System and Method for Providing Network Security
    1.
    发明申请
    System and Method for Providing Network Security 有权
    提供网络安全的系统和方法

    公开(公告)号:US20130014255A1

    公开(公告)日:2013-01-10

    申请号:US13604771

    申请日:2012-09-06

    IPC分类号: G06F21/00

    摘要: A method includes receiving an indication of at least one detected security issue at a network device. The indication is received at a security manager processor from a security agent. The method includes selecting, via the security manager processor, at least one executable security object responsive to the indication. The security manager processor verifies compatibility between the at least one executable security object, the network device, and communication media. The method also includes sending the at least one executable security object to the network device via the security manager processor to provide a protective security measure to the network device against the at least one detected security issue upon execution of the at least one executable security object.

    摘要翻译: 一种方法包括在网络设备处接收至少一个检测到的安全问题的指示。 来自安全代理的安全管理器处理器接收到该指示。 该方法包括经由安全管理器处理器响应于该指示来选择至少一个可执行安全对象。 安全管理器处理器验证至少一个可执行安全对象,网络设备和通信介质之间的兼容性。 该方法还包括经由安全管理器处理器将至少一个可执行安全对象发送到网络设备,以在执行至少一个可执行安全对象时针对该至少一个检测到的安全问题向网络设备提供保护性安全措施。

    System and method of delivering video content
    2.
    发明授权
    System and method of delivering video content 有权
    提供视频内容的系统和方法

    公开(公告)号:US08209728B2

    公开(公告)日:2012-06-26

    申请号:US11848818

    申请日:2007-08-31

    IPC分类号: H04N7/173 H04N7/16 H04J14/00

    摘要: A method to deliver video content is disclosed and includes sending a bandwidth change request from a set-top box device associated with a home network to a server via an Internet Protocol Television (IPTV) access network. The bandwidth change request includes a requested bandwidth change event and an upper limit overhead bandwidth factor. The method also includes receiving video packets related to the bandwidth change event from the server at an increased rate corresponding to the upper limit overhead bandwidth factor.

    摘要翻译: 公开了传送视频内容的方法,并且包括经由因特网协议电视(IPTV)接入网络将来自与家庭网络相关联的机顶盒设备的带宽改变请求发送到服务器。 带宽改变请求包括请求的带宽改变事件和上限开销带宽因子。 该方法还包括以对应于上限开销带宽因子的增加速率从服务器接收与带宽变化事件相关的视频分组。

    Method and system for monitoring communications of an individual in a packet network
    3.
    发明授权
    Method and system for monitoring communications of an individual in a packet network 有权
    用于监视分组网络中的个体的通信的方法和系统

    公开(公告)号:US07983176B2

    公开(公告)日:2011-07-19

    申请号:US11228134

    申请日:2005-09-16

    IPC分类号: H04J3/14

    摘要: A system and method are disclosed for monitoring communications of an individual in a packet network. A system that incorporates teachings of the present disclosure may include, for example, a network monitor having a communications interface coupled to a packet network, and a controller. The controller can be programmed to receive a request from a third party to monitor communications associated with an individual, convey to the third party information monitored on a group of one or more permanent virtual circuits (PVCs) of the packet network associated with the individual, detect an update in the group of one or more PVCs, determine new set of one or more PVCs associated with the individual, and convey to the third party information monitored from the new set of one or more PVCs.

    摘要翻译: 公开了一种用于监视分组网络中的个人的通信的系统和方法。 结合本公开的教导的系统可以包括例如具有耦合到分组网络的通信接口的网络监视器和控制器。 控制器可以被编程为接收来自第三方的请求以监视与个人相关联的通信,将与个人相关联的分组网络的一组或多个永久虚拟电路(PVC)的组中监视的信息传达给第三方信息, 检测一个或多个PVC组中的更新,确定与个体相关联的一组或多个PVC的新集合,并将新信息传达给第三方信息。

    System to enforce service level agreements for voice-over internet protocol
    4.
    发明授权
    System to enforce service level agreements for voice-over internet protocol 失效
    系统执行语音互联网协议的服务级别协议

    公开(公告)号:US07551624B2

    公开(公告)日:2009-06-23

    申请号:US11148948

    申请日:2005-06-09

    IPC分类号: H04L12/28

    摘要: A communications system is described for enforcing a service level agreement for a specified customer on a network. The communications system includes a router to receive at least one packet containing data. A management system is in communication with the router, where the management system provides access control commands to the router for the specified customer based upon an agreed upon codec and an agreed upon packet length. A detection system is in communication with the router. The detection system extracts a codec information and a packet length information from the packet. If the codec matches the agreed upon codec and the packet length matches the agreed upon packet length, then the packet is allowed to proceed. Otherwise the packet is dropped from the network.

