公开(公告)号：US09442934B2

公开(公告)日：2016-09-13

申请号：US13607135

申请日：2012-09-07

申请人： Kazumine Matoba

发明人： Kazumine Matoba

IPC分类号： G06F15/167 ,  H04W4/00 ,  G06F17/30

CPC分类号： G06F17/30041

摘要： A disclosed method include: receiving, an identifier of a user, an identifier of contents associated with the user and identification data concerning a sensor that read the identifier of the user; reading an identifier of a node associated with the received identification data or a combination of the received identification data and the received identifier of the user, from a data storage unit storing an identifier of a node that will cache contents to be outputted to a display device provided at a different position from a position of a sensor in association with identification data concerning the sensor or a combination of identification data concerning the sensor and an identifier of a user; and transmitting the received identifier of the user and an identifier of contents associated with the user to a node whose identifier was read.

摘要翻译： 所公开的方法包括：接收用户的标识符，与用户相关联的内容的标识符和关于读取用户的标识符的传感器的标识数据; 从存储要将要输出的内容的节点的标识符的数据存储单元读取与所接收的标识数据相关联的节点的标识符或所接收的标识数据与所接收的用户标识符的组合， 与传感器的识别数据或者关于传感器的识别数据的组合和用户的标识符相关联地设置在与传感器的位置不同的位置; 以及将所接收的用户的标识符和与用户相关联的内容的标识符发送到其标识符被读取的节点。

公开(公告)号：US08948050B2

公开(公告)日：2015-02-03

申请号：US13592669

申请日：2012-08-23

申请人： Kazumine Matoba

发明人： Kazumine Matoba

IPC分类号： H04L29/08

CPC分类号： H04L67/1074 ,  H04L67/125

摘要： The control node, on the basis of the connection information between the distribution nodes and the load information of the distribution nodes, determines a distribution node of the distribution destination to which one of a plurality of distribution nodes subsequently distributes the data, and the data type which is distributed to the distribution node of the distribution destination. The control node distributes node information which specifies the distribution node of the determined distribution destination and type information which specifies the determined data type. The distribution node receives the node information and the type information distributed from the control node. The distribution node, when it receives the data distributed from the other distribution nodes, selects the data of the type specified by the type information from the received data. The distribution node transmits the data of the selected type to the distribution node specified by the node information.

摘要翻译： 控制节点根据分配节点之间的连接信息和分布节点的负载信息，确定多个分发节点之一随后分发数据的分发目的地的分发节点，数据类型 其被分发到分发目的地的分发节点。 控制节点分配指定所确定的分发目的地的分发节点的节点信息和指定确定的数据类型的类型信息。 分发节点接收从控制节点分发的节点信息和类型信息。 分发节点收到从其他分发节点分发的数据时，从接收到的数据中选择类型信息指定的类型的数据。 分发节点将所选类型的数据发送到由节点信息指定的分发节点。

公开(公告)号：US08677469B2

公开(公告)日：2014-03-18

申请号：US11392775

申请日：2006-03-30

申请人： Kazumine Matoba

发明人： Kazumine Matoba

IPC分类号： G06F21/00

CPC分类号： H04L63/0245 ,  H04L63/08 ,  H04L63/145 ,  H04L63/20

摘要： In a firewall device protecting a specific network against an attack from an external network, a filtering object identifying portion identifies whether or not received data includes filtering object data, a filtering execution/inexecution selector transmits to a source device of the received data, when the received data includes the filtering object data, a selection request of a desire for a filtering execution or inexecution of the received data, does not select the filtering execution of the received data from the source device on a condition that a selection response indicates a desire for the filtering inexecution and the source device is authenticated, but selects the filtering execution under other conditions, and a filtering processor filters the selected received data.

