-
公开(公告)号:US20110283367A1
公开(公告)日:2011-11-17
申请号:US12779121
申请日:2010-05-13
IPC分类号: G06F21/00
CPC分类号: H04L63/14
摘要: A method, system, and computer usable program product for securing a data communication against attacks are provided in the illustrative embodiments. A segment in the data communication is received at a first application executing in a first data processing system. The segment is formed according to a data communication protocol and includes an option. The option includes a current clue and a next clue. The current clue is compared with a saved next clue, the saved next clue being a next clue in a previous segment. The segment is accepted as being a valid segment in the data communication if the current clue matches the saved next clue. A part of the segment is sent to a consumer application.
摘要翻译: 在说明性实施例中提供了用于保护数据通信不受攻击的方法,系统和计算机可用程序产品。 在第一数据处理系统中执行的第一应用程序接收数据通信中的段。 该段根据数据通信协议形成,并包括一个选项。 该选项包括当前线索和下一条线索。 将当前线索与保存的下一条线索进行比较,保存的下一条线索是先前段落中的下一条线索。 如果当前线索与保存的下一个线索相匹配,则该段被接受为数据通信中的有效段。 该段的一部分被发送到消费者应用程序。
-
公开(公告)号:US08908690B2
公开(公告)日:2014-12-09
申请号:US13454347
申请日:2012-04-24
IPC分类号: H04L12/28 , H04L12/56 , G06F15/167 , G06F15/16 , G06F9/455
CPC分类号: G06F9/45558 , G06F9/5077 , G06F2009/45595 , H04L29/12009 , H04L29/12783 , H04L61/35
摘要: A method for addressing a workload partition is provided in the illustrative embodiments. A packet of data directed to the WPAR and including a combined address is received at a software stack. A determination is made whether the combined address includes an identifier that is reserved. If the identifier is not reserved, the identifier is used to identify the WPAR in the data processing system and the packet is sent to the WPAR. The software stack is an application configured to enable data communication using a protocol of the packet, and is modified to detect, recognize, and process the combined address for routing the packet to the WPAR. The combined address may be logically formed using an identifier associated with the data processing system and an identifier associated with the WPAR, which may be located in different portions of the packet.
摘要翻译: 在说明性实施例中提供了用于寻址工作负载分区的方法。 在软件堆栈处接收到指向WPAR并包括组合地址的数据分组。 确定组合地址是否包括保留的标识符。 如果标识符未被保留,则使用该标识符来识别数据处理系统中的WPAR,并且该分组被发送到WPAR。 软件堆栈是配置为使用数据包的协议进行数据通信的应用,并被修改为检测,识别和处理用于将数据包路由到WPAR的组合地址。 组合的地址可以使用与数据处理系统相关联的标识符和与WPAR相关联的标识符在逻辑上形成,该标识符可以位于分组的不同部分中。
-
公开(公告)号:US08769146B2
公开(公告)日:2014-07-01
申请号:US13423185
申请日:2012-03-17
IPC分类号: G06F15/173
CPC分类号: H04L61/6063
摘要: A method identifies a network socket on a machine by assigning a non-IP address socket anchor and a port number to the network socket. A socket anchor may comprise a globally unique number. In some embodiments, a socket anchor comprises a number having a preselected number of bits. The number having the preselected number of bits may comprise a selected number associated with the machine concatenated with a number of randomly generated bits. The number of bits of the selected number plus the number of randomly generated bits is equal to the preselected number of bits. In some embodiments, the selected number associated with the machine is a Media Access Control (MAC) address of a network interface associated with the machine.
摘要翻译: 一种方法通过将非IP地址套接字锚点和端口号分配给网络套接字来识别机器上的网络套接字。 套接字锚可以包括全局唯一的号码。 在一些实施例中,套接字锚定器包括具有预选位数的数字。 具有预选位数的数字可以包括与机器相关联的选定数量,与多个随机产生的位相连。 所选数字的位数加上随机产生的位的数量等于预选的位数。 在一些实施例中,与机器相关联的所选号码是与机器相关联的网络接口的媒体访问控制(MAC)地址。
-
公开(公告)号:US20110258636A1
公开(公告)日:2011-10-20
申请号:US12762141
申请日:2010-04-16
IPC分类号: G06F9/46
CPC分类号: G06F9/45558 , G06F9/5077 , G06F2009/45595 , H04L29/12009 , H04L29/12783 , H04L61/35
摘要: A method, system, and computer usable program product for addressing a workload partition are provided in the illustrative embodiments. A packet of data directed to the WPAR and including a combined address is received at a software stack. A determination is made whether the combined address includes an identifier that is reserved. If the identifier is not reserved, the identifier is used to identify the WPAR in the data processing system and the packet is sent to the WPAR. The software stack is an application configured to enable data communication using a protocol of the packet, and is modified to detect, recognize, and process the combined address for routing the packet to the WPAR. The combined address may be logically formed using an identifier associated with the data processing system and an identifier associated with the WPAR, which may be located in different portions of the packet.
