公开(公告)号：US08510564B2

公开(公告)日：2013-08-13

申请号：US12852209

申请日：2010-08-06

申请人： David J. Nicholson ,  David Lewis Fisher ,  Michael D. Ritche ,  Chun-Hung Lin ,  Christopher B. Dove ,  Kavitha Radhakrishnan

发明人： David J. Nicholson ,  David Lewis Fisher ,  Michael D. Ritche ,  Chun-Hung Lin ,  Christopher B. Dove ,  Kavitha Radhakrishnan

IPC分类号： H04L9/32

CPC分类号： H04L63/0815 ,  H04L63/0876 ,  H04L63/126

摘要： Embodiments are directed to establishing the integrity of a portion of data on at least one level of a plurality of network stack levels and automatically continuing an established federation relationship between at least two federation computer systems. In an embodiment, a first federation computer system receives a digital signature corresponding to a computer system signed by a digital signature which includes the computer system's identity and other federation relationship information configured to establish a trusted federation relationship between a first federation computer system and a second federation computer system. The first federation computer system attempts to validate the received digital signature at a first level of a network stack and determines that the validation at the first network stack layer was unsuccessful. The first federation computer system then validates the received digital signature at a second, different level of the network stack.

摘要翻译： 实施例涉及在多个网络堆栈级别的至少一个级别上建立数据的一部分的完整性，并且自动地在至少两个联合计算机系统之间继续建立的联合关系。 在一个实施例中，第一联合计算机系统接收与由数字签名签名的计算机系统相对应的数字签名，数字签名包括计算机系统的身份和其他联合关系信息，其被配置为在第一联合计算机系统和第二联合计算机系统之间建立信任的联合关系 联合计算机系统。 第一联合计算机系统尝试在网络堆栈的第一级验证接收到的数字签名，并确定第一网络堆栈层的验证不成功。 第一联合计算机系统然后在网络堆栈的第二个不同级别验证所接收的数字签名。

公开(公告)号：US5365510A

公开(公告)日：1994-11-15

申请号：US865533

申请日：1992-04-09

申请人： David J. Nicholson ,  Donald R. Ellis ,  John B. Mills ,  Dino C. DiPerna ,  David W. Martin ,  Wang-Hsin Peng ,  Kim B. Roberts

发明人： David J. Nicholson ,  Donald R. Ellis ,  John B. Mills ,  Dino C. DiPerna ,  David W. Martin ,  Wang-Hsin Peng ,  Kim B. Roberts

IPC分类号： H04J3/08 ,  H04L1/22

CPC分类号： H04J3/085 ,  H04L1/22

摘要： A communications system is provided having SONET communications channels extending between first and second locations. The channels include pairs of forward and reverse channels for carrying traffic in normal operation between first and second locations and a protection channel for carrying traffic of one channel in the event of a fault. Each pair of forward and reverse channels is provided on a shelf at each location, the shelves having the same relative position at both locations and the protection channel is provided on a protection shelf. The protection channel includes, between the first and second locations, a forward optical link and a reverse optical link and at each of the first and second locations, a single protection loop, coupling the forward and reverse optical links, that forms the protection channel. The protection loop is used to provide, at each location, a local virtual protection loop for indicating the protection requirements and status of the respective location, and a remote virtual protection loop for indicating the protection requirements and status of the location remote from the respective location. The local protection loop is provided by inserting K1 and K2 bytes into E1 slots of STS-1 #25 and #2, respectively. The remote protection loop is provided by inserting K1 and K2 bytes into E1 slots of STS-1 #26 and #3, respectively.

摘要翻译： 提供了具有在第一和第二位置之间延伸的SONET通信信道的通信系统。 信道包括用于在第一和第二位置之间正常操作中携带业务的正向和反向信道对，以及用于在发生故障的情况下携带一个信道的业务的保护信道。 每一对正向和反向通道设置在每个位置的搁架上，在两个位置具有相同相对位置的搁板和保护通道设置在保护架上。 保护信道在第一和第二位置之间包括正向光链路和反向光链路，并且在第一和第二位置中的每一个处包括形成保护信道的单个保护环路，耦合正向和反向光链路。 保护环路用于在每个位置提供用于指示相应位置的保护要求和状态的本地虚拟保护环路，以及用于指示远离相应位置的位置的保护要求和状态的远程虚拟保护环路 。 通过将K1和K2字节分别插入到STS-1＃25和＃2的E1插槽中来提供本地保护环路。 通过将K1和K2字节分别插入到STS-1＃26和＃3的E1插槽中来提供远程保护环路。

