公开(公告)号：US20100131671A1

公开(公告)日：2010-05-27

申请号：US12624358

申请日：2009-11-23

Applicant: Jaspal Kohli ,  Kumar Narayanan ,  Prabakar Sundarrajan ,  Junxiao (Max) He ,  Michael Nishimoto ,  Mohammed Zubair Visharam ,  Vikram Venkataraghavan

Inventor： Jaspal Kohli ,  Kumar Narayanan ,  Prabakar Sundarrajan ,  Junxiao (Max) He ,  Michael Nishimoto ,  Mohammed Zubair Visharam ,  Vikram Venkataraghavan

IPC: G06F15/16

CPC classification number: H04L65/60 ,  H04L65/4084 ,  H04L65/602 ,  H04L65/80 ,  H04N21/23439 ,  H04N21/23805 ,  H04N21/2407 ,  H04N21/8456

Abstract: A method and apparatus stores media content in a variety of storage devices, with at least a portion of the storage devices having different performance characteristics. The system can deliver media to a large number of clients while maintaining a high level of viewing experience for each client by automatically adapting the bit rate of a media being delivered to a client using the client's last mile bit rate variation. The system provides clients with smooth viewing of video without buffering stops. The client does not need a custom video content player to communicate with the system.

Abstract translation: 方法和装置将媒体内容存储在各种存储设备中，其中至少一部分存储设备具有不同的性能特征。 该系统可以将媒体传送给大量的客户端，同时通过使用客户端的最后一英里比特率变化自动调整传送到客户端的媒体的比特率，为每个客户端保持高水平的观看体验。 该系统为客户提供平滑的视频观看而不需要缓冲停止。 客户端不需要自定义视频内容播放器与系统进行通信。

公开(公告)号：US08370520B2

公开(公告)日：2013-02-05

申请号：US12624358

申请日：2009-11-23

Applicant: Jaspal Kohli ,  Kumar Narayanan ,  Prabakar Sundarrajan ,  Junxiao (Max) He ,  Michael Nishimoto ,  Mohammed Zubair Visharam ,  Vikram Venkataraghavan

Inventor： Jaspal Kohli ,  Kumar Narayanan ,  Prabakar Sundarrajan ,  Junxiao (Max) He ,  Michael Nishimoto ,  Mohammed Zubair Visharam ,  Vikram Venkataraghavan

IPC: G06F15/16

CPC classification number: H04L65/60 ,  H04L65/4084 ,  H04L65/602 ,  H04L65/80 ,  H04N21/23439 ,  H04N21/23805 ,  H04N21/2407 ,  H04N21/8456

Abstract: A method and apparatus stores media content in a variety of storage devices, with at least a portion of the storage devices having different performance characteristics. The system can deliver media to a large number of clients while maintaining a high level of viewing experience for each client by automatically adapting the bit rate of a media being delivered to a client using the client's last mile bit rate variation. The system provides clients with smooth viewing of video without buffering stops. The client does not need a custom video content player to communicate with the system.

Abstract translation: 方法和装置将媒体内容存储在各种存储设备中，其中至少一部分存储设备具有不同的性能特征。 该系统可以将媒体传送给大量的客户端，同时通过使用客户端的最后一英里比特率变化自动调整传送到客户端的媒体的比特率，为每个客户端保持高水平的观看体验。 该系统为客户提供平滑的视频观看而不需要缓冲停止。 客户端不需要自定义视频内容播放器与系统进行通信。

公开(公告)号：US08151323B2

公开(公告)日：2012-04-03

申请号：US11566975

申请日：2006-12-05

Applicant: James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

Inventor： James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

IPC: H04L29/06

CPC classification number: H04L67/06 ,  H04L63/0272 ,  H04L63/105 ,  H04L63/166 ,  H04L67/02 ,  H04L67/2842 ,  H04L67/34 ,  H04L69/10 ,  H04L69/16 ,  H04L69/165

Abstract: The present invention relates to systems and methods to identify a level of access for a resource being accessed via a secure socket layer virtual private network (SSL VPN) connection to a network, and to control the action on the resource based on the identified level of access. The appliance described herein provides intelligent secure access and action control to resources based on a sense and respond mechanism. When a user requests access to a resource via the SSL VPN connection of the appliance, the appliance obtains information about the client to determine the user access scenario—the location, device, connection and identify of the user or client. Based on the collected information, the appliance responds to the detected user scenario by identifying a level of access to the resource for the user/client, such as rights to view, print, edit or save a document, Based on the identified level of access, the appliance controls the actions performs on the resource by various techniques described herein so that the user can only perform the allowed action n accordance with the level of access. As such, the present invention allows organization to control and provide the appropriate level of access to valuable, confidential or business critical information accessed remotely or via a pubic network while protecting such information by controlling the types of actions performed or allowed to be performed remotely on the information.