摘要翻译: 在说明性实施例中提供了用于寻址工作负载分区的方法,系统和计算机可用程序产品。 在软件堆栈处接收到指向WPAR并包括组合地址的数据分组。 确定组合地址是否包括保留的标识符。 如果标识符未被保留,则使用该标识符来识别数据处理系统中的WPAR,并且该分组被发送到WPAR。 软件堆栈是配置为使用数据包的协议进行数据通信的应用,并被修改为检测,识别和处理用于将数据包路由到WPAR的组合地址。 组合的地址可以使用与数据处理系统相关联的标识符和与WPAR相关联的标识符在逻辑上形成,该标识符可以位于分组的不同部分中。
-
公开(公告)号:US09753755B2
公开(公告)日:2017-09-05
申请号:US12762141
申请日:2010-04-16
CPC分类号: G06F9/45558 , G06F9/5077 , G06F2009/45595 , H04L29/12009 , H04L29/12783 , H04L61/35
摘要: A system, and computer usable program product for addressing a workload partition are provided in the illustrative embodiments. A packet of data directed to the WPAR and including a combined address is received at a software stack. A determination is made whether the combined address includes an identifier that is reserved. If the identifier is not reserved, the identifier is used to identify the WPAR in the data processing system and the packet is sent to the WPAR. The software stack is an application configured to enable data communication using a protocol of the packet, and is modified to detect, recognize, and process the combined address for routing the packet to the WPAR. The combined address may be logically formed using an identifier associated with the data processing system and an identifier associated with the WPAR, which may be located in different portions of the packet.
-
公开(公告)号:US08424106B2
公开(公告)日:2013-04-16
申请号:US12779121
申请日:2010-05-13
CPC分类号: H04L63/14
摘要: A method, system, and computer usable program product for securing a data communication against attacks are provided in the illustrative embodiments. A segment in the data communication is received at a first application executing in a first data processing system. The segment is formed according to a data communication protocol and includes an option. The option includes a current clue and a next clue. The current clue is compared with a saved next clue, the saved next clue being a next clue in a previous segment. The segment is accepted as being a valid segment in the data communication if the current clue matches the saved next clue. A part of the segment is sent to a consumer application.
摘要翻译: 在说明性实施例中提供了用于保护数据通信不受攻击的方法,系统和计算机可用程序产品。 在第一数据处理系统中执行的第一应用程序接收数据通信中的段。 该段根据数据通信协议形成,并包括一个选项。 该选项包括当前线索和下一条线索。 将当前线索与保存的下一条线索进行比较,保存的下一条线索是先前段落中的下一条线索。 如果当前线索与保存的下一个线索相匹配,则该段被接受为数据通信中的有效段。 该段的一部分被发送到消费者应用程序。
-
公开(公告)号:US08661156B2
公开(公告)日:2014-02-25
申请号:US12951714
申请日:2010-11-22
IPC分类号: G06F15/173
CPC分类号: H04L61/6063
摘要: A system identifies a network socket on a machine by assigning a non-IP address socket anchor and a port number to the network socket. A socket anchor may comprise a globally unique number. In some embodiments, a socket anchor comprises a number having a preselected number of bits. The number having the preselected number of bits may comprise a selected number associated with the machine concatenated with a number of randomly generated bits. The number of bits of the selected number plus the number of randomly generated bits is equal to the preselected number of bits. In some embodiments, the selected number associated with the machine is a Media Access Control (MAC) address of a network interface associated with the machine.
摘要翻译: 系统通过将非IP地址套接字锚点和端口号分配给网络套接字来识别机器上的网络套接字。 套接字锚可以包括全局唯一的号码。 在一些实施例中,套接字锚定器包括具有预选位数的数字。 具有预选位数的数字可以包括与机器相关联的选定数量,与多个随机产生的位相连。 所选数字的位数加上随机产生的位的数量等于预选的位数。 在一些实施例中,与机器相关联的所选号码是与机器相关联的网络接口的媒体访问控制(MAC)地址。
-
公开(公告)号:US20120207166A1
公开(公告)日:2012-08-16
申请号:US13454347
申请日:2012-04-24
IPC分类号: H04L12/56
CPC分类号: G06F9/45558 , G06F9/5077 , G06F2009/45595 , H04L29/12009 , H04L29/12783 , H04L61/35
摘要: A method for addressing a workload partition is provided in the illustrative embodiments. A packet of data directed to the WPAR and including a combined address is received at a software stack. A determination is made whether the combined address includes an identifier that is reserved. If the identifier is not reserved, the identifier is used to identify the WPAR in the data processing system and the packet is sent to the WPAR. The software stack is an application configured to enable data communication using a protocol of the packet, and is modified to detect, recognize, and process the combined address for routing the packet to the WPAR. The combined address may be logically formed using an identifier associated with the data processing system and an identifier associated with the WPAR, which may be located in different portions of the packet.
摘要翻译: 在说明性实施例中提供了用于寻址工作负载分区的方法。 在软件堆栈处接收到指向WPAR并包括组合地址的数据分组。 确定组合地址是否包括保留的标识符。 如果标识符未被保留,则使用该标识符来识别数据处理系统中的WPAR,并且该分组被发送到WPAR。 软件堆栈是配置为使用数据包的协议进行数据通信的应用,并被修改为检测,识别和处理用于将数据包路由到WPAR的组合地址。 组合的地址可以使用与数据处理系统相关联的标识符和与WPAR相关联的标识符在逻辑上形成,该标识符可以位于分组的不同部分中。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.012 秒)
