-
公开(公告)号:US08910246B2
公开(公告)日:2014-12-09
申请号:US13471178
申请日:2012-05-14
申请人: David A. Whelan , Gregory M. Gutt , David G. Lawrence , Michael L. O'Connor , Arun Ayyagari , Rachel Rane′ Schmalzried
发明人: David A. Whelan , Gregory M. Gutt , David G. Lawrence , Michael L. O'Connor , Arun Ayyagari , Rachel Rane′ Schmalzried
CPC分类号: H04L9/3239 , G01S1/725 , H04B7/18593 , H04L63/083 , H04L63/107 , H04L63/108 , H04L2209/805 , H04W4/021 , H04W12/06 , H04W12/08
摘要: A system, method, and apparatus for contextual-based virtual data boundaries are disclosed herein. In particular, the present disclosure relates to improvements in access control that work to restrict the accessibility of data based on assigning contextual data thresholds that create a virtual boundary. Specifically, the disclosed method involves assigning at least one threshold to at least one contextual criterion. The method further involves determining whether contextual information from the claimant meets at least one threshold to at least one contextual criterion. Also, the method involves authenticating the claimant, if the contextual information from the claimant meets at least one of the thresholds to at least one contextual criterion. Further, the method involves allowing the claimant access to the data, if the claimant is authenticated.
摘要翻译: 本文公开了一种用于基于上下文的虚拟数据边界的系统,方法和装置。 特别地,本公开涉及访问控制的改进,其用于基于分配创建虚拟边界的上下文数据阈值来限制数据的可访问性。 具体地,所公开的方法包括将至少一个阈值分配给至少一个上下文标准。 所述方法还包括确定来自所述请求者的上下文信息是否满足至少一个上下文标准的至少一个阈值。 此外,如果来自索赔人的上下文信息满足至少一个上下文标准的阈值中的至少一个,则该方法涉及认证该索赔人。 此外,如果索赔人被认证,该方法包括允许索赔者访问数据。
-
公开(公告)号:US20130305044A1
公开(公告)日:2013-11-14
申请号:US13586705
申请日:2012-08-15
CPC分类号: H04L45/00 , G01S5/0289 , H04L63/0428 , H04L63/0442 , H04L63/126 , H04L63/1466
摘要: A system and method for verifying and/or geolocating network nodes in a network in attenuated environments for cyber and network security applications are disclosed. The system involves an origination network node, a destination network node, and at least one router network node. The origination network node is configured for transmitting a data packet downstream to the destination network node through at least one router network node. The data packet contains a header portion and a payload data portion. At least one of the network nodes is an enabled network node. The enabled network node(s) is configured to verify any of the network nodes that are located upstream from the enabled network node(s) by analyzing the header portion and/or the payload data portion of the data packet.
摘要翻译: 公开了一种用于在网络和网络安全应用的衰减环境中验证和/或定位网络中的网络节点的系统和方法。 该系统涉及始发网络节点,目的地网络节点和至少一个路由器网络节点。 始发网络节点被配置为通过至少一个路由器网络节点将目的地网络节点下游的数据分组发送到目的地网络节点。 数据分组包含报头部分和有效载荷数据部分。 至少一个网络节点是启用的网络节点。 启用的网络节点被配置为通过分析数据分组的报头部分和/或有效载荷数据部分来验证位于启用的网络节点的上游的任何网络节点。
-
公开(公告)号:US08769267B2
公开(公告)日:2014-07-01
申请号:US13586705
申请日:2012-08-15
IPC分类号: H04L29/06 , H04L12/56 , H04L9/32 , G06F15/173
CPC分类号: H04L45/00 , G01S5/0289 , H04L63/0428 , H04L63/0442 , H04L63/126 , H04L63/1466
摘要: A system and method for verifying and/or geolocating network nodes in a network in attenuated environments for cyber and network security applications are disclosed. The system involves an origination network node, a destination network node, and at least one router network node. The origination network node is configured for transmitting a data packet downstream to the destination network node through at least one router network node. The data packet contains a header portion and a payload data portion. At least one of the network nodes is an enabled network node. The enabled network node(s) is configured to verify any of the network nodes that are located upstream from the enabled network node(s) by analyzing the header portion and/or the payload data portion of the data packet.
