公开(公告)号：US20080072326A1

公开(公告)日：2008-03-20

申请号：US11871188

申请日：2007-10-12

Applicant: Robert Danford ,  Kenneth Farmer ,  Clark Jeffries ,  Robert Sisk ,  Michael Walter

Inventor： Robert Danford ,  Kenneth Farmer ,  Clark Jeffries ,  Robert Sisk ,  Michael Walter

IPC: G06F21/00

CPC classification number: H04L63/1458

Abstract: A method of progressive response for invoking and suspending blocking measures that defend against network anomalies such as malicious network traffic so that false positives and false negatives are minimized. When an anomaly is detected, the detector notifies protective equipment such as a firewall or a router to invoke a blocking measure. The blocking measure is maintained for an initial duration, after which it is suspended while another test for the anomaly is made. If the anomaly is no longer evident, the method returns to the state of readiness. Otherwise, a loop is executed to re-applying the blocking measure for a specified duration, then suspend the blocking measure and test again for the anomaly. If the anomaly is detected, the blocking measure is re-applied, and its duration is adapted. If the anomaly is no longer detected, the method returns to the state of readiness.

Abstract translation: 一种逐步响应的方法，用于调用和中止阻止网络异常（如恶意网络流量）的阻塞措施，从而最大限度地减少误报和假阴性。 当检测到异常时，检测器通知防火墙或路由器等防护设备调用阻塞措施。 阻塞措施保持初始持续时间，之后暂停，并进行另一次异常测试。 如果异常不再明显，则返回到准备状态。 否则，执行一个循环以在特定持续时间内重新应用阻塞度量，然后暂停阻塞度量并再次测试异常。 如果检测到异常，则重新应用阻塞措施，并适应其持续时间。 如果不再检测到异常，则该方法返回到准备状态。

公开(公告)号：US20070076602A1

公开(公告)日：2007-04-05

申请号：US11560088

申请日：2006-11-15

Applicant: Clark Jeffries ,  Jitesh Nair ,  Michael Siegel ,  Rama Yedavalli

Inventor： Clark Jeffries ,  Jitesh Nair ,  Michael Siegel ,  Rama Yedavalli

IPC: H04L12/26 ,  H04L12/56

CPC classification number: H04L47/30 ,  H04L47/10 ,  H04L47/29 ,  H04L47/32

Abstract: The decision within a packet processing device to transmit a newly arriving packet into a queue to await processing or to discard the same packet is made by a flow control method and system. The flow control is updated with a constant period determined by storage and flow rate limits. The update includes comparing current queue occupancy to thresholds and also comparing present queue occupancy to previous queue occupancy. The outcome of the update is a new transmit probability value. The value is stored for the subsequent period of flow control and packets arriving during that period are subject to a transmit or discard decision that uses that value.

Abstract translation: 通过流控制方法和系统来进行分组处理装置中将新到达的分组发送到队列中等待处理或丢弃相同分组的决定。 流量控制以由存储和流量限制确定的恒定周期进行更新。 该更新包括将当前队列占用率与阈值进行比较，还将当前队列占用率与先前队列占用率进行比较。 更新的结果是新的传输概率值。 该值存储在随后的流量控制周期中，并且在该时间段期间到达的分组经受使用该值的发送或丢弃决定。

公开(公告)号：US20060261946A1

公开(公告)日：2006-11-23

申请号：US11132535

申请日：2005-05-19

Applicant: Kevin David Himberger ,  Clark Jeffries ,  Mohammad Peyravian

Inventor： Kevin David Himberger ,  Clark Jeffries ,  Mohammad Peyravian

IPC: G08B13/14

CPC classification number: G06K19/0723 ,  G06K19/0717

Abstract: System and method for recording temperature on an RFID tag. A first RFID tag is attached to a container. The first RFID tag includes a temperature sensor. The container contains a multiplicity of packages. A multiplicity of second RFID tags are attached to the multiplicity of packages, respectively. The first RFID tag transmits temperature information to the multiplicity of second RFID tags. In response, the multiplicity of second RFID tags record the temperature information. Consequently, there is no need for expensive temperature sensors on the multiplicity of RFID tags on the packages. According to features of the present invention, the first RFID tag is an active RFID tag, and the multiplicity of second RFID tags are passive RFID tags. The first RFID tag also transmits other information to the multiplicity of second RFID tags to enable the second RFID tags to authenticate the temperature information. Other types of environmental sensors such as a humidity sensor or vibration sensor can substitute for the temperature sensor.

