-
公开(公告)号:US20190097968A1
公开(公告)日:2019-03-28
申请号:US15718533
申请日:2017-09-28
IPC分类号: H04L29/12 , H04L12/741 , H04L29/06
摘要: A method of communicatively connecting first and second endpoints across a NAT and/or PAT router to form an IPSec encrypted tunnel is disclosed. A message is received by the first endpoint from the second endpoint. The message includes an encrypted portion including a source port, a destination port, a source IP address, and a destination IP address. It is determined whether a table entry exists for the message. If Yes, it is determined by the first endpoint whether a NAT router and/or a PAT router is between the first endpoint and the second endpoint based, at least in part, on the table entry and the encrypted portion of the message. If Yes, an IPSec encrypted tunnel is created using IPSec transport mode for further communications between the first and second endpoints. An apparatus and a computer program product are also disclosed.
-
公开(公告)号:US20170237735A1
公开(公告)日:2017-08-17
申请号:US15427167
申请日:2017-02-08
CPC分类号: H04L63/0884 , H04L12/4641 , H04L63/0272 , H04L63/029 , H04L63/083 , H04L63/104 , H04W12/06 , H04W72/04 , H04W88/16
摘要: Methods and systems of communicating with secure endpoints included within a secured network from a mobile device external to the secured network is disclosed. The method includes initiating a VPN-based secure connection to a VPN appliance, and initializing a stealth-based service on the mobile device. the method further includes transmitting user credential information from the mobile device to a VDR broker via the VPN appliance, and receiving status information from the VDR broker identifying a VDR associated with the mobile device and providing a connected status. The method also includes communicating with one or more secure endpoints within the secured network via a VPN connection to the VDR via the VPN appliance and through the VDR to the one or more secure endpoints within a community of interest based on the user credential information transmitted to the VDR broker.
-
83.发明申请公开(公告)号:US20160156594A9
公开(公告)日:2016-06-02
申请号:US13105130
申请日:2011-05-11
CPC分类号: H04L63/0428 , G06F21/575 , H04L63/10 , H04L63/12
摘要: An endpoint, method, and authorization server are disclosed which can be used to allow concurrent secure and clear text communication. An endpoint includes a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network. The endpoint also includes a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest. The community of interest includes one or more users, and an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. The endpoint also includes a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network. The driver is also configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists.
摘要翻译: 公开了端点,方法和授权服务器,其可以用于允许并发安全和明文文本通信。 端点包括计算系统,其包括可操作地连接到存储器和通信接口的可编程电路,所述通信接口经配置以经由数据通信网络发送和接收数据分组。 端点还包括在计算系统的存储器中定义的过滤器,该过滤器被配置为定义一个或多个访问列表,每个访问列表为感兴趣的社区定义一组访问许可。 感兴趣的社区包括一个或多个用户,并且一个或多个访问列表中的访问列表定义与感兴趣的社区相关联的一组明文访问许可。 端点还包括可由可编程电路执行的驱动器,该驱动器被配置为与通信接口协作以经由数据通信网络发送和接收数据分组。 驱动器还被配置为至少部分地基于一个或多个访问列表的内容,经由数据通信网络选择性地将数据拆分和加密成多个数据分组以发送。
-
84.发明申请公开(公告)号:US20150381596A1
公开(公告)日:2015-12-31
申请号:US14474452
申请日:2014-09-02
CPC分类号: H04L63/0272 , G06F9/45533 , G06F21/105 , G06Q10/10 , H04L63/0209 , H04L63/029 , H04L63/04 , H04L63/0485 , H04L63/08 , H04L63/164
摘要: A system and method of initializing a virtual machine within a secure hybrid cloud is disclosed. One method includes transmitting service mode credentials to a cloud broker from a cloud-based virtual machine, receiving a service mode community of interest key from a credentialing service based on the service mode credentials, and establishing a secure service mode connection based on the service mode community of interest key. The method also includes receiving role VPN credentials at the cloud-based virtual machine and establishing a secure role connection to the cloud broker using the role VPN credentials, thereby providing, in response to the role VPN credentials, a role VPN community of interest key to a virtual data relay dedicated to the cloud-based virtual machine. The method further includes receiving role cloud credentials at the cloud-based virtual machine and establishing secure communications at the cloud-based virtual machine based on the role cloud credentials, including receiving a role cloud community of interest key at the cloud-based virtual machine used for secure communication among the cloud-based virtual machine and other cloud-based virtual machines within a common community of interest with the cloud-based virtual machine.