摘要翻译： 在保护特定网络免受来自外部网络的攻击的防火墙设备中，过滤对象识别部分识别接收到的数据是否包括过滤对象数据，过滤执行/不执行选择器向源设备发送所接收的数据，当 所接收的数据包括过滤对象数据，对所接收的数据的过滤执行或不执行的期望的选择请求，在选择响应表示期望的条件下不从源设备选择接收到的数据的过滤执行 过滤不执行和源设备进行身份验证，但在其他条件下选择过滤执行，过滤处理器对选定的接收数据进行过滤。

公开(公告)号：US08386575B2

公开(公告)日：2013-02-26

申请号：US12723022

申请日：2010-03-12

申请人： Masaaki Takase ,  Makoto Kubota ,  Kenichi Abiru ,  Kazumine Matoba ,  Kouichirou Amemiya ,  Hitoshi Ueno

发明人： Masaaki Takase ,  Makoto Kubota ,  Kenichi Abiru ,  Kazumine Matoba ,  Kouichirou Amemiya ,  Hitoshi Ueno

IPC分类号： G06F15/16

CPC分类号： H04L67/1027 ,  H04L67/1002 ,  H04L67/14 ,  H04L67/146 ,  H04L67/24

摘要： A method of realizing uniqueness assurance includes: selecting a server to which a first message is to be transferred from multiple servers and transferring the first message to the selected server when the first message is received from a terminal apparatus by a load sharing apparatus; storing a second message that should be transferred to the same server as that of the first server when the second message is received from the terminal apparatus by the load sharing apparatus after the first message is transferred; generating uniqueness assurance information corresponding to the communication protocols corresponding to a session generated by the server to which the first message is transferred, the uniqueness assurance information indicating the correspondence between the session and the message corresponding to the session; and transferring the second message in accordance with the generated uniqueness assurance information if the stored second message exits.

摘要翻译： 实现唯一性保证的方法包括：当通过负载共享装置从终端装置接收到第一消息时，选择要从多个服务器传送第一消息的服务器并将第一消息传送到所选择的服务器; 当在所述第一消息被传送之后，所述负载共享装置从所述终端装置接收到所述第二消息时，存储应该传送到与所述第一服务器相同的服务器的第二消息; 生成对应于与由传送第一消息的服务器生成的会话相对应的通信协议的唯一性保证信息，指示会话与对应于该会话的消息之间的对应关系的唯一性保证信息; 以及如果存储的第二消息退出，则根据所生成的唯一性保证信息来传送第二消息。

公开(公告)号：US20100241715A1

公开(公告)日：2010-09-23

申请号：US12723022

申请日：2010-03-12

申请人： Masaaki Takase ,  Makoto Kubota ,  Kenichi Abiru ,  Kazumine Matoba ,  Kouichirou Amemiya ,  Hitoshi Ueno

发明人： Masaaki Takase ,  Makoto Kubota ,  Kenichi Abiru ,  Kazumine Matoba ,  Kouichirou Amemiya ,  Hitoshi Ueno

IPC分类号： G06F15/16

CPC分类号： H04L67/1027 ,  H04L67/1002 ,  H04L67/14 ,  H04L67/146 ,  H04L67/24

摘要： A method of realizing uniqueness assurance includes: selecting a server to which a first message is to be transferred from multiple servers and transferring the first message to the selected server when the first message is received from a terminal apparatus by a load sharing apparatus; storing a second message that should be transferred to the same server as that of the first server when the second message is received from the terminal apparatus by the load sharing apparatus after the first message is transferred; generating uniqueness assurance information corresponding to the communication protocols corresponding to a session generated by the server to which the first message is transferred, the uniqueness assurance information indicating the correspondence between the session and the message corresponding to the session; and transferring the second message in accordance with the generated uniqueness assurance information if the stored second message exits.