公开(公告)号：US08601554B2

公开(公告)日：2013-12-03

申请号：US13293054

申请日：2011-11-09

申请人： Ariel Gordon ,  David J. Nicholson

发明人： Ariel Gordon ,  David J. Nicholson

IPC分类号： G06F7/04 ,  H04L9/32

CPC分类号： H04L63/08 ,  G06F21/31

摘要： The authentication of identities within a realm in which some identities are authenticated using direct authentication, and some identities are authenticated using federated authentication. Requests for service from valid identities in the realm that are to be authenticated by direct authentication are responded to with a direct authentication interface. Requests for service from valid identities in the realm that are to be authenticated by federated authentication are responded to with a federated authentication interface. Requests for service from invalid identities are responded to pseudo-randomly with either the direct authentication interface or the federated authentication interface.

公开(公告)号：US20130117826A1

公开(公告)日：2013-05-09

申请号：US13293054

申请日：2011-11-09

申请人： Ariel Gordon ,  David J. Nicholson

发明人： Ariel Gordon ,  David J. Nicholson

IPC分类号： G06F21/00 ,  G06F7/04

CPC分类号： H04L63/08 ,  G06F21/31

摘要： The authentication of identities within a realm in which some identities are authenticated using direct authentication, and some identities are authenticated using federated authentication. Requests for service from valid identities in the realm that are to be authenticated by direct authentication are responded to with a direct authentication interface. Requests for service from valid identities in the realm that are to be authenticated by federated authentication are responded to with a federated authentication interface. Requests for service from invalid identities are responded to pseudo-randomly with either the direct authentication interface or the federated authentication interface.

摘要翻译： 使用直接认证对一些身份认证的领域的身份认证，以及使用联合身份验证认证某些身份。 通过直接身份验证对要进行身份验证的领域的有效身份进行服务请求使用直接身份验证接口进行响应。 通过联合身份验证对要进行身份验证的领域的有效身份进行服务请求，使用联合身份验证接口进行响应。 使用直接身份验证接口或联合身份验证接口对来自无效身份的服务请求进行伪随机响应。

公开(公告)号：US20120079088A1

公开(公告)日：2012-03-29

申请号：US12891696

申请日：2010-09-27

申请人： David J. Nicholson

发明人： David J. Nicholson

IPC分类号： G06F15/173

CPC分类号： H04L29/12066 ,  H04L29/12632 ,  H04L61/1511 ,  H04L61/302

摘要： Verification that a customer has ownership over a particular domain name. A computing system receives a request to provide a network service to a customer for action upon a particular domain name. In response, the computing system provides information to the customer over a network, and instructs the customer to edit a domain name record for the particular domain name using the provided information. For instance, the customer might be provided with a Globally-Unique IDentifier (GUID), and instruct the customer to insert the GUID into a particular record associated with the domain name in the DNS system. Upon verifying that the domain name record has indeed been edited using the provided information, the customer is confirmed as being an owner of the domain name.

摘要翻译： 验证客户是否拥有对特定域名的所有权。 计算系统接收向客户提供网络服务的请求以对特定域名进行动作。 作为响应，计算系统通过网络向客户提供信息，并且指示客户使用提供的信息来编辑特定域名的域名记录。 例如，可以向客户提供全局唯一标识符（GUID），并指示客户将GUID插入到与DNS系统中的域名相关联的特定记录中。 在使用提供的信息验证域名记录确实已被编辑后，客户被确认为域名所有者。

公开(公告)号：US20120036566A1

公开(公告)日：2012-02-09

申请号：US12852209

申请日：2010-08-06

申请人： David J. Nicholson ,  David Lewis Fisher ,  Michael D. Ritche ,  Chun-Hung Lin ,  Christopher B. Dove ,  Kavitha Radhakrishnan

发明人： David J. Nicholson ,  David Lewis Fisher ,  Michael D. Ritche ,  Chun-Hung Lin ,  Christopher B. Dove ,  Kavitha Radhakrishnan

IPC分类号： G06F21/20 ,  G06F11/07

CPC分类号： H04L63/0815 ,  H04L63/0876 ,  H04L63/126

摘要： Embodiments are directed to establishing the integrity of a portion of data on at least one level of a plurality of network stack levels and automatically continuing an established federation relationship between at least two federation computer systems. In an embodiment, a first federation computer system receives a digital signature corresponding to a computer system signed by a digital signature which includes the computer system's identity and other federation relationship information configured to establish a trusted federation relationship between a first federation computer system and a second federation computer system. The first federation computer system attempts to validate the received digital signature at a first level of a network stack and determines that the validation at the first network stack layer was unsuccessful. The first federation computer system then validates the received digital signature at a second, different level of the network stack.

