公开(公告)号：US5787089A

公开(公告)日：1998-07-28

申请号：US687302

申请日：1996-07-25

申请人： Liam M. Casey ,  David I. Allan

发明人： Liam M. Casey ,  David I. Allan

IPC分类号： H04L12/56 ,  H04N7/167 ,  H04N21/2381 ,  H04N21/266 ,  H04N21/2668 ,  H04N21/426 ,  H04N21/438 ,  H04N21/643 ,  H04Q11/04 ,  H04N7/173

CPC分类号： H04N21/4381 ,  H04N21/2381 ,  H04N21/26606 ,  H04N21/2668 ,  H04N21/42623 ,  H04N21/64307 ,  H04N7/1675 ,  H04Q11/0478 ,  H04L2012/5642 ,  H04L2012/5687

摘要： A distribution network groups television program signals into service tiers. To provide these from unsynchronized MPEG streams without resynchronization, each stream, representing a single program signal is encapsulated into ATM cells with a virtual path (VP) identification of each ATM cell corresponding to the service tier and a virtual channel (VC) identification corresponding to the respective program signal. Payloads in cells having the same VP are scrambled using a scrambling key allocated to that VP and hence to the corresponding service tier, and are unscrambled by entitled subscribers using the scrambling key which is supplied to them individually using public/private encryption techniques.

摘要翻译： 分销网络将电视节目信号分组成服务层。 为了从未同步的MPEG流中提供这些来自不同步的数据流，表示单个程序信号的每个流被封装到具有对应于服务层的每个ATM信元的虚拟路径（VP）标识的ATM信元中，以及与服务层对应的虚拟信道（VC）标识 相应的程序信号。 使用具有相同VP的小区中的有效负载使用分配给该VP并因此加到相应服务层的扰频密钥进行加扰，并且通过使用使用公共/专用加密技术单独提供给它们的加密密钥的授权订户来解扰。

公开(公告)号：US5870475A

公开(公告)日：1999-02-09

申请号：US588848

申请日：1996-01-19

申请人： David I. Allan ,  Liam M. Casey ,  Adrian D. Jones

发明人： David I. Allan ,  Liam M. Casey ,  Adrian D. Jones

IPC分类号： H04L9/08 ,  H04L9/00

CPC分类号： H04L9/0825 ,  H04L9/0891

摘要： In a hybrid fiber-coax distribution network, communications between a central station and particular end stations are encrypted using a working key (WK) of a symmetric encryption scheme. The central station has a public and private key (PPK) of a PPK encryption scheme, and some of the end stations can also each have a respective PPK. To provide secure communications for each end station, if the end station has a PPK, then the respective WK is generated in the central station and communicated, encrypted using the end station's public key (PK), to the end station. Otherwise, the WK is generated in the end station and communicated, encrypted using the central station's PK, to the central station. An individual identifier for each end station, and a cryptographic signature at least for end stations not having a PPK, can be communicated to the central station for authentication of the end stations.

摘要翻译： 在混合光纤同轴分配网络中，使用对称加密方案的工作密钥（WK）对中心站和特定终端站之间的通信进行加密。 中心站具有PPK加密方案的公私密钥（PPK），一些终端站也可以各有一个PPK。 为了为每个终端站提供安全通信，如果终端具有PPK，则在中心站中生成相应的WK，并使用终端站的公钥（PK）进行通信，并将其传送到终端站。 否则，WK在终端站生成，并使用中心站的PK进行加密传送到中心站。 每个终端站的个人标识符和至少对不具有PPK的终端站的加密签名可以被传送到中心站以用于终端站的认证。

公开(公告)号：US06205488B1

公开(公告)日：2001-03-20

申请号：US09191845

申请日：1998-11-13

申请人： Liam M. Casey ,  Ian M. Cunningham ,  Robert W. Eros

发明人： Liam M. Casey ,  Ian M. Cunningham ,  Robert W. Eros

IPC分类号： G06F15173

CPC分类号： H04L12/4641

摘要： A virtual private network enables private communications between two or more private networks over a shared MPLS network. The virtual private network disclosed, includes multiple routers connected to the shared MPLS network and configured to dynamically distribute VPN information across the shared MPLS network. The VPN information distributed by a router includes a VPN identifier assigned to that router, which identifies a VPN with which that router is associated. The router includes a first table which stores a map of the label switched paths from the router in question to all other routers connected to the shared MPLS network. The router also includes a second table which stores a map of label switched paths from the router in question to all other routers connected to the shared MPLS network which share a common VPN identifier.

