公开(公告)号：US5235642A

公开(公告)日：1993-08-10

申请号：US917767

申请日：1992-07-21

申请人： Edward Wobber ,  Martin Abadi ,  Andrew Birrell ,  Butler Lampson

发明人： Edward Wobber ,  Martin Abadi ,  Andrew Birrell ,  Butler Lampson

IPC分类号： G06F13/00 ,  G06F15/16 ,  G06F15/177 ,  G06F21/00 ,  H04L9/32

CPC分类号： G06F21/31 ,  H04L9/3215 ,  H04L9/3297 ,  G06F2211/009 ,  G06F2221/2141 ,  G06F2221/2151

摘要： A distributed computer system has a number of computers coupled thereto at distinct nodes. The computer at each node of the distributed system has a trusted computing base that includes an authentication agent for authenticating requests received from principals at other nodes in the system. Requests are transmitted to servers as messages that include a first identifier provided by the requester and a second identifier provided by the authentication agent of the requester node. Each server process is provided with a local cache of authentication data that identifies requesters whose previous request messages have been authenticated. When a request is received, the server checks the request's first and second identifiers against the entries in its local cache. If there is a match, then the request is known to be authentic. Otherwise, the server node's authentication agent is called to obtain authentication credentials from the requester's node to authenticate the request message. The principal identifier of the requester and the received credentials are stored in a local cache by the server node's authentication agent. The server process also stores a record in its local cache indicating that request messages from the specified requester are known to be authentic, thereby expediting the process of authenticating received requests.

公开(公告)号：US20060265759A1

公开(公告)日：2006-11-23

申请号：US11134760

申请日：2005-05-19

申请人： Andrew Birrell ,  Edward Wobber ,  Martin Abadi

发明人： Andrew Birrell ,  Edward Wobber ,  Martin Abadi

IPC分类号： H04L9/32

CPC分类号： G06F21/6218

摘要： Systems and methods are provided for resource access control in computer systems. Our approach includes new techniques for composing and authenticating principals in an access control system. Our principals may comprise information that identifies the role of the user of a computer system, the mechanism by which the user was authenticated, and program execution history. Thus, when a principal makes a request, access control determinations can be made based on the principal's identity. Access control lists may provide patterns that are used to recognize principals, thereby ensuring a level of security without enumerating precise identifiers for all of the possible principles that may request a particular resource.

摘要翻译： 为计算机系统中的资源访问控制提供了系统和方法。 我们的方法包括在访问控制系统中组合和验证主体的新技术。 我们的主体可以包括识别计算机系统的用户的角色，用户被认证的机制以及程序执行历史的信息。 因此，当委托人发出请求时，可以基于主体的身份进行访问控制确定。 访问控制列表可以提供用于识别主体的模式，从而确保安全级别，而不需要列举可能请求特定资源的所有可能原则的精确标识符。

公开(公告)号：US20060265754A1

公开(公告)日：2006-11-23

申请号：US11133806

申请日：2005-05-19

申请人： Andrew Birrell ,  Edward Wobber ,  Martin Abadi

发明人： Andrew Birrell ,  Edward Wobber ,  Martin Abadi

IPC分类号： H04N7/16

CPC分类号： G06F21/6218

摘要： Systems and methods are provided for resource access control in computer systems. Our approach includes new techniques for composing and authenticating principals in an access control system. Our principals may comprise information that identifies the role of the user of a computer system, the mechanism by which the user was authenticated, and program execution history. Thus, when a principal makes a request, access control determinations can be made based on the principal's identity. Access control lists may provide patterns that are used to recognize principals, thereby ensuring a level of security without enumerating precise identifiers for all of the possible principles that may request a particular resource.

摘要翻译： 为计算机系统中的资源访问控制提供了系统和方法。 我们的方法包括在访问控制系统中组合和验证主体的新技术。 我们的主体可以包括识别计算机系统的用户的角色，用户被认证的机制以及程序执行历史的信息。 因此，当委托人发出请求时，可以基于主体的身份进行访问控制确定。 访问控制列表可以提供用于识别主体的模式，从而确保安全级别，而不需要列举可能请求特定资源的所有可能原则的精确标识符。

公开(公告)号：US20060155930A1

公开(公告)日：2006-07-13

申请号：US11059124

申请日：2005-02-15

申请人： Andrew Birrell ,  Edward Wobber ,  Muthukaruppan Annamalai ,  Ulfar Erlingsson

发明人： Andrew Birrell ,  Edward Wobber ,  Muthukaruppan Annamalai ,  Ulfar Erlingsson

IPC分类号： G06F13/00

CPC分类号： G06F12/0866 ,  G06F3/061 ,  G06F3/0656 ,  G06F3/0664 ,  G06F3/067 ,  G06F9/4451 ,  G06F9/45558 ,  G06F21/56 ,  G06F2009/45579 ,  G06F2212/2022 ,  G06F2212/2146 ,  G06F2212/222

摘要： A lifting and shaping system for a bra is disclosed. The system uses lift platforms shaped to fit into the cups of the bra and formed from thin material such as plastic. The lift platforms are attached to the bra toward the center of the bra. Connectors having one end attached to the lift platform and the other end attached to a slide on the shoulder strap adjust the lift of the lift platform when the slide is moved. Flexible shaping members distribute the lift of the lift platforms and maintain the natural shape of the breasts as they are lifted. Smoothing shields ease the movement of the lift platforms and connectors within the cloth confines of the breast cups. The flexible shaping members may also perform some of the functions of a smoothing shield.

