-
公开(公告)号:US07640338B2
公开(公告)日:2009-12-29
申请号:US11039758
申请日:2005-01-18
IPC分类号: G06F15/173
CPC分类号: H04L63/14 , H04L63/1433 , H04L63/1458
摘要: Malicious network node activity and, in particular, denial of service attacks, may be mitigated by one or more practical mitigation mechanisms and mitigation mechanism combinations. Suitable protocol messages may be challenged with a challenge probe. A response to the challenge probe may be utilized to determine if received protocol messages are illegitimate, that is, originated by a malicious network node. Received protocol messages may be classified as questionable protocol messages. For efficiency, protocol message challenges may be limited to protocol message classified as questionable. A sequence number limit may be calculated as a function of receive window size. Transmission control protocol messages may be determined to be illegitimate by comparing the acknowledgement number field with the calculated sequence number limit. Randomized selection of source port numbers for transmission control protocol connections may also mitigate malicious network node activity by resulting in legitimate protocol message field values that are less predictable.
摘要翻译: 恶意网络节点活动,特别是拒绝服务攻击可以通过一个或多个实际的缓解机制和缓解机制组合来缓解。 挑战探针可能会挑战合适的协议消息。 可以利用对挑战探测器的响应来确定接收到的协议消息是否是非法的,即由恶意网络节点发起。 接收到的协议消息可以被分类为可疑协议消息。 为了效率,协议消息挑战可能被限制为被分类为有问题的协议消息。 序列号限制可以作为接收窗口大小的函数来计算。 可以通过将确认号码字段与所计算的序列号限制进行比较来确定发送控制协议消息是不合法的。 用于传输控制协议连接的源端口号的随机选择还可以通过导致较不可预测的合法协议消息字段值来减轻恶意网络节点活动。
-
公开(公告)号:US09167020B2
公开(公告)日:2015-10-20
申请号:US13158268
申请日:2011-06-10
申请人: Nadim Y. Abdo , B. Anil Kumar , Wilhelm R. Schmieder , Sridhar Sankuratri , Krishna Mohan Malladi , Asael Dror , Joy Chik , Nelamangal Krishnaswamy Srinivas , Tad Brockway
发明人: Nadim Y. Abdo , B. Anil Kumar , Wilhelm R. Schmieder , Sridhar Sankuratri , Krishna Mohan Malladi , Asael Dror , Joy Chik , Nelamangal Krishnaswamy Srinivas , Tad Brockway
摘要: An invention is disclosed for conducting a remote presentation session with a client that uses a web browser to conduct the session. In embodiments, a proxy server exists between the remote presentation server and the client. The proxy server establishes a HTTP session with the client and a remote presentation session with the client. The server generates graphics encoded with a remote presentation protocol and sends them to the proxy, which re-encodes them as video and sends them to the client for display in the web browser. The client captures user input at the web browser and sends it to the proxy, which encodes it with the remote presentation protocol and sends it to the server to be processed.
摘要翻译: 公开了一种用于与使用网络浏览器进行会话的客户端进行远程呈现会话的发明。 在实施例中,在远程呈现服务器和客户端之间存在代理服务器。 代理服务器与客户端建立HTTP会话,并与客户端建立远程呈现会话。 服务器生成使用远程呈现协议编码的图形,并将其发送到代理,将其重新编码为视频,并将其发送到客户端以在Web浏览器中显示。 客户端在Web浏览器捕获用户输入并将其发送到代理,代理程序使用远程呈现协议进行编码,并将其发送到要处理的服务器。
-
公开(公告)号:US08838726B2
公开(公告)日:2014-09-16
申请号:US13228446
申请日:2011-09-09
申请人: Nelamangal Krishnaswamy Srinivas , Robert Wilhelm Schmieder , David Jaroslav Sebesta , Neil Scott Fishman , Robert C. Elmer , Clark David Nicholson
发明人: Nelamangal Krishnaswamy Srinivas , Robert Wilhelm Schmieder , David Jaroslav Sebesta , Neil Scott Fishman , Robert C. Elmer , Clark David Nicholson
IPC分类号: G06F15/167 , G06F9/54 , G06F9/44
CPC分类号: H04L67/1008 , G06F9/452 , G06F9/544 , G06F2209/549 , H04L67/2842 , H04L67/42
摘要: A method includes determining if a server supporting an application and a client having remote desktop access to the server are on a same physical computing device. Upon determining that the server and the client are on the same physical computing device, graphics data related to the application is stored from the server to shared memory that is accessible by the server and by the client. Information to enable the client to retrieve the graphics data stored by the server in the shared memory is communicated from the server to the client.
