance responds to the detected user scenario by identifying a level of access to the resource for the user/client, such as rights to view, print, edit or save a document, Based on the identified level of access, the appliance controls the actions performs on the resource by various techniques described herein so that the user can only perform the allowed action n accordance with the level of access. As such, the present invention allows organization to control and provide the appropriate level of access to valuable, confidential or business critical information accessed remotely or via a pubic network while protecting such information by controlling the types of actions performed or allowed to be performed remotely on the information.

摘要翻译： 本发明涉及用于识别经由到网络的安全套接字层虚拟专用网（SSL VPN）连接被访问的资源的访问级别的系统和方法，并且基于所识别的级别来控制对资源的动作 访问。 本文所述的设备基于感测和响应机制来提供对资源的智能安全访问和动作控制。 当用户通过设备的SSL VPN连接请求访问资源时，设备将获取有关客户端的信息，以确定用户访问场景 - 用户或客户端的位置，设备，连接和标识。 基于收集的信息，设备通过识别用户/客户端对资源的访问级别（例如查看，打印，编辑或保存文档的权限）来响应所检测的用户场景。基于所识别的访问级别 ，设备通过本文描述的各种技术控制对资源执行的操作，使得用户只能根据访问级别执行允许的动作。 因此，本发明允许组织控制并提供对远程访问或通过公共网络访问的有价值的，机密的或业务关键信息的适当级别的访问，同时通过控制远程执行或允许执行的动作的类型来保护这些信息， 信息。