摘要翻译: 公开了一种在安全混合云内初始化虚拟机的系统和方法。 一种方法包括从基于云的虚拟机向云代理发送服务模式凭证,基于服务模式凭证从凭证服务接收感兴趣的服务模式社区,并且基于服务模式建立安全服务模式连接 社区利益关键。 该方法还包括在基于云的虚拟机上接收角色VPN凭据,并使用角色VPN凭据建立与云代理的安全角色连接,从而为角色VPN凭据提供一个角色VPN社区的关键密钥 专用于基于云的虚拟机的虚拟数据中继。 该方法还包括在基于云的虚拟机上接收角色云凭据,并基于角色云凭证在基于云的虚拟机上建立安全通信,包括在使用的基于云的虚拟机上接收角色云社区的兴趣密钥 用于基于云的虚拟机与基于云的虚拟机的共同兴趣的基于云的虚拟机和其他基于云的虚拟机之间的安全通信。
-
公开(公告)号:US20140019959A1
公开(公告)日:2014-01-16
申请号:US13547148
申请日:2012-07-12
申请人: David S. Dodgson , Ralph Farina , James A. Fontana , Robert A. Johnson , David Maw , Anthony Narisi
发明人: David S. Dodgson , Ralph Farina , James A. Fontana , Robert A. Johnson , David Maw , Anthony Narisi
IPC分类号: G06F9/455
CPC分类号: G06F9/455 , G06F9/45558 , G06F21/606 , G06F2009/45587 , G06F2009/45595 , H04L63/0428 , H04L63/065 , H04L63/0823
摘要: Virtual machines in a network may be isolated by encrypting transmissions between the virtual machines with keys possessed only by an intended recipient. Within a network, the virtual machines may be logically organized into a number of community-of-interest (COI) groups. Each COI may use an encryption key to secure communications within the COI, such that only other virtual machines in the COI may decrypt the message. Virtual machines may be automatically provisioned with configuration information, such as the encryption keys, when the virtual machine is started. The provisioning information may be created based on a template stored on a configuration server.
摘要翻译: 可以通过使用仅由预期接收者拥有的密钥对虚拟机之间的传输进行加密来隔离网络中的虚拟机。 在网络中,虚拟机可以在逻辑上被组织成许多社区(COI)组。 每个COI可以使用加密密钥来保护COI内的通信,使得仅COI中的其他虚拟机可以解密该消息。 当虚拟机启动时,虚拟机可能会自动配置配置信息,例如加密密钥。 可以基于存储在配置服务器上的模板来创建供应信息。
-
公开(公告)号:US20140019750A1
公开(公告)日:2014-01-16
申请号:US13547143
申请日:2012-07-12
申请人: David S. Dodgson , Ralph Farlan , James A. Fontana , Robert A. Johnson , David Maw , Anthony Narisi
发明人: David S. Dodgson , Ralph Farlan , James A. Fontana , Robert A. Johnson , David Maw , Anthony Narisi
IPC分类号: H04L29/06
CPC分类号: H04L63/0471 , H04L63/0281 , H04L63/104
摘要: Virtual machines in a network may be isolated by encrypting transmissions between the virtual machines with keys possessed only by an intended recipient. Within a network, the virtual machines may be logically organized into a number of community-of-interest (COI) groups. Each COI may use an encryption key to secure communications within the COI, such that only other virtual machines in the COI may decrypt the message. Virtual machines may further be isolated through a virtual gateway assigned to handle all communications between a virtual machine and a device outside of the virtual machine's COI. The virtual gateway may be a separate virtual machine for handling decrypting and encrypting messages for transmission between virtual machines and other devices.