摘要翻译: 一种方法包括确定支持应用的服务器和具有对服务器的远程桌面访问权限的客户端是否位于相同的物理计算设备上。 在确定服务器和客户端位于同一物理计算设备上时,与应用相关的图形数据从服务器存储到由服务器和客户机可访问的共享存储器。 用于使客户端检索由服务器存储在共享存储器中的图形数据的信息被从服务器传送到客户端。
-
4.发明申请VIRTUALIZING REMOTE PRESENTATION SESSION CLIENT LICENSING WITH A SERVER-BASED BROKER 审中-公开使用基于服务器的经纪人虚拟化远程展示会议客户端许可公开(公告)号:US20110162087A1
公开(公告)日:2011-06-30
申请号:US12651053
申请日:2009-12-31
申请人: Amit Lal , Rama Papa Rohini Kumar Barla , Ara Bernardi , Rishad Madhura Kuzhiyil , Nelamangal Krishnaswamy Srinivas , Anubhav Kushwaha
发明人: Amit Lal , Rama Papa Rohini Kumar Barla , Ara Bernardi , Rishad Madhura Kuzhiyil , Nelamangal Krishnaswamy Srinivas , Anubhav Kushwaha
CPC分类号: G06F9/45533 , G06F21/10
摘要: Systems, methods, and computer-readable storage media are disclosed for virtualizing remote presentation session licensing issuance for a system executing a plurality of virtual machines hosting a remote presentation session server. In an embodiment, a licensing broker is executed in the host partition of the system, and each session server, upon receiving a request for a license from a client, transmits the request to the broker. The broker completes the license negotiation with a license server responsible for issuing licenses, and once issued, the broker transmits this to the corresponding session server, which completes the licensing transaction with the client.
摘要翻译: 公开了系统,方法和计算机可读存储介质,用于虚拟化执行托管远程呈现会话服务器的多个虚拟机的系统的远程呈现会话许可发布。 在一个实施例中,在系统的主机分区中执行许可代理,并且每个会话服务器在从客户端接收到许可证的请求时,将该请求发送到代理。 代理商与负责发放许可证的许可证服务器完成许可证协商,一旦发布,代理将其传送到相应的会话服务器,该客户端完成与客户端的许可交易。
-
公开(公告)号:US20130067019A1
公开(公告)日:2013-03-14
申请号:US13228446
申请日:2011-09-09
申请人: Nelamangal Krishnaswamy Srinivas , Robert Wilhelm Schmieder , David Jaroslav Sebesta , Neil Scott Fishman , Robert C. Elmer , Clark David Nicholson
发明人: Nelamangal Krishnaswamy Srinivas , Robert Wilhelm Schmieder , David Jaroslav Sebesta , Neil Scott Fishman , Robert C. Elmer , Clark David Nicholson
IPC分类号: G06F15/167
CPC分类号: H04L67/1008 , G06F9/452 , G06F9/544 , G06F2209/549 , H04L67/2842 , H04L67/42
摘要: A method includes determining if a server supporting an application and a client having remote desktop access to the server are on a same physical computing device. Upon determining that the server and the client are on the same physical computing device, graphics data related to the application is stored from the server to shared memory that is accessible by the server and by the client. Information to enable the client to retrieve the graphics data stored by the server in the shared memory is communicated from the server to the client.
摘要翻译: 一种方法包括确定支持应用的服务器和具有对服务器的远程桌面访问权限的客户端是否位于相同的物理计算设备上。 在确定服务器和客户端位于同一物理计算设备上时,与应用相关的图形数据从服务器存储到由服务器和客户机可访问的共享存储器。 用于使客户端检索由服务器存储在共享存储器中的图形数据的信息被从服务器传送到客户端。
-
公开(公告)号:US08090903B2
公开(公告)日:2012-01-03
申请号:US12016901
申请日:2008-01-18
IPC分类号: G06F12/00
CPC分类号: G06F3/0659 , G06F3/0613 , G06F3/0656 , G06F3/0676
摘要: Embodiments that facilitate the fair and dynamic distribution of disk input/output (IO) bandwidth are disclosed. In accordance with one embodiment, the method includes organizing one or more disk IO time intervals into one or more queues. The method further includes allocating a disk IO time interval to each queue. The allocation of a disk IO time interval to each queue is accomplished by equally distributing a disk IO cycle based on the number of queues. The one or more disk IO requests are then processed during the corresponding disk IO time interval.
摘要翻译: 公开了有助于磁盘输入/输出(IO)带宽的公平和动态分配的实施例。 根据一个实施例,该方法包括将一个或多个磁盘IO时间间隔组织到一个或多个队列中。 该方法还包括为每个队列分配磁盘IO时间间隔。 通过基于队列数均等地分配磁盘IO周期来实现对每个队列的磁盘IO时间间隔的分配。 然后在相应的磁盘IO时间间隔期间处理一个或多个磁盘IO请求。
-
公开(公告)号:US08572251B2
公开(公告)日:2013-10-29
申请号:US12324305
申请日:2008-11-26
IPC分类号: G06F15/173
CPC分类号: G06T1/20 , G06F9/452 , G06F9/5044 , G06F2209/509 , H04L67/04 , H04L67/40
摘要: A method for offloading remote terminal services processing tasks to a peripheral device that would otherwise be performed in a computer system's processor and memory. In one embodiment, the disclosed method is utilized in a layered network model, wherein computing tasks that are typically performed in network applications are instead offloaded to a peripheral such as a network interface card (NIC).