摘要翻译： 实现唯一性保证的方法包括：当通过负载共享装置从终端装置接收到第一消息时，选择要从多个服务器传送第一消息的服务器并将第一消息传送到所选择的服务器; 当在所述第一消息被传送之后，所述负载共享装置从所述终端装置接收到所述第二消息时，存储应该传送到与所述第一服务器相同的服务器的第二消息; 生成对应于与由传送第一消息的服务器生成的会话相对应的通信协议的唯一性保证信息，指示会话与对应于该会话的消息之间的对应关系的唯一性保证信息; 以及如果存储的第二消息退出，则根据所生成的唯一性保证信息来传送第二消息。

公开(公告)号：US20060280121A1

公开(公告)日：2006-12-14

申请号：US11233750

申请日：2005-09-23

申请人： Kazumine Matoba

发明人： Kazumine Matoba

IPC分类号： H04J1/16

CPC分类号： H04L63/1408 ,  H04L63/1458

摘要： A prior information collecting unit transmits in advance a SYN/ACK frame to an address of a client in an external network, and monitors a response to the SYN/ACK frame. If there is no response, the prior information collecting unit determines that the address is a valid attack address. If there is a response with a RST frame, the prior information collecting unit determines that the address is an invalid attack address. An address holding unit stores a responding state of the client. A valid attack identifying unit detects a valid attack frame having a valid attack address as a source address from among frames addressed to the server, based on information stored in the address holding unit. A flow rate limiting unit limits a flow rate at the time of transferring the valid attack frames to the server.

摘要翻译： 事先信息收集单元预先将SYN / ACK帧发送到外部网络中的客户端的地址，并监视对SYN / ACK帧的响应。 如果没有响应，则先验信息收集单元确定地址是有效的攻击地址。 如果存在具有RST帧的响应，则先前信息收集单元确定该地址是无效的攻击地址。 地址保存单元存储客户端的响应状态。 有效的攻击识别单元基于存储在地址保持单元中的信息，从有效的攻击地址作为源地址从寻址到服务器的帧中检测出有效的攻击帧。 流量限制单元限制将有效攻击帧传送到服务器时的流量。

公开(公告)号：US08892768B2

公开(公告)日：2014-11-18

申请号：US12853330

申请日：2010-08-10

申请人： Kouichirou Amemiya ,  Kazumine Matoba ,  Masaaki Takase ,  Kenichi Abiru ,  Hitoshi Ueno

发明人： Kouichirou Amemiya ,  Kazumine Matoba ,  Masaaki Takase ,  Kenichi Abiru ,  Hitoshi Ueno

IPC分类号： G06F15/16 ,  H04L12/56 ,  H04L29/08

CPC分类号： H04L67/1027

摘要： A load balancing apparatus stores a transfer rule in which a path control identifier for identifying a path for a message sent from a client device is associated with relay device information for specifying a relay device that creates the path control identifier. When receiving a message from the client device, the load balancing apparatus determines whether the message contains the path control identifier. If the load balancing apparatus determines that the path control identifier is contained, the load balancing apparatus specifies, from the transfer rule, relay device information with which the path control identifier is associated and then sends the message to a relay device that is specified by the specified relay device information. In contrast, if the load balancing apparatus determines that the path control identifier is not contained, the load balancing apparatus sends the message to the relay device specified in accordance with a predetermined condition.

摘要翻译： 负载平衡装置存储用于识别从客户端装置发送的消息的路径的路径控制标识符与用于指定创建路径控制标识符的中继装置的中继装置信息相关联的传送规则。 当从客户端装置接收到消息时，负载平衡装置确定该消息是否包含路径控制标识符。 如果负载平衡装置确定包含路径控制标识符，则负载平衡装置根据传输规则指定与路径控制标识符相关联的中继装置信息，然后将消息发送到由 指定中继设备信息。 相反，如果负载平衡装置确定不包含路径控制标识符，则负载平衡装置将消息发送到根据预定条件指定的中继装置。

公开(公告)号：US20110040892A1

公开(公告)日：2011-02-17

申请号：US12853330

申请日：2010-08-10

申请人： Kouichirou AMEMIYA ,  Kazumine Matoba ,  Masaaki Takase ,  Kenichi Abiru ,  Hitoshi Ueno

发明人： Kouichirou AMEMIYA ,  Kazumine Matoba ,  Masaaki Takase ,  Kenichi Abiru ,  Hitoshi Ueno

IPC分类号： G06F15/16

CPC分类号： H04L67/1027

摘要： A load balancing apparatus stores a transfer rule in which a path control identifier for identifying a path for a message sent from a client device is associated with relay device information for specifying a relay device that creates the path control identifier. When receiving a message from the client device, the load balancing apparatus determines whether the message contains the path control identifier. If the load balancing apparatus determines that the path control identifier is contained, the load balancing apparatus specifies, from the transfer rule, relay device information with which the path control identifier is associated and then sends the message to a relay device that is specified by the specified relay device information. In contrast, if the load balancing apparatus determines that the path control identifier is not contained, the load balancing apparatus sends the message to the relay device specified in accordance with a predetermined condition.

