-
公开(公告)号:US08990891B1
公开(公告)日:2015-03-24
申请号:US13166376
申请日:2011-06-22
CPC分类号: H04L63/0876 , G06F21/74 , G06F21/85 , G06F2221/2105 , H04L63/0272 , H04L63/0884 , H04L63/0892 , H04L63/105 , H04L63/162 , H04L63/164 , H04W12/06
摘要: In general, techniques are described for provisioning layer two access in computer networks. A network device located in a public network comprising an interface and a control unit may implement the techniques. The interface establishes a session with a mobile device. The control unit requests security state data identifying a security state of the mobile device via the established session. The interface receives a mobile device identifier and the security state data from the mobile device via the session. The mobile device identifier identifies the mobile device. The control unit publishes the security state information to a database such that the security state information is associated with the mobile device identifier.
摘要翻译: 一般来说,描述了在计算机网络中提供第二层访问的技术。 位于包括接口和控制单元的公共网络中的网络设备可以实现这些技术。 接口与移动设备建立会话。 控制单元通过建立的会话请求识别移动设备的安全状态的安全状态数据。 该接口经由会话从移动设备接收移动设备标识符和安全状态数据。 移动设备标识符标识移动设备。 控制单元将安全状态信息发布到数据库,使得安全状态信息与移动设备标识符相关联。
-
公开(公告)号:US08375117B2
公开(公告)日:2013-02-12
申请号:US12769023
申请日:2010-04-28
IPC分类号: G06F15/177 , G06F15/173
摘要: A device receives, from a managed device, endpoint information associated with an unmanaged device connected to the managed device in a network. The device also receives unmanaged device information that partially identifies the unmanaged device, and completely identifies the unmanaged device based on the endpoint information and the unmanaged device information.
-
公开(公告)号:US08161521B1
公开(公告)日:2012-04-17
申请号:US12042577
申请日:2008-03-05
IPC分类号: G06F17/00
CPC分类号: G06F21/6218 , H04L63/0209 , H04L63/102 , H04L63/20
摘要: A device may monitor a security policy that governs a user access to a zone in a private network, propagate a change in status of the security policy to one or more devices that coordinate with each other to implement a super policy, detect whether conditions for triggering actions that are associated with the super policy are present based on the change in status, and perform the actions if the conditions for triggering the actions are present.
摘要翻译: 设备可以监视管理用户对私有网络中的区域的访问的安全策略,将安全策略的状态的改变传播到彼此协调以实现超级策略的一个或多个设备,检测触发条件 与超级策略相关联的动作基于状态的变化存在,如果触发动作的条件存在,则执行动作。
-
公开(公告)号:US08094812B1
公开(公告)日:2012-01-10
申请号:US11864598
申请日:2007-09-28
IPC分类号: H04K1/00
CPC分类号: H04L63/083 , G06F17/30097 , H04L9/3226 , H04L9/3236 , H04L63/126 , H04L67/02 , H04L67/42
摘要: A device may include an authentication server and a server. The authentication server may receive a first form of a password from a client device in accordance with an authentication protocol, and authenticate the client device based on a comparison of the first form to a value derived from a second form of the password stored in a password database, where the comparison fails when the first form is not comparable to a value derived from the second form. The server may establish a secure connection to the client, receive a plain-text password from the client device over the secure connection, authenticate the client device by comparing a value derived from the plain-text password with a value derived from the second form, and update the password database with a third form of the password that permits the authentication server to successfully authenticate the client device when the authentication server receives the first form.
摘要翻译: 设备可以包括认证服务器和服务器。 认证服务器可以根据认证协议从客户端设备接收第一形式的密码,并且基于第一形式与从存储在密码中的密码的第二形式导出的值的比较来认证客户端设备 数据库,当第一个表单与从第二个表单导出的值不可比较时,比较失败。 服务器可以建立与客户端的安全连接,通过安全连接从客户端设备接收明文密码,通过将从纯文本密码导出的值与从第二形式导出的值进行比较来认证客户端设备, 并使用允许认证服务器在认证服务器接收到第一个表单时成功认证客户端设备的第三种形式的密码来更新密码数据库。
-
公开(公告)号:US07813274B1
公开(公告)日:2010-10-12
申请号:US11026525
申请日:2004-12-30
IPC分类号: G01R31/08
CPC分类号: H04L29/12367 , H04L61/2514 , H04L67/14
摘要: Dynamic demultiplexing of network traffic to maximize availability of a source restricting service is disclosed. In one embodiment, a request is received from a host associated with a first network space to establish a connection to a source restricting service associated with a second network space. In one embodiment, the request is received at a node configured to use network address translation or similar techniques to facilitate communication between hosts associated with the first network on the one hand and hosts associated with the second network on the other. If establishing the requested connection using a first source identifier would result in a per source limit associated with the source restricting service being exceeded with respect to the first source identifier, a second source identifier is instead used to establish the requested connection.
摘要翻译: 公开了网络流量的动态解复用以最大化源限制服务的可用性。 在一个实施例中,从与第一网络空间相关联的主机接收到建立到与第二网络空间相关联的源限制服务的连接的请求。 在一个实施例中,在被配置为使用网络地址转换或类似技术的节点处接收请求,以促进与第一网络相关联的主机与另一方面与第二网络相关联的主机之间的通信。 如果使用第一源标识符建立所请求的连接将导致相对于第一源标识符超过与源限制服务相关联的每个源限制,则替代地使用第二源标识符来建立所请求的连接。
-
公开(公告)号:US09001999B2
公开(公告)日:2015-04-07
申请号:US13312062
申请日:2011-12-06
CPC分类号: H04L63/083 , G06F17/30097 , H04L9/3226 , H04L9/3236 , H04L63/126 , H04L67/02 , H04L67/42
摘要: A device may include an authentication server and a server. The authentication server may receive a first form of a password from a client in accordance with an authentication protocol, and authenticate the client based on a comparison of the first form to a value derived from a second form of the password stored in a password database. The comparison fails when the first form is not comparable to a value derived from the second form. The server may establish a secure connection to the client, receive a plain-text password from the client over the secure connection, authenticate the client by comparing a value derived from the plain-text password with a value derived from the second form, and update the password database with a third form of the password that permits the authentication server to successfully authenticate the client when the authentication server receives the first form.