摘要翻译: 一种用于将远程终端服务处理任务卸载到否则将在计算机系统的处理器和存储器中执行的外围设备的方法。 在一个实施例中,所公开的方法在分层网络模型中使用,其中通常在网络应用中执行的计算任务被卸载到诸如网络接口卡(NIC)的外围设备。
-
8.发明授权公开(公告)号:US08180905B2
公开(公告)日:2012-05-15
申请号:US12331298
申请日:2008-12-09
申请人: Wilhelm R. Schmieder , Nelamangal Krishnaswamy Srinivas , Costin Hagiu , Nadim Y. Abdo , Vladimir K. Stoyanov , Ahmed M. Tolba , Gautam Swaminathan , Srinivasa Reddy Neerudu
发明人: Wilhelm R. Schmieder , Nelamangal Krishnaswamy Srinivas , Costin Hagiu , Nadim Y. Abdo , Vladimir K. Stoyanov , Ahmed M. Tolba , Gautam Swaminathan , Srinivasa Reddy Neerudu
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: G06F9/545
摘要: Techniques are disclosed for a user-mode based remote desktop protocol (RDP) encoding architecture. A user mode desktop application and user mode virtual channel application run in user-mode session space. Virtual channel data from the virtual channel application is marshaled and sent to a RDP encoder process in user-mode system space. There it is converted to RDP protocol data units (PDU) and sent to a remote client across a communications network. Graphics data from the desktop application is sent to a display driver in kernel-mode session space and then to a graphics reflector that marshals the graphics data and sends it to the RDP encoder for a similar transformation.
摘要翻译: 公开了基于用户模式的远程桌面协议(RDP)编码架构的技术。 用户模式桌面应用程序和用户模式虚拟通道应用程序在用户模式会话空间中运行。 来自虚拟通道应用的虚拟通道数据被封送并发送到用户模式系统空间中的RDP编码器进程。 它被转换成RDP协议数据单元(PDU),并通过通信网络发送到远程客户端。 来自桌面应用程序的图形数据被发送到内核模式会话空间中的显示驱动程序,然后发送到图形反射器,该图形反射器用于编排图形数据并将其发送到RDP编码器进行类似的转换。
-
公开(公告)号:US08102865B2
公开(公告)日:2012-01-24
申请号:US12122475
申请日:2008-05-16
IPC分类号: H04L12/28 , G06F15/173
CPC分类号: H04L47/10 , H04L47/125 , H04L47/2441 , H04L47/2475
摘要: The present invention extends to methods, systems, and computer program products for group based allocation of terminal server network bandwidth. Output packets are classified into groups based on classification criteria. Output packets for each group are queue into a corresponding queue. During a queue flush cycle each queue containing data is flushed for an essentially equal amount of time. Flushing each queue essentially equally reduces the negative impact that can otherwise result when a subset of sessions (or even a single session) request(s) a disproportional share of terminal server network bandwidth. Responsiveness can be further increased by distributing the essentially equal amount for each queue across the queue flush cycle.
摘要翻译: 本发明扩展到用于基于组的终端服务器网络带宽分配的方法,系统和计算机程序产品。 输出数据包根据分类标准分为组。 每个组的输出数据包都被排队到相应的队列中。 在队列刷新循环期间,每个包含数据的队列刷新基本相等的时间量。 刷新每个队列基本上同样地减少了当会话(或甚至单个会话)的子集要求终端服务器网络带宽的不成比例的共享时可能导致的负面影响。 通过在队列刷新循环中为每个队列分配基本上相等的量来进一步提高响应性。
-
10.发明申请公开(公告)号:US20110219287A1
公开(公告)日:2011-09-08
申请号:US12718537
申请日:2010-03-05
摘要: In various embodiments, methods and systems are disclosed for integrating a remote presentation protocol with a datagram based transport. In one embodiment, an integrated protocol is configured to support lossless or reduced loss transport based on Retransmission (ARQ) combined with Forward Error Correction (FEC). The protocol involves encoding and decoding of data packets including feedback headers and FEC packets, continuous measurement of RTT, RTO and packet delay, dynamically evaluating loss probability to determine and adjust the ratio of FEC, congestion management based on dynamically detecting increase in packet delay, and fast data transmission rate ramp-up based on detecting a decrease in packet delay.
摘要翻译: 在各种实施例中,公开了用于将远程呈现协议与基于数据报的传输集成的方法和系统。 在一个实施例中,集成协议被配置为支持基于与前向纠错(FEC)组合的重发(ARQ)的无损或减少的丢失传输。 该协议涉及数据包的编码和解码,包括反向报头和FEC分组,RTT连续测量,RTO和分组延迟,动态评估丢失概率,以确定和调整FEC的比例,基于动态检测分组延迟增加的拥塞管理, 并且基于检测到分组延迟的减少,快速数据传输速率上升。
-
-
-
-
-
-
-
-
-
搜索结果
22 条记录 (耗时 0.028 秒)