摘要翻译: 可以通过使用仅由预期接收者拥有的密钥对虚拟机之间的传输进行加密来隔离网络中的虚拟机。 在网络中,虚拟机可以在逻辑上被组织成许多社区(COI)组。 每个COI可以使用加密密钥来保护COI内的通信,使得仅COI中的其他虚拟机可以解密该消息。 虚拟机可以进一步通过被分配用于处理虚拟机和虚拟机的COI之外的设备之间的所有通信的虚拟网关来隔离。 虚拟网关可以是用于处理解密和加密消息以在虚拟机和其他设备之间传输的单独的虚拟机。
-
87.发明申请Methods of Removing Contaminants from a Hydrocarbon Stream by Swing Adsorption and Related Apparatus and Systems 审中-公开通过摆动吸附和相关设备和系统从烃流中除去污染物的方法公开(公告)号:US20130327216A1
公开(公告)日:2013-12-12
申请号:US13985537
申请日:2012-02-27
IPC分类号: B01D53/047
CPC分类号: B01D53/047 , B01D53/0473 , B01D53/053 , B01D2253/308 , B01D2257/304 , B01D2257/504 , B01D2259/40018 , B01D2259/40033 , B01D2259/40035 , B01D2259/40041 , B01D2259/40043 , B01D2259/40075 , B01D2259/4068 , Y02C10/08
摘要: A swing adsorption process for removing contaminants from a gaseous feed stream through a combination of a selective adsorbent material containing an effective amount of a non-adsorbent filler, adsorbent contactor design, and adsorption cycle design.
摘要翻译: 用于通过包含有效量的非吸附剂填料,吸附剂接触器设计和吸附循环设计的选择性吸附材料的组合从气态进料流中除去污染物的挥发性吸附方法。
-
公开(公告)号:US08482729B2
公开(公告)日:2013-07-09
申请号:US12885211
申请日:2010-09-17
IPC分类号: G01J3/02
CPC分类号: G01J3/10 , G01J3/02 , G01J3/0218 , G01J3/0264 , G01J3/027 , G01J3/0275 , G01J3/0291
摘要: Devices, systems, and methods for measuring tissue oxygen saturation are disclosed. An illustrative spectrometer for interfacing an optical sensor with a display unit includes a number of measurement radiation sources, a number of radiation source fibers each optically coupled to one of the measurement radiation sources, a reflected radiation fiber optically coupled to the optical sensor, a measurement radiation output fiber including an image fiber, and a radiation mixing bar intermediate the radiation source fibers and the measurement radiation output fiber.
摘要翻译: 公开了用于测量组织氧饱和度的装置,系统和方法。 用于将光学传感器与显示单元接口的说明性光谱仪包括多个测量辐射源,每个光学耦合到测量辐射源之一的多个辐射源光纤,与光学传感器光学耦合的反射辐射光纤, 包括图像光纤的辐射输出光纤和辐射源光纤和测量辐射输出光纤之间的辐射混合条。
-
公开(公告)号:USD656425S1
公开(公告)日:2012-03-27
申请号:US29385110
申请日:2011-02-09
-
公开(公告)号:US08137327B2
公开(公告)日:2012-03-20
申请号:US11454604
申请日:2006-06-16
申请人: David C. Sokal , Carol L. Joanis , George A. M. Butterworth , James D. Reed , Robert A. Johnson
发明人: David C. Sokal , Carol L. Joanis , George A. M. Butterworth , James D. Reed , Robert A. Johnson
CPC分类号: A61F13/2051 , A61F2013/8414 , A61K9/0036
摘要: A vaginal drug delivery system includes a device formed of porous material that holds a flowable therapeutic formulation. The device, preferably in a soft, prewetted state, is inserted into the vagina to reside typically at or near the cervix where it continuously releases the flowable therapeutic formulation through its outer surface which is in contact with the vaginal surfaces. In operation, the flowable therapeutic formulation migrates via capillary forces from a reservoir that is centrally located in the device and through a covering that envelopes the reservoir.
摘要翻译: 阴道药物递送系统包括由多孔材料形成的装置,其保持可流动的治疗剂型。 该装置优选地处于柔软的预润湿状态,被插入到阴道中以通常驻留在子宫颈处或附近,其中它连续地通过其与阴道表面接触的外表面释放可流动治疗剂。 在操作中,可流动的治疗制剂通过毛细管力从位于装置中心的储存器并通过包封储存器的覆盖物迁移。
-
-
-
-
-
-
-
-
-
搜索结果
145 条记录 (耗时 0.048 秒)