摘要翻译: 公开了一种用于在网络和网络安全应用的衰减环境中验证和/或定位网络中的网络节点的系统和方法。 该系统涉及始发网络节点,目的地网络节点和至少一个路由器网络节点。 始发网络节点被配置为通过至少一个路由器网络节点将目的地网络节点下游的数据分组发送到目的地网络节点。 数据分组包含报头部分和有效载荷数据部分。 至少一个网络节点是启用的网络节点。 启用的网络节点被配置为通过分析数据分组的报头部分和/或有效载荷数据部分来验证位于启用的网络节点的上游的任何网络节点。
-
公开(公告)号:US20130031598A1
公开(公告)日:2013-01-31
申请号:US13471178
申请日:2012-05-14
申请人: David A. Whelan , Gregory M. Gutt , David G. Lawrence , Michael L. O'Connor , Arun Ayyagari , Rachel Rane' Schmalzried
发明人: David A. Whelan , Gregory M. Gutt , David G. Lawrence , Michael L. O'Connor , Arun Ayyagari , Rachel Rane' Schmalzried
CPC分类号: H04L9/3239 , G01S1/725 , H04B7/18593 , H04L63/083 , H04L63/107 , H04L63/108 , H04L2209/805 , H04W4/021 , H04W12/06 , H04W12/08
摘要: A system, method, and apparatus for contextual-based virtual data boundaries are disclosed herein. In particular, the present disclosure relates to improvements in access control that work to restrict the accessibility of data based on assigning contextual data thresholds that create a virtual boundary. Specifically, the disclosed method involves assigning at least one threshold to at least one contextual criterion. The method further involves determining whether contextual information from the claimant meets at least one threshold to at least one contextual criterion. Also, the method involves authenticating the claimant, if the contextual information from the claimant meets at least one of the thresholds to at least one contextual criterion. Further, the method involves allowing the claimant access to the data, if the claimant is authenticated.
摘要翻译: 本文公开了一种用于基于上下文的虚拟数据边界的系统,方法和装置。 特别地,本公开涉及访问控制的改进,其用于基于分配创建虚拟边界的上下文数据阈值来限制数据的可访问性。 具体地,所公开的方法包括将至少一个阈值分配给至少一个上下文标准。 所述方法还包括确定来自所述请求者的上下文信息是否满足至少一个上下文标准的至少一个阈值。 此外,如果来自索赔人的上下文信息满足至少一个上下文标准的阈值中的至少一个,则该方法涉及认证该索赔人。 此外,如果索赔人被认证,该方法包括允许索赔者访问数据。
-
公开(公告)号:US20130019317A1
公开(公告)日:2013-01-17
申请号:US13366098
申请日:2012-02-03
IPC分类号: G06F21/00
CPC分类号: G01S1/725 , G01S19/42 , G06F2221/2111 , H04B7/18593 , H04L9/3236 , H04L9/3239 , H04L9/3297 , H04L45/12 , H04L45/26 , H04L63/0428 , H04L2209/805 , H04L2209/84 , H04W4/02 , H04W40/20
摘要: A system, method, and apparatus for secure routing based on a degree of trust are disclosed herein. The disclosed method involves assigning a level of trust to at least one network node, and utilizing the level of trust to determine a degree of security of the network node(s). The level of trust of the network node(s) is related to an amount of certainty of the physical location of the network node(s). The amount of certainty is attained from the network node(s) being located in a known secure location, and/or from verification of the physical location of the network node(s) by using satellite geolocation techniques or by using network ping ranging measurements. The method further involves utilizing the level of trust of the network node(s) to determine a degree of trust of at least one path for routing the data, where the path(s) includes at least one of the network nodes.