公开(公告)号：US20060018262A1

公开(公告)日：2006-01-26

申请号：US10896733

申请日：2004-07-22

Applicant: Alan Boulanger ,  Robert Danford ,  Kevin Himberger ,  Clark Jeffries

Inventor： Alan Boulanger ,  Robert Danford ,  Kevin Himberger ,  Clark Jeffries

IPC: H04L12/26

CPC classification number: H04L63/1416 ,  H04L63/1466

Abstract: A detection and response system including a set of algorithms for detecting within a stream of normal computer traffic a subset of (should focus on network traffic eliciting a response) TCP or UDP packets with one IP Source Address (SA) value, one or a few Destination Address (DA) values, and a number exceeding a threshold of distinct Destination Port (DP) values. A lookup mechanism such as a Direct Table and Patricia search tree record and trace sets of packets with one SA and one DA as well as the set of DP values observed for the given SA, DA combination. The detection and response system reports the existence of such a subset and the header values including SA, DA, and multiple DPs of the subset. The detection and response system also includes various administrative responses to reports.

Abstract translation: 一种检测和响应系统，包括一组用于在正常计算机业务流内检测的一组算法（应该侧重于引发响应的网络业务）具有一个IP源地址（SA）值的TCP或UDP分组，一个或几个 目标地址（DA）值和超过不同目标端口（DP）值阈值的数字。 一个查找机制，如直接表和帕特里夏搜索树记录，跟踪一组SA和一个DA的数据包以及给定SA，DA组合观察到的一组DP值。 检测和响应系统报告这样的子集的存在以及包括SA，DA和子集的多个DP的标题值。 检测和响应系统还包括对报告的各种管理响应。

公开(公告)号：US20050204159A1

公开(公告)日：2005-09-15

申请号：US10796161

申请日：2004-03-09

Applicant: John Davis ,  Kevin Himberger ,  Clark Jeffries ,  Garreth Jeremiah

Inventor： John Davis ,  Kevin Himberger ,  Clark Jeffries ,  Garreth Jeremiah

IPC: H04L9/00 ,  H04L12/58 ,  H04L29/06

CPC classification number: H04L63/0236 ,  H04L51/12 ,  H04L63/0263

Abstract: A system, method and program product for blocking unwanted e-mails. An e-mail is identified as unwanted. A source IP address of the unwanted e-mail is determined. Other source IP addresses owned or registered by an owner or registrant of the source IP address of the unwanted e-mail are determined. Subsequent e-mails from the source IP address and the other IP addresses are blocked. This will thwart a spammer who shifts to a new source IP address when its spam is blocked from one source IP address.

Abstract translation: 用于阻止不必要的电子邮件的系统，方法和程序产品。 电子邮件被标识为不需要的。 确定不需要的电子邮件的源IP地址。 确定不想要的电子邮件的源IP地址的所有者或注册人拥有或注册的其他源IP地址。 源IP地址和其他IP地址的后续电子邮件被阻止。 这将阻止垃圾邮件发送者转移到新的源IP地址，当其垃圾邮件被一个源IP地址阻止时。

公开(公告)号：US20050177872A1

公开(公告)日：2005-08-11

申请号：US10774017

申请日：2004-02-05

Applicant: Alan Boulanger ,  Kevin Himberger ,  Clark Jeffries ,  John Ziraldo

Inventor： Alan Boulanger ,  Kevin Himberger ,  Clark Jeffries ,  John Ziraldo

IPC: H04L29/06 ,  H04L9/32

CPC classification number: H04L63/0218 ,  H04L63/02 ,  H04L63/1416 ,  H04L63/1441

Abstract: A communication network is operated by detecting an anomaly in the communication traffic at a plurality of nodes in a communication network. A first blocking measure A is independently applied at respective ones of the plurality of nodes to the anomalous traffic that stops the anomalous traffic. A second blocking measure B is independently determined at the respective ones of the plurality of nodes such that application of a logical combination of the first blocking measure A and the second blocking measure B to the anomalous traffic stops the anomalous traffic.

Abstract translation: 通信网络通过检测通信网络中的多个节点处的通信业务中的异常来操作。 第一阻塞测度A被独立地应用于多个节点中的相应的节点处于停止异常业务的异常业务。 在多个节点中的相应节点处独立地确定第二阻塞测量B，使得将第一阻塞测度A和第二阻塞测量B的逻辑组合应用于异常业务停止异常业务。

公开(公告)号：US20080098015A1

公开(公告)日：2008-04-24

申请号：US11962558

申请日：2007-12-21

Applicant: Gordon Davis ,  Andreas Herkersdorf ,  Clark Jeffries ,  Mark Rinaldi

Inventor： Gordon Davis ,  Andreas Herkersdorf ,  Clark Jeffries ,  Mark Rinaldi

IPC: G06F17/30

CPC classification number: H04L49/3009 ,  H04L45/745 ,  H04L45/7453 ,  H04L49/351

Abstract: A structure and technique for preventing collisions using a hash table in conjunction with a CAM to identify and prevent collisions of binary keys. A portion of the hash value of a binary key, which does not collide with a portion of the hash value of any other reference binary key, is used as an entry in the hash table. If two or more binary keys have identical values of the portions of the hash values, each of these binary keys are stored in their entirety, in the CAM. The key in the CAM provides a pointer to a data structure where the action associated with that binary key is stored. If the binary key is not found in the CAM, the binary key is hashed, and a specific entry in the hash table is selected using a portion of this hash value.