摘要翻译: 设备可以包括认证服务器和服务器。 验证服务器可以根据认证协议从客户端接收第一形式的密码,并且基于第一形式与从密码数据库中存储的密码的第二形式导出的值的比较来认证客户端。 当第一种形式与从第二种形式得出的值不相称时,比较失败。 服务器可以建立到客户端的安全连接,通过安全连接从客户端接收明文密码,通过将从纯文本密码导出的值与从第二种形式导出的值进行比较来验证客户端,并更新 密码数据库具有第三种形式的密码,允许认证服务器在认证服务器接收到第一个表单时成功验证客户端。
-
7.发明授权公开(公告)号:US08806567B1
公开(公告)日:2014-08-12
申请号:US12969941
申请日:2010-12-16
IPC分类号: H04L29/00
CPC分类号: H04W12/06 , H04L63/0823 , H04L63/0846
摘要: A user device receives a captured image of an encoded identifier, analyzes the encoded identifier via the captured image, and extracts, based on the analysis, network access configuration data from the encoded identifier. The user device provides the network access configuration data to a network access control (NAC) device, and receives, based on the network access configuration data, access to the NAC device. The user device permits the NAC device to inspect the user device via the access to the NAC device, and receives, based on the inspection of the user device, access to a network.
摘要翻译: 用户设备接收经编码的标识符的捕获图像,经由捕获的图像分析编码的标识符,并根据分析从编码的标识符中提取网络访问配置数据。 用户设备向网络访问控制(NAC)设备提供网络访问配置数据,并且基于网络访问配置数据接收对NAC设备的访问。 用户设备允许NAC设备通过对NAC设备的访问来检查用户设备,并且基于对用户设备的检查来接收对网络的访问。
-
公开(公告)号:US20110099409A1
公开(公告)日:2011-04-28
申请号:US12980598
申请日:2010-12-29
CPC分类号: G06F9/542
摘要: A device may include a processor to execute a thread. The processor may be further configured to execute a set of wrappers that are called from within the thread to invoke a set of one-shot signal objects to generate delayed signals. Each of the set of wrappers may be configured to detect whether different ones of one-shot signal objects that were invoked from within the thread have generated signals at periodic time intervals, determine a delay to be used for invoking one of the set of one-shot signal objects, and invoke the one of the set of one-shot signal object to generate one of the delayed signals based on the delay when the different ones of one-shot signal objects have generated signals at periodic time intervals. The processor may be further configured to receive the delayed signals generated from the set of one-shot signal objects over a time period.
摘要翻译: 设备可以包括执行线程的处理器。 处理器可以被进一步配置为执行从线程内调用的一组包装器来调用一组单触发信号对象以产生延迟的信号。 该组包装器中的每一个可以被配置为检测在线程内被调用的单触发信号对象中的不同的一个信号对象是否以周期性的时间间隔产生信号,确定用于调用一组单向信号中的一个的延迟, 并且当不同的单触发信号对象以周期性的时间间隔产生信号时,基于延迟来调用一组单触发信号对象中的一个以产生延迟信号之一。 处理器可以被进一步配置成在一段时间内接收从该组一对一信号对象产生的延迟信号。
-
公开(公告)号:US07886175B1
公开(公告)日:2011-02-08
申请号:US12042558
申请日:2008-03-05
IPC分类号: G06F1/12
CPC分类号: G06F9/542
摘要: A device may include a processor to execute a thread. The processor may be further configured to execute a set of wrappers that are called from within the thread to invoke a set of one-shot signal objects to generate delayed signals. Each of the set of wrappers may be configured to detect whether different ones of one-shot signal objects that were invoked from within the thread have generated signals at periodic time intervals, determine a delay to be used for invoking one of the set of one-shot signal objects, and invoke the one of the set of one-shot signal object to generate one of the delayed signals based on the delay when the different ones of one-shot signal objects have generated signals at periodic time intervals. The processor may be further configured to receive the delayed signals generated from the set of one-shot signal objects over a time period.
摘要翻译: 设备可以包括执行线程的处理器。 处理器可以被进一步配置为执行从线程内调用的一组包装器来调用一组单触发信号对象以产生延迟的信号。 该组包装器中的每一个可以被配置为检测在线程内被调用的单触发信号对象中的不同的一个信号对象是否以周期性的时间间隔产生信号,确定用于调用一组单向信号中的一个的延迟, 并且当不同的单触发信号对象以周期性的时间间隔产生信号时,基于延迟来调用一组单触发信号对象中的一个以产生延迟信号之一。 处理器可以被进一步配置为在一段时间内接收从该组一对一信号对象产生的延迟信号。
-
公开(公告)号:US20130132569A1
公开(公告)日:2013-05-23
申请号:US13746598
申请日:2013-01-22
IPC分类号: H04L12/24
摘要: A device receives, from a managed device, endpoint information associated with an unmanaged device connected to the managed device in a network. The device also receives unmanaged device information that partially identifies the unmanaged device, and completely identifies the unmanaged device based on the endpoint information and the unmanaged device information.
-
-
-
-
-
-
-
-
-
搜索结果
17 条记录 (耗时 0.018 秒)