    摘要翻译: 描述了一种通信系统,用于对网络上的指定客户执行服务级别协议。 通信系统包括用于接收至少一个包含数据的分组的路由器。 管理系统与路由器通信,其中管理系统基于商定的编解码器和约定的分组长度向指定的客户提供对路由器的访问控制命令。 检测系统与路由器通信。 检测系统从分组中提取编解码信息和分组长度信息。 如果编解码器与商定的编解码器匹配,并且分组长度与商定的分组长度相匹配,则允许分组继续进行。 否则,数据包将从网络中丢弃。

    Method of performing deficit round-robin scheduling and structure for implementing same
    5.
    发明授权
    Method of performing deficit round-robin scheduling and structure for implementing same 失效
    执行赤字循环调度和实现方法的方法

    公开(公告)号:US07342936B2

    公开(公告)日:2008-03-11

    申请号:US10174435

    申请日:2002-06-17

    IPC分类号: H04L12/54 H04L12/56

    摘要: A deficit round-robin scheduler including a round-robin table configured to store a plurality of cycle link lists, wherein each cycle link list includes a head flow identification (FLID) value identifying a first flow of the cycle link list, and a tail FLID value identifying a last flow of the cycle link list. A flow table is provided having a plurality of flow table entries, wherein each of the flow table entries is associated with a corresponding flow, and therefore has a corresponding FLID value. A packet queue is associated with each flow table entry, wherein each packet queue is capable of storing a plurality of packets. The deficit round-robin scheduler also included an idle cycle register having an idle cycle entry corresponding with each of the cycle link lists, wherein each idle cycle entry identifies the corresponding cycle link list as active or idle.

    摘要翻译: 一种赤字循环调度器,其包括被配置为存储多个周期链路列表的循环表,其中每个周期链路列表包括标识所述周期链路列表的第一流的头部流标识(FLID)值和尾部FLID 识别循环链接列表的最后一个流的值。 提供具有多个流表条目的流表,其中每个流表条目与相应的流相关联,因此具有对应的FLID值。 分组队列与每个流表项相关联,其中每个分组队列能够存储多个分组。 赤字循环调度器还包括具有与每个循环链路列表相对应的空闲周期条目的空闲周期寄存器,其中每个空闲周期条目将对应的周期链路列表标识为活动或空闲。

    Bandwidth allocation for VoIP traffic in network having interface between frame relay and ATM
    6.
    发明申请
    Bandwidth allocation for VoIP traffic in network having interface between frame relay and ATM 有权
    网络VoIP流量带宽分配,具有帧中继和ATM之间的接口

    公开(公告)号:US20060182024A1

    公开(公告)日:2006-08-17

    申请号:US11057857

    申请日:2005-02-14

    摘要: A frame relay data rate RFR for a VoIP call is determined based on a particular packetization time interval TS and its associated sample data size BS for a particular CODEC, a size BHT of at least one of a frame relay header and a frame relay trailer, and a size BIP of an IP header. A number of VoIP calls NUMVOIP that can be supported by a frame relay access link is determined based on a bandwidth of the frame relay access link that is to be allocated to VoIP traffic, and the frame relay data rate RFR. At least one network parameter is determined based on NUMVOIP. Bandwidth in an asynchronous transfer mode (ATM) network is allocated for the VoIP traffic based on the at least one network parameter.