摘要翻译: 本文公开了一种基于信任度的用于安全路由的系统,方法和装置。 所公开的方法包括将信任级别分配给至少一个网络节点,以及利用信任级别来确定网络节点的安全程度。 网络节点的信任级别与网络节点的物理位置的确定性有关。 通过使用卫星地理位置技术或通过使用网络ping测距测量,从位于已知安全位置的网络节点和/或来自网络节点的物理位置的验证获得确定性的量。 该方法还涉及利用网络节点的信任级别来确定用于路由数据的至少一个路径的信任度,其中路径包括至少一个网络节点。
-
6.发明申请GEOLOCATING NETWORK NODES IN ATTENUATED ENVIRONMENTS FOR CYBER AND NETWORK SECURITY APPLICATIONS 有权用于网络和网络安全应用的衰减环境中的网络编号公开(公告)号:US20120144451A1
公开(公告)日:2012-06-07
申请号:US13114013
申请日:2011-05-23
CPC分类号: H04L45/00 , G01S5/0289 , H04L63/126 , H04L63/1466 , H04L67/18 , H04W4/04 , H04W12/12
摘要: A system and method for verifying and/or geolocating network nodes in attenuated environments for cyber and network security applications are disclosed. The system involves an origination network node, a destination network node, and at least one router network node. The origination network node is configured for transmitting a data packet to the destination network node through at least one router network node. The data packet contains a security signature portion, a routing data portion, and a payload data portion. The security signature portion comprises a listing of at least one network node that the data packet travelled through from the origination network node to the destination network node. In addition, the security signature portion comprises geolocation information, identifier information, and timing information for at least one network node in the listing.
摘要翻译: 公开了一种用于在网络和网络安全应用的衰减环境中验证和/或定位网络节点的系统和方法。 该系统涉及始发网络节点,目的地网络节点和至少一个路由器网络节点。 始发网络节点被配置为通过至少一个路由器网络节点将数据分组发送到目的地网络节点。 数据分组包含安全签名部分,路由数据部分和有效载荷数据部分。 安全签名部分包括数据分组从始发网络节点到目的网络节点经过的至少一个网络节点的列表。 此外,安全签名部分包括地理位置信息,标识符信息和用于列表中的至少一个网络节点的定时信息。
-
7.发明授权Geolocating network nodes in attenuated environments for cyber and network security applications 有权在网络和网络安全应用的衰减环境中定位网络节点公开(公告)号:US08977843B2
公开(公告)日:2015-03-10
申请号:US13114013
申请日:2011-05-23
IPC分类号: H04L29/06 , H04L12/701 , H04W4/04 , H04W12/12 , H04L29/08 , H04L9/32 , G06F15/173 , G01S5/02
CPC分类号: H04L45/00 , G01S5/0289 , H04L63/126 , H04L63/1466 , H04L67/18 , H04W4/04 , H04W12/12
摘要: A system and method for verifying and/or geolocating network nodes in attenuated environments for cyber and network security applications are disclosed. The system involves an origination network node, a destination network node, and at least one router network node. The origination network node is configured for transmitting a data packet to the destination network node through at least one router network node. The data packet contains a security signature portion, a routing data portion, and a payload data portion. The security signature portion comprises a listing of at least one network node that the data packet travelled through from the origination network node to the destination network node. In addition, the security signature portion comprises geolocation information, identifier information, and timing information for at least one network node in the listing.
摘要翻译: 公开了一种用于在网络和网络安全应用的衰减环境中验证和/或定位网络节点的系统和方法。 该系统涉及始发网络节点,目的地网络节点和至少一个路由器网络节点。 始发网络节点被配置为通过至少一个路由器网络节点将数据分组发送到目的地网络节点。 数据分组包含安全签名部分,路由数据部分和有效载荷数据部分。 安全签名部分包括数据分组从始发网络节点到目的网络节点经过的至少一个网络节点的列表。 此外,安全签名部分包括地理位置信息,标识符信息和用于列表中的至少一个网络节点的定时信息。
-
8.发明申请DIFFERENTIAL CORRECTION SYSTEM ENHANCEMENT LEVERAGES ROVING RECEIVERS ENABLED FOR A NON-GPS, SECONDARY PN&T SIGNAL TO CHARACTERIZE LOCAL ERRORS 有权差分校正系统增强潜力为非GPS,次级PN&T信号启用接收端以表征本地错误公开(公告)号:US20120139782A1
公开(公告)日:2012-06-07
申请号:US13114027
申请日:2011-05-23
CPC分类号: G01S19/07 , G01S5/0072 , G01S5/009 , G01S5/021 , G01S5/0236 , G01S5/0263 , G01S5/14 , G01S19/00 , G01S19/12 , G01S19/41
摘要: System, methods, and devices for a self-sustaining differential corrections network that employs roving reference devices (RRDs) as reference stations for improving positioning, navigation, and timing (PN&T) solutions for other enabled local roving and/or stationary receiving devices (RDs) are disclosed herein. The disclosed differential correction system enhancement leverages RRDs enabled for a non-global positioning system (non-GPS), secondary PN&T signal to characterize local errors. These local errors are then used by local RDs in combination with a signal to calculate an improved PN&T estimate for the RDs.