摘要翻译： 公开了一种用于胸罩的提升和成形系统。 该系统使用升降平台，其形状适合于胸罩杯中，并由诸如塑料的薄材料形成。 电梯平台将胸罩连接到胸罩的中心。 具有一端连接到升降平台的连接器和附接到肩带上的滑块的另一端在滑动件移动时调节升降平台的升程。 柔性成形构件分配升降平台的升降机，并在升起时保持乳房的自然形状。 平滑屏蔽可以缓解胸前布置的升降平台和连接器的运动。 柔性成形构件还可以执行平滑屏蔽的一些功能。

公开(公告)号：US20060233367A1

公开(公告)日：2006-10-19

申请号：US11058950

申请日：2005-02-15

申请人： Andrew Birrell ,  Edward Wobber ,  Muthukaruppan Annamalai ,  Ulfar Erlingsson

发明人： Andrew Birrell ,  Edward Wobber ,  Muthukaruppan Annamalai ,  Ulfar Erlingsson

IPC分类号： H04N7/167

CPC分类号： G06F12/0866 ,  G06F3/061 ,  G06F3/0656 ,  G06F3/0664 ,  G06F3/067 ,  G06F9/4451 ,  G06F9/45558 ,  G06F21/56 ,  G06F2009/45579 ,  G06F2212/2022 ,  G06F2212/2146 ,  G06F2212/222

摘要： A system is provided for reading and writing sectors which may be realized as either a disk device to the local operating system, or as a virtual disk device to a virtual machine. A user's computing environment is stored in the network in the form of a disk image, which may be a virtual disk image, for example. The virtual disk is realized on host computers through host-resident virtual machine monitors such as MICROSOFT VIRTUAL PC®. Portable memory devices, such as flash devices, buffer virtual disk writes and cache reads, greatly reducing the performance degradation associated with remote disk access. The cache is mobile so that it can be travel with the user. The flash device remembers commonly used virtual disk content fingerprints so that the host machine's local disk can be used to satisfy many common disk reads when ubiquitous static content is involved. Standard, frequently used software images might be distributed in advance to host machines. Flash disk contents are trickled back into the networked parent disk image in order to provide an automatic backup facility, adding the benefit of ensuring that the flash drive doesn't overflow.

公开(公告)号：US20060123424A1

公开(公告)日：2006-06-08

申请号：US11007655

申请日：2004-12-07

申请人： Galen Hunt ,  James Larus ,  Manuel Fahndrich ,  Edward Wobber ,  Martin Abadi ,  John DeTreville

发明人： Galen Hunt ,  James Larus ,  Manuel Fahndrich ,  Edward Wobber ,  Martin Abadi ,  John DeTreville

IPC分类号： G06F9/46

CPC分类号： G06F9/546 ,  G06F2209/547

摘要： Described herein is an implementation of an inter-process communications technology. One or more implementations, described herein, facilitate creation of a bi-directional message conduit having exactly two endpoints. A first endpoint is owned by a first software process and a second endpoint is owned by a second software process. One or more implementations, described herein, maintain the bi-directional message conduit for passing multiple messages via the bi-directional message conduit from the first process to the second process, according to established rules that can be checked.

公开(公告)号：US20050210258A1

公开(公告)日：2005-09-22

申请号：US10806020

申请日：2004-03-22

申请人： Andrew Birrell ,  Michael Burrows ,  Edward Wobber

发明人： Andrew Birrell ,  Michael Burrows ,  Edward Wobber

IPC分类号： G06F13/00 ,  H04L12/58 ,  H04L29/06 ,  H04L29/08 ,  H04L9/00

CPC分类号： H04L63/1458 ,  H04L51/12 ,  H04L67/104 ,  H04L67/1065

摘要： Methods and systems are provided for a cancellation server maintaining a database of identifiers of cryptographic puzzles. A cryptographic puzzle is created from a unique identifier and a timestamp, and is attached to an electronic mail message, along with the puzzle's solution. The recipient verifies that the solution is correct and that the timestamp is current, and further queries the cancellation server with the puzzle identifier. If the identifier does not exist in the database, then the recipient knows the received message is legitimate. If the identifier already appears in the database, the received message can be automatically removed from the recipient's computer.