摘要翻译： 实施例涉及在多个网络堆栈级别的至少一个级别上建立数据的一部分的完整性，并且自动地在至少两个联合计算机系统之间继续建立的联合关系。 在一个实施例中，第一联合计算机系统接收与由数字签名签名的计算机系统相对应的数字签名，数字签名包括计算机系统的身份和其他联合关系信息，其被配置为在第一联合计算机系统和第二联合计算机系统之间建立信任的联合关系 联合计算机系统。 第一联合计算机系统尝试在网络堆栈的第一级验证接收到的数字签名，并确定第一网络堆栈层的验证不成功。 第一联合计算机系统然后在网络堆栈的第二个不同级别验证所接收的数字签名。

公开(公告)号：US5159595A

公开(公告)日：1992-10-27

申请号：US286713

申请日：1988-12-20

申请人： Thomas P. J. Flanagan ,  James A. McEachern ,  David J. Nicholson ,  Dino Diperna ,  Richard Romagnino ,  Wayne Ergle

发明人： Thomas P. J. Flanagan ,  James A. McEachern ,  David J. Nicholson ,  Dino Diperna ,  Richard Romagnino ,  Wayne Ergle

IPC分类号： H04J3/08 ,  H04L12/437 ,  H04L12/56 ,  H04Q11/04

CPC分类号： H04J14/0293 ,  H04J14/0283 ,  H04J3/085 ,  H04L12/437 ,  H04Q11/04 ,  H04J2203/0089 ,  H04L2012/5612

摘要： A transmission system comprises nodes coupled in a ring via two multiplexed transmission paths having opposite transmission directions. The two paths can be time, space, or wavelength division multiplexed. Bidirectional communications between any two nodes are provided in normal operation using both paths around a first, most direct, part of the ring. In the event of a fault affecting such communications, a protection switch is made to maintain bidirectional communications between the two nodes using both paths around a second, remaining, part of the ring. In this manner, each path can simultaneously carry both normal and protection switched signals. In an embodiment of the invention, only the two nodes adjacent a fault need be aware of the fault, each of these nodes effecting a protection switch for signals terminated at the node and effecting a protective loopback for other signals needing protection. The invention enhances the total capacity of the paths for carrying normal and protection switched signals. A network may comprise a plurality of such ring transmission systems intersecting at at least one network node, the network node comprising a node of each ring and a cross connect switch for switching signals therebetween.

摘要翻译： 传输系统包括通过具有相反传输方向的两个复用传输路径耦合在环中的节点。 这两条路径可以是时间，空间或波分复用。 在正常操作中，使用围绕环的第一，最直接的部分的两个路径来提供任何两个节点之间的双向通信。 在影响这种通信的故障的情况下，使用围绕第二剩余部分环路的两个路径来保护两个节点之间的双向通信的保护开关。 以这种方式，每个路径可同时携带正常和保护切换信号。 在本发明的一个实施例中，只有与故障相邻的两个节点需要知道故障，这些节点中的每个节点对终止在节点处的信号执行保护开关，并对需要保护的其他信号进行保护环回。 本发明增强了用于承载正常和保护开关信号的路径的总容量。 网络可以包括与至少一个网络节点相交的多个这样的环形传输系统，网络节点包括每个环的节点和用于在它们之间切换信号的交叉连接开关。

公开(公告)号：US4823360A

公开(公告)日：1989-04-18

申请号：US155413

申请日：1988-02-12

申请人： Yves Tremblay ,  David J. Nicholson

发明人： Yves Tremblay ,  David J. Nicholson

IPC分类号： H03K5/08 ,  H04B10/00 ,  H04L7/033 ,  H04L25/03 ,  H04L25/06

CPC分类号： H04L25/065 ,  H04L25/063 ,  H04L7/033

摘要： A binary data signal is regenerated with respect to three threshold levels, one of which is derived from and lies between the other two so that it is an optimum level for producing a regenerated output signal. Two control loops are used to produce the other two threshold levels to produce regenerated signals with predetermined error rates, the errors occurring on the two control loops for the two respective states of the binary data signal, whereby the optimum threshold level is maintained regardless of the nature of signal degradation. The arrangement provides rapid performance monitoring which can also be used to adjust other parameters, such as detector bias, equalizer tuning, and clock phase, for optimum performance in an active and ongoing manner.