摘要翻译: 用于自维持差分校正网络的系统,方法和设备,其使用流动参考设备(RRD)作为参考站,用于改进其他启用的本地粗纱和/或固定接收设备(RD)的定位,导航和定时(PN&T)解决方案 )。 所公开的差分校正系统增强利用了使能非全球定位系统(非GPS)的RRD,辅助PN&T信号来表征局部误差。 这些局部误差然后由本地RD与信号组合使用,以计算RD的改进的PN&T估计。
-
公开(公告)号:US09201131B2
公开(公告)日:2015-12-01
申请号:US13366098
申请日:2012-02-03
IPC分类号: G06F21/00 , G01S1/72 , G01S19/42 , H04B7/185 , H04L9/32 , H04W40/20 , H04L12/721 , H04L29/06 , H04W4/02
CPC分类号: G01S1/725 , G01S19/42 , G06F2221/2111 , H04B7/18593 , H04L9/3236 , H04L9/3239 , H04L9/3297 , H04L45/12 , H04L45/26 , H04L63/0428 , H04L2209/805 , H04L2209/84 , H04W4/02 , H04W40/20
摘要: A system, method, and apparatus for secure routing based on a degree of trust are disclosed herein. The disclosed method involves assigning a level of trust to at least one network node, and utilizing the level of trust to determine a degree of security of the network node(s). The level of trust of the network node(s) is related to an amount of certainty of the physical location of the network node(s). The amount of certainty is attained from the network node(s) being located in a known secure location, and/or from verification of the physical location of the network node(s) by using satellite geolocation techniques or by using network ping ranging measurements. The method further involves utilizing the level of trust of the network node(s) to determine a degree of trust of at least one path for routing the data, where the path(s) includes at least one of the network nodes.
摘要翻译: 本文公开了一种基于信任度的用于安全路由的系统,方法和装置。 所公开的方法包括将信任级别分配给至少一个网络节点,以及利用信任级别来确定网络节点的安全程度。 网络节点的信任级别与网络节点的物理位置的确定性有关。 通过使用卫星地理位置技术或通过使用网络ping测距测量,从位于已知安全位置的网络节点和/或来自网络节点的物理位置的验证获得确定性的量。 该方法还涉及利用网络节点的信任级别来确定用于路由数据的至少一个路径的信任度,其中路径包括至少一个网络节点。
-
10.发明授权Differential correction system enhancement leverages roving receivers enabled for a non-GPS, secondary PN and T signal to characterize local errors 有权差分校正系统的增强利用了使用非GPS,辅助PN和T信号来表征局部误差的粗纱接收器公开(公告)号:US08570216B2
公开(公告)日:2013-10-29
申请号:US13114027
申请日:2011-05-23
IPC分类号: G01S19/07
CPC分类号: G01S19/07 , G01S5/0072 , G01S5/009 , G01S5/021 , G01S5/0236 , G01S5/0263 , G01S5/14 , G01S19/00 , G01S19/12 , G01S19/41
摘要: System, methods, and devices for a self-sustaining differential corrections network that employs roving reference devices (RRDs) as reference stations for improving positioning, navigation, and timing (PN&T) solutions for other enabled local roving and/or stationary receiving devices (RDs) are disclosed herein. The disclosed differential correction system enhancement leverages RRDs enabled for a non-global positioning system (non-GPS), secondary PN&T signal to characterize local errors. These local errors are then used by local RDs in combination with a signal to calculate an improved PN&T estimate for the RDs.
摘要翻译: 用于自维持差分校正网络的系统,方法和设备,其使用流动参考设备(RRD)作为参考站,用于改进其他启用的本地粗纱和/或固定接收设备(RD)的定位,导航和定时(PN&T)解决方案 )。 所公开的差分校正系统增强利用了使能非全球定位系统(非GPS)的RRD,辅助PN&T信号来表征局部误差。 这些局部误差然后由本地RD与信号组合使用,以计算RD的改进的PN&T估计。
-
-
-
-
-
-
-
-
-
搜索结果
42 条记录 (耗时 0.055 秒)