    摘要翻译: 用于VoIP呼叫的帧中继数据速率R SUB FR是基于特定的分组化时间间隔T S S及其相关联的采样数据大小B SUB / >用于特定CODEC,帧中继报头和帧中继报尾中的至少一个的尺寸B> HT>和IP报头的大小B< IP>。 基于要分配给VoIP业务的帧中继接入链路的带宽来确定可由帧中继接入链路支持的多个VoIP呼叫NUM VOIP ,并且帧中继数据 速率R< FR>。 基于NUM VOIP 确定至少一个网络参数。 基于至少一个网络参数,为VoIP流量分配异步传输模式(ATM)网络中的带宽。

    Switch queue predictive protocol (SQPP) based packet switching method

    公开(公告)号:US07020133B2

    公开(公告)日:2006-03-28

    申请号:US10037433

    申请日:2002-01-03

    IPC分类号: H04L12/56

    摘要: A switch queue predictive protocol (SQPP) includes a packet switching system including: a switch fabric having a cross-point switch, and a plurality of line cards, each coupled to the switch fabric. A cross-point buffer is located at each cross-point of the cross-point switch. The switch fabric also includes a plurality of actual available queue space tables (AAQSTs), each identifying the actual queue space available in a row of the cross-point buffers. Each of the line cards includes an input buffer, an output buffer, and a predicted available queue space table (PAQST) identifying predicted queue space available in a corresponding row of the cross-point buffers. Packet information is transmitted from a source line card to the switch fabric only if available queue space is predicted by the corresponding PAQST. The switch fabric uses the AAQST to update the PAQST after packet information is transmitted to a destination line card.

    System and method for providing network security
    8.
    发明授权
    System and method for providing network security 有权
    提供网络安全的系统和方法

    公开(公告)号:US09038173B2

    公开(公告)日:2015-05-19

    申请号:US13604771

    申请日:2012-09-06

    IPC分类号: H04L29/06

    摘要: A method includes receiving an indication of at least one detected security issue at a network device. The indication is received at a security manager processor from a security agent. The method includes selecting, via the security manager processor, at least one executable security object responsive to the indication. The security manager processor verifies compatibility between the at least one executable security object, the network device, and communication media. The method also includes sending the at least one executable security object to the network device via the security manager processor to provide a protective security measure to the network device against the at least one detected security issue upon execution of the at least one executable security object.

    摘要翻译: 一种方法包括在网络设备处接收至少一个检测到的安全问题的指示。 来自安全代理的安全管理器处理器接收到该指示。 该方法包括经由安全管理器处理器响应于该指示来选择至少一个可执行安全对象。 安全管理器处理器验证至少一个可执行安全对象,网络设备和通信介质之间的兼容性。 该方法还包括经由安全管理器处理器将至少一个可执行安全对象发送到网络设备,以在执行至少一个可执行安全对象时针对该至少一个检测到的安全问题向网络设备提供保护性安全措施。

    SYSTEM AND METHOD TO ACHIEVE SUB-SECOND ROUTING PERFORMANCE
    10.
    发明申请
    SYSTEM AND METHOD TO ACHIEVE SUB-SECOND ROUTING PERFORMANCE 有权
    实现次二路径性能的系统和方法

    公开(公告)号:US20130121138A1

    公开(公告)日:2013-05-16

    申请号:US13614732

    申请日:2012-09-13

    IPC分类号: H04L12/56

    摘要: A system and method for routing data, the system having a processor, an interface in communication with the processor and capable of being in communication with a second system for routing data, a memory unit in communication with the processor, the memory unit having a network routing table having a plurality of routes, the plurality of routes having a first route; and a network failure route selection logic including instructions adapted to configure the processor to determine when the first route is inoperative, transmit a first data packet to the second system for routing data when the first route is inoperative and utilize a second route selected from one of the plurality of routes, the second route being different from the first route.

    摘要翻译: 一种用于路由数据的系统和方法,所述系统具有处理器,与所述处理器通信的接口,并且能够与用于路由数据的第二系统进行通信;与所述处理器通信的存储器单元,所述存储器单元具有网络 具有多个路由的路由表,所述多个路由具有第一路由; 以及网络故障路由选择逻辑,其包括适于配置所述处理器以确定所述第一路由何时不起作用的指令;当所述第一路由不起作用时,向所述第二系统发送第一数据分组以路由数据,并利用从 所述多个路由,所述第二路由与所述第一路由不同。