-
公开(公告)号:US20110158095A1
公开(公告)日:2011-06-30
申请号:US12647597
申请日:2009-12-28
申请人: D. Scott Alexander , Ravichander Vaidyanathan , Balakrishnan Dasarathy , Mark W. Garrett , Shrirang Gadgil
发明人: D. Scott Alexander , Ravichander Vaidyanathan , Balakrishnan Dasarathy , Mark W. Garrett , Shrirang Gadgil
CPC分类号: H04L47/822 , H04L47/781 , H04L47/805 , H04L47/823
摘要: A method for controlling network access comprises receiving a request to allow a communication flow over a network and temporarily allowing the communication flow over the network before a response to the request is transmitted. Further, the availability of one or more network resources may be determined and compared with resources required for the requested communication flow. Priority of the communication flow may also be determined, and the temporarily allowed communication flow may be responded to based on the available resources, the requested resources, and the priority.
摘要翻译: 一种用于控制网络接入的方法包括:在发送对请求的响应之前,接收允许通过网络进行通信流量并临时允许通过网络的通信流的请求。 此外,可以确定一个或多个网络资源的可用性并将其与所请求的通信流所需的资源进行比较。 还可以确定通信流的优先级,并且可以基于可用资源,请求的资源和优先级来响应临时允许的通信流程。
-
2.发明申请公开(公告)号:US20100217853A1
公开(公告)日:2010-08-26
申请号:US12711638
申请日:2010-02-24
IPC分类号: G06F15/173
摘要: A system and method for policy based management for a high security MANET comprises policy managers, each performing policy decision-making and policy enforcement using multiple policies, containers, each related to an application and each container having one policy manager, nodes, each having an infrastructure and at least one container, and dynamic community building blocks associating the containers having a same application, the containers being in different nodes, the associated containers maintained by the dynamic community building blocks on a secure network. Each container can define a security boundary around the node. Each container can be a lightweight virtual machine. The system can also have a special container having a policy manager only evaluating policies for conflicts. In one embodiment, a node can consist of multiple network devices and each network device is a container of its own.
摘要翻译: 用于高安全性MANET的用于基于策略的管理的系统和方法包括策略管理器,每个策略管理器使用多个策略执行策略决策和策略执行,每个与应用相关的容器,每个容器具有一个策略管理器,每个容器具有一个 基础设施和至少一个容器,以及将具有相同应用的容器相关联的动态社区构建块,容器位于不同节点中,由安全网络上的动态社区构建块维护的关联容器。 每个容器可以在节点周围定义一个安全边界。 每个容器都可以是一个轻量级的虚拟机。 该系统还可以有一个专门的容器,其中有一个策略管理器只评估冲突的策略。 在一个实施例中,节点可以由多个网络设备组成,并且每个网络设备是其自己的容器。
-
3.发明授权System and method for policy based management for a high security MANET 有权用于高安全性MANET的基于策略的管理的系统和方法公开(公告)号:US08769068B2
公开(公告)日:2014-07-01
申请号:US12711638
申请日:2010-02-24
IPC分类号: G06F15/16
摘要: A system and method for policy based management for a high security MANET comprises policy managers, each performing policy decision-making and policy enforcement using multiple policies, containers, each related to an application and each container having one policy manager, nodes, each having an infrastructure and at least one container, and dynamic community building blocks associating the containers having a same application, the containers being in different nodes, the associated containers maintained by the dynamic community building blocks on a secure network. Each container can define a security boundary around the node. Each container can be a lightweight virtual machine. The system can also have a special container having a policy manager only evaluating policies for conflicts. In one embodiment, a node can consist of multiple network devices and each network device is a container of its own.
摘要翻译: 用于高安全性MANET的用于基于策略的管理的系统和方法包括策略管理器,每个策略管理器使用多个策略执行策略决策和策略执行,每个与应用相关的容器,每个容器具有一个策略管理器,每个容器具有一个 基础设施和至少一个容器,以及将具有相同应用的容器相关联的动态社区构建块,容器位于不同节点中,由安全网络上的动态社区构建块维护的关联容器。 每个容器可以在节点周围定义一个安全边界。 每个容器都可以是一个轻量级的虚拟机。 该系统还可以有一个专门的容器,其中有一个策略管理器只评估冲突的策略。 在一个实施例中,节点可以由多个网络设备组成,并且每个网络设备是其自己的容器。
-
公开(公告)号:US08514707B2
公开(公告)日:2013-08-20
申请号:US12647597
申请日:2009-12-28
申请人: D. Scott Alexander , Ravichander Vaidyanathan , Balakrishnan Dasarathy , Mark W. Garrett , Shrirang Gadgil
发明人: D. Scott Alexander , Ravichander Vaidyanathan , Balakrishnan Dasarathy , Mark W. Garrett , Shrirang Gadgil
IPC分类号: H04J1/16
CPC分类号: H04L47/822 , H04L47/781 , H04L47/805 , H04L47/823
摘要: A method for controlling network access comprises receiving a request to allow a communication flow over a network and temporarily allowing the communication flow over the network before a response to the request is transmitted. Further, the availability of one or more network resources may be determined and compared with resources required for the requested communication flow. Priority of the communication flow may also be determined, and the temporarily allowed communication flow may be responded to based on the available resources, the requested resources, and the priority.
摘要翻译: 一种用于控制网络接入的方法包括:在发送对请求的响应之前,接收允许通过网络进行通信流量并临时允许通过网络的通信流的请求。 此外,可以确定一个或多个网络资源的可用性并将其与所请求的通信流所需的资源进行比较。 还可以确定通信流的优先级,并且可以基于可用资源,请求的资源和优先级来响应临时允许的通信流程。
-
-
-
搜索结果
4 条记录 (耗时 0.016 秒)