摘要翻译： 提供了用于维护密码拼图标识符数据库的取消服务器的方法和系统。 密码拼图是从唯一标识符和时间戳创建的，并附加到电子邮件消息以及拼图的解决方案。 收件人验证解决方案是否正确，并且时间戳是最新的，并且进一步使用拼图标识符查询取消服务器。 如果数据库中不存在标识符，则接收方知道接收到的消息是合法的。 如果标识符已经出现在数据库中，则可以从收件人的计算机中自动删除接收到的消息。

公开(公告)号：US20060123430A1

公开(公告)日：2006-06-08

申请号：US11118684

申请日：2005-04-29

申请人： Galen Hunt ,  James Larus ,  John DeTreville ,  Edward Wobber ,  Martin Abadi ,  Michael Jones ,  Trishul Chilimbi

发明人： Galen Hunt ,  James Larus ,  John DeTreville ,  Edward Wobber ,  Martin Abadi ,  Michael Jones ,  Trishul Chilimbi

IPC分类号： G06F9/46

CPC分类号： G06F21/562 ,  G06F21/566 ,  G06F21/57

摘要： Described herein is an implementation of a technology for the construction, identification, and/or optimization of operating-system processes. At least one implementation, described herein, constructs an operating-system process having the contents as defined by a process manifest. Once constructed, the operating-system process is unalterable.

摘要翻译： 这里描述了用于构建，识别和/或优化操作系统过程的技术的实现。 这里描述的至少一个实现构造具有由过程清单定义的内容的操作系统过程。 一旦构建，操作系统过程是不可改变的。

公开(公告)号：US20060155931A1

公开(公告)日：2006-07-13

申请号：US11032775

申请日：2005-01-10

申请人： Andrew Birrell ,  Edward Wobber ,  Muthukaruppan Annamalai ,  Ulfar Erlingsson

发明人： Andrew Birrell ,  Edward Wobber ,  Muthukaruppan Annamalai ,  Ulfar Erlingsson

IPC分类号： G06F12/00

CPC分类号： G06F12/0866 ,  G06F3/061 ,  G06F3/0656 ,  G06F3/0664 ,  G06F3/067 ,  G06F9/4451 ,  G06F9/45558 ,  G06F21/56 ,  G06F2009/45579 ,  G06F2212/2022 ,  G06F2212/2146 ,  G06F2212/222

摘要： A system is provided for reading and writing sectors which may be realized as either a disk device to the local operating system, or as a virtual disk device to a virtual machine. A user's computing environment is stored in the network in the form of a disk image, which may be a virtual disk image, for example. The virtual disk is realized on host computers through host-resident virtual machine monitors such as MICROSOFT VIRTUAL PC®. Portable memory devices, such as flash devices, buffer virtual disk writes and cache reads, greatly reducing the performance degradation associated with remote disk access. The cache is mobile so that it can be travel with the user. The flash device remembers commonly used virtual disk content fingerprints so that the host machine's local disk can be used to satisfy many common disk reads when ubiquitous static content is involved. Standard, frequently used software images might be distributed in advance to host machines. Flash disk contents are trickled back into the networked parent disk image in order to provide an automatic backup facility, adding the benefit of ensuring that the flash drive doesn't overflow.

公开(公告)号：US20070083697A1

公开(公告)日：2007-04-12

申请号：US11245919

申请日：2005-10-07

申请人： Andrew Birrell ,  Charles Thacker ,  Edward Wobber ,  Michael Isard

发明人： Andrew Birrell ,  Charles Thacker ,  Edward Wobber ,  Michael Isard

IPC分类号： G06F12/00

CPC分类号： G06F12/0246

摘要： Flash memory is managed utilizing memory management data structures residing in volatile memory of a flash memory device. The memory management data structures are created and updated each time power is supplied to the memory device. During write operations to the flash memory, specific locations in the flash memory are updated to reflect the current status of the flash memory. When power is interrupted, the memory management data structures are recreated upon reapplication of power. The flash memory is scanned and the information obtained from the specific locations in the flash memory is utilized to construct the memory management data structures. No bad block tables are required. Flash memory is managed to provide relatively good random write performance and to accommodate power interruptions. Applications include the use of flash memory for general purpose computing and devices in which power can fail at any time (due to being unplugged for example).

摘要翻译： 使用存储在闪速存储器件的易失性存储器中的存储器管理数据结构来管理闪存。 每当向存储器件供电时，创建和更新存储器管理数据结构。 在对闪存的写入操作期间，闪存中的特定位置被更新以反映闪存的当前状态。 当电源中断时，在重新应用电源时重新创建内存管理数据结构。 闪存被扫描，并且利用从闪速存储器中的特定位置获得的信息来构建存储器管理数据结构。 不需要坏块表。 管理闪存以提供相对较好的随机写入性能并适应电源中断。 应用包括使用闪存进行通用计算和其中电源可能在任何时候故障（例如由于拔掉电源）的设备。