摘要翻译： 负载平衡装置存储用于识别从客户端装置发送的消息的路径的路径控制标识符与用于指定创建路径控制标识符的中继装置的中继装置信息相关联的传送规则。 当从客户端装置接收到消息时，负载平衡装置确定该消息是否包含路径控制标识符。 如果负载平衡装置确定包含路径控制标识符，则负载平衡装置根据传输规则指定与路径控制标识符相关联的中继装置信息，然后将消息发送到由 指定中继设备信息。 相反，如果负载平衡装置确定不包含路径控制标识符，则负载平衡装置将消息发送到根据预定条件指定的中继装置。

公开(公告)号：US07650500B2

公开(公告)日：2010-01-19

申请号：US11050660

申请日：2005-02-03

申请人： Kazumine Matoba

发明人： Kazumine Matoba

IPC分类号： H04L29/06

CPC分类号： H04L63/0272 ,  H04L63/04 ,  H04L63/164

摘要： An encryption communication system, comprising a communication relay device that connects a first network and a second network, for encrypting a communication within the first network and a communication within the second network in a network system configured so that communications are performed between a client in the first network and a server in the second network via the communication relay device, wherein the communication relay device comprises key generation unit generating an encryption key and a decryption key with respect to the client, and key transfer unit transmitting the encryption key and the decryption key to the server, and the server comprises frame receiving unit decrypting a receipt frame by use of the decryption key, and frame transmitting unit encrypting the frame by use of the encryption key and thus transmitting the frame.

摘要翻译： 一种加密通信系统，包括连接第一网络和第二网络的通信中继设备，用于加密第一网络内的通信以及网络系统中的第二网络内的通信，该网络系统被配置为使得通信中的客户端 第一网络和经由通信中继装置的第二网络中的服务器，其中，所述通信中继装置包括密钥生成单元，其生成关于所述客户端的加密密钥和解密密钥，以及密钥传送单元，发送所述加密密钥和所述解密密钥 并且服务器包括通过使用解密密钥对接收帧解密的帧接收单元，以及帧发送单元，通过使用加密密钥对该帧进行加密，从而发送该帧。

公开(公告)号：US07729250B2

公开(公告)日：2010-06-01

申请号：US11788203

申请日：2007-04-19

申请人： Kazumine Matoba

发明人： Kazumine Matoba

IPC分类号： H04L12/26

CPC分类号： H04L47/10 ,  H04L47/127 ,  H04L47/2416 ,  H04L47/283 ,  H04L47/36

摘要： It is an object to increase a processing-enabled user count and traffic size by avoiding frames from being discarded without any increase in buffer size within a bandwidth control device. A bandwidth control device includes a response measuring module measuring a size of a response frame and calculating, based on the measured size, a predictive traffic size as a size of the traffic of the response frame predicted to be received as a response to a request frame, and a bandwidth control module controlling a traffic rate of the response frame corresponding to the request frame by controlling a traffic rate of the request frame on the basis of the calculated predictive traffic size.

摘要翻译： 本发明的目的是通过避免在带宽控制设备内缓冲器大小的增加而丢弃帧而增加支持处理的用户数量和流量。 带宽控制装置包括响应测量模块，该响应测量模块测量响应帧的大小，并且基于所测量的大小，将作为响应帧的预测响应帧的业务量的预测业务量大小作为对请求帧的响应 以及带宽控制模块，其通过基于所计算的预测业务量大小来控制所述请求帧的业务速率来控制与所述请求帧相对应的响应帧的业务速率。