Abstract translation: 一种用于使用散列表与CAM结合来防止冲突的结构和技术，以识别和防止二进制键的冲突。 不与任何其他参考二进制密钥的散列值的一部分相冲突的二进制密钥的散列值的一部分被用作散列表中的条目。 如果两个或更多个二进制密钥具有相同的哈希值部分的值，则这些二进制密钥中的每一个都将全部存储在CAM中。 CAM中的关键字提供了指向数据结构的指针，其中存储与该二进制密钥相关联的动作。 如果在CAM中没有找到二进制密钥，则二进制密钥被散列，并且使用该哈希值的一部分来选择散列表中的特定条目。

公开(公告)号：US20080077979A1

公开(公告)日：2008-03-27

申请号：US11763367

申请日：2007-06-14

Applicant: Clark Jeffries ,  Mohammad Peyravian

Inventor： Clark Jeffries ,  Mohammad Peyravian

IPC: H04L9/32 ,  G06F17/00

CPC classification number: H04L9/3228 ,  H04L9/3242 ,  H04L9/3271

Abstract: A remote user, two-way authentication and password change protocol that also allows parties to optionally establish a session key which can be used to protect subsequent communication. In a preferred embodiment, a challenge token is generated and exchanged which is a onetime value that includes a random value that changes from session to session. The construction and use of the challenge token avoids transmission of the password or even the transmission of a digest of the password itself. Thus the challenge token does not reveal any information about a secret password or a digest of the password.

Abstract translation: 远程用户双向认证和密码更改协议，还允许各方可选地建立可用于保护后续通信的会话密钥。 在优选实施例中，生成和交换挑战令牌，其是包括从会话到会话改变的随机值的一次性值。 挑战令牌的构建和使用避免了密码的传输，甚至传输密码本身的摘要。 因此，挑战令牌不会显示关于密码的秘密密码或摘要的任何信息。

公开(公告)号：US20080069113A1

公开(公告)日：2008-03-20

申请号：US11946057

申请日：2007-11-28

Applicant: Patrick Droz ,  Ilias Iliadis ,  Clark Jeffries ,  Andreas Kind ,  Joseph Logan

Inventor： Patrick Droz ,  Ilias Iliadis ,  Clark Jeffries ,  Andreas Kind ,  Joseph Logan

IPC: H04L12/28

CPC classification number: H04L47/32 ,  H04L12/5602 ,  H04L47/2408 ,  H04L47/2416 ,  H04L47/50 ,  H04L47/525 ,  H04L47/621 ,  H04L2012/5631 ,  H04L2012/5679

Abstract: A method and system for managing asynchronous transfer mode (ATM) traffic in a computer system is disclosed. The computer system is used in sending, receiving, or sending and receiving a plurality of ATM flows. Each ATM flow has a plurality of ATM cells, a minimum ATM bandwidth guarantee, and a maximum ATM bandwidth. The method and system include determining whether excess bandwidth exists for the ATM flows. The method and system also include gracefully increasing a portion of the ATM cells transmitted for each ATM flow during periods of excess bandwidth. The portion of the ATM cells transmitted is not more than the maximum ATM bandwidth limit. If an ATM flow presents a sufficient offered load, the portion of the ATM cells transmitted in the flow is not less than a minimum ATM bandwidth guarantee.

Abstract translation: 公开了一种在计算机系统中管理异步传输模式（ATM）流量的方法和系统。 计算机系统用于发送，接收或发送和接收多个ATM流。 每个ATM流具有多个ATM信元，最小ATM带宽保证和最大ATM带宽。 该方法和系统包括确定ATM流是否存在过量带宽。 该方法和系统还包括在超额带宽周期期间适度地增加为每个ATM流发送的ATM信元的一部分。 发送的ATM信元的部分不超过最大ATM带宽限制。 如果ATM流提供足够的提供负载，则在流中发送的ATM信元的部分不小于最小ATM带宽保证。

公开(公告)号：US20080061982A1

公开(公告)日：2008-03-13

申请号：US11939682

申请日：2007-11-14

Applicant: Kevin Himberger ,  Clark Jeffries ,  Mohammad Peyravian

Inventor： Kevin Himberger ,  Clark Jeffries ,  Mohammad Peyravian

IPC: G08B13/14

CPC classification number: G08B13/2462 ,  G06K17/0029 ,  G06K2017/0051 ,  G06Q10/08

Abstract: System and method for tracking inventory of a multiplicity of products. First RFID tags are associated with respective products or groups of products. Second Active RFID tags are associated with respective first containers for the multiplicity products. A third Active RFID tag is associated with a second container for the first containers. First RFID tags broadcast their respective identifications. Second Active RFID tags hash the identities of the first RFID tags within their respective first containers and broad their hashed values. Third Active RFID tag hash the hashed values broadcast by the second Active RFID tags. An expected value is compared to a result of the third Active RFID tag hashing the hashed values broadcast by the second Active RFID tags.