Abstract translation: 本发明涉及用于识别经由到网络的安全套接字层虚拟专用网（SSL VPN）连接被访问的资源的访问级别的系统和方法，并且基于所识别的级别来控制对资源的动作 访问。 本文所述的设备基于感测和响应机制来提供对资源的智能安全访问和动作控制。 当用户通过设备的SSL VPN连接请求访问资源时，设备将获取有关客户端的信息，以确定用户访问场景 - 用户或客户端的位置，设备，连接和标识。 基于收集的信息，设备通过识别用户/客户端对资源的访问级别（例如查看，打印，编辑或保存文档的权限）来响应所检测的用户场景。基于所识别的访问级别 ，设备通过本文描述的各种技术控制对资源执行的操作，使得用户只能根据访问级别执行允许的动作。 因此，本发明允许组织控制并提供对远程访问或通过公共网络访问的有价值的，机密的或业务关键信息的适当级别的访问，同时通过控制远程执行或允许执行的动作的类型来保护这些信息， 信息。

公开(公告)号：US20070245409A1

公开(公告)日：2007-10-18

申请号：US11566975

申请日：2006-12-05

Applicant: James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

Inventor： James Harris ,  Max He ,  Arkesh Kumar ,  Ajay Soni ,  Charu Venkatraman ,  Shashi Najundaswamy ,  Amarnath Mullick

IPC: H04L9/32

CPC classification number: H04L67/06 ,  H04L63/0272 ,  H04L63/105 ,  H04L63/166 ,  H04L67/02 ,  H04L67/2842 ,  H04L67/34 ,  H04L69/10 ,  H04L69/16 ,  H04L69/165

Abstract: The present invention relates to systems and methods to identify a level of access for a resource being accessed via a secure socket layer virtual private network (SSL VPN) connection to a network, and to control the action on the resource based on the identified level of access. The appliance described herein provides intelligent secure access and action control to resources based on a sense and respond mechanism. When a user requests access to a resource via the SSL VPN connection of the appliance, the appliance obtains information about the client to determine the user access scenario—the location, device, connection and identify of the user or client. Based on the collected information, the appliance responds to the detected user scenario by identifying a level of access to the resource for the user/client, such as rights to view, print, edit or save a document, Based on the identified level of access, the appliance controls the actions performs on the resource by various techniques described herein so that the user can only perform the allowed action n accordance with the level of access. As such, the present invention allows organization to control and provide the appropriate level of access to valuable, confidential or business critical information accessed remotely or via a pubic network while protecting such information by controlling the types of actions performed or allowed to be performed remotely on the information.

Abstract translation: 本发明涉及用于识别经由到网络的安全套接字层虚拟专用网（SSL VPN）连接被访问的资源的访问级别的系统和方法，并且基于所识别的级别来控制对资源的动作 访问。 本文所述的设备基于感测和响应机制来提供对资源的智能安全访问和动作控制。 当用户通过设备的SSL VPN连接请求访问资源时，设备将获取有关客户端的信息，以确定用户访问场景 - 用户或客户端的位置，设备，连接和标识。 基于收集的信息，设备通过识别用户/客户端对资源的访问级别（例如查看，打印，编辑或保存文档的权限）来响应所检测的用户场景。基于所识别的访问级别 ，设备通过本文描述的各种技术控制对资源执行的操作，使得用户只能根据访问级别执行允许的动作。 因此，本发明允许组织控制并提供对远程访问或通过公共网络访问的有价值的，机密的或业务关键信息的适当级别的访问，同时通过控制远程执行或允许执行的动作的类型来保护这些信息， 信息。

公开(公告)号：US08397287B2

公开(公告)日：2013-03-12

申请号：US11465915

申请日：2006-08-21

Applicant: Amarnath Mullick ,  Shashi Nanjundaswamy ,  Ajay Soni ,  Charu Venkatraman ,  Max He

Inventor： Amarnath Mullick ,  Shashi Nanjundaswamy ,  Ajay Soni ,  Charu Venkatraman ,  Max He

IPC: G06F17/00

CPC classification number: H04L63/20 ,  H04L63/0272 ,  H04L63/102 ,  H04L63/105

Abstract: An appliance and method for authorizing a level of access of a client to a virtual private network connection, based on a client-side attribute includes the step of establishing, by an appliance, a control connection with a client upon receiving a client request to establish a virtual private network connection with a network. The appliance transmits, via the control connection, a request to the client to evaluate at least one clause of a security string, the at least one clause including an expression associated with a client-side attribute. The client transmits, via the control connection, a response to the appliance comprising a result of evaluating the at least one clause by the client. The appliance assigns the client to an authorization group based on the result of evaluation of the at least one clause.

Abstract translation: 基于客户端属性来授权客户端访问虚拟专用网络连接的级别的设备和方法包括以下步骤：当设备在接收到建立客户端请求时建立与客户端的控制连接 与网络的虚拟专用网络连接。 该设备经由控制连接向客户端发送请求以评估安全字符串的至少一个子句，所述至少一个子句包括与客户端属性相关联的表达式。 客户端经由控制连接发送对设备的响应，包括由客户端评估至少一个子句的结果。 该设备基于至少一个子句的评估结果将客户端分配给授权组。