摘要翻译： 虚拟专用网络通过共享MPLS网络实现两个或多个私有网络之间的私有通信。 所公开的虚拟专用网络包括连接到共享MPLS网络的多个路由器，并配置为跨共享MPLS网络动态分配VPN信息。 由路由器分发的VPN信息包括分配给该路由器的VPN标识符，其标识与该路由器相关联的VPN。 路由器包括第一表，其存储从所讨论的路由器到连接到共享MPLS网络的所有其他路由器的标签交换路径的映射。 路由器还包括第二表，其存储从所讨论的路由器到连接到共享MPLS网络的所有其他路由器的标签交换路径的图，所述其他路由器共享公共VPN标识符。

公开(公告)号：US08270319B2

公开(公告)日：2012-09-18

申请号：US12575190

申请日：2009-10-07

申请人： Liam M. Casey ,  David Ian Allan ,  Nigel Lawrence Bragg ,  Jerome Chiabaut

发明人： Liam M. Casey ,  David Ian Allan ,  Nigel Lawrence Bragg ,  Jerome Chiabaut

IPC分类号： H04L12/28 ,  H04L12/56

CPC分类号： H04L12/462 ,  H04L12/4641 ,  H04L45/02 ,  H04L45/026 ,  H04L45/04 ,  H04L45/16 ,  H04L45/18 ,  H04L45/66

摘要： A method ensures that multicast packets follow the same loop-free path followed by unicast packets in a packet communication network. The communication network includes at least one first area interconnected through at least one area border node (“ABN”) to a second area. Each ABN has a first level port connected to each first area and a second level port connected to the second area. Each multicast packet forwarded includes a header having a root-id identifying a root of a multicast tree. A data packet is received at an ABN. Responsive to receiving a multicast packet at a second level port of an area border node, the root-id of the multicast packet is examined and if the multicast packet is to be forwarded over at least one of the first level ports, a different root-id is substituted into the packet before the packet is forwarded over the first level port.

摘要翻译： 一种方法可以确保组播数据包遵循相同的无循环路径，随后是分组通信网络中的单播数据包。 通信网络包括通过至少一个区域边界节点（“ABN”）互连到第二区域的至少一个第一区域。 每个ABN具有连接到每个第一区域的第一级端口和连接到第二区域的第二级端口。 转发的每个组播数据包包括一个具有标识多播树根的根ID的报头。 在ABN处接收数据分组。 响应于在区域边界节点的第二级端口处接收到组播数据包，检查组播数据包的根ID，如果要通过至少一个第一级端口转发组播数据包， 在通过第一级端口转发数据包之前，将id替换为数据包。

公开(公告)号：US06493349B1

公开(公告)日：2002-12-10

申请号：US09191142

申请日：1998-11-13

申请人： Liam M. Casey

发明人： Liam M. Casey

IPC分类号： H04L1256

CPC分类号： H04L45/00 ,  H04L12/4675 ,  H04L45/50

摘要： A virtual private network infrastructure is provided which enables private network communications over a shared network. The infrastructure includes a shared network partitioned into at least two separate areas. A first router is connected to a first area and configured to distribute first router VPN information across the first area. The first router VPN information includes a VPN identifier which is assigned to the first router. It also includes a second router connected between the first area and a second area which is configured to distribute second router VPN information across the first area. The second router VPN information includes a VPN identifier which is assigned to the second router which is the same VPN identifier assigned to the first router. A method of configuring a virtual private network infrastructure is also provided which enables private network communications over a shared network. The method includes partitioning a shared network into multiple areas and connecting a virtual router between at least two of the areas. A VPN identifier is assigned to the virtual router. A link is created between a first private network router and a first shared network router which is connected to a first area. The VPN identifier assigned to the virtual router is also assigned to the first shared network router and the VPN identifier is communicated between the first shared network router and the virtual router.

摘要翻译： 提供了一种虚拟专用网络基础设施，可实现通过共享网络进行专用网络通信。 该基础设施包括被分成至少两个不同区域的共享网络。 第一路由器连接到第一区域并且被配置为在第一区域上分发第一路由器VPN信息。 第一路由器VPN信息包括分配给第一路由器的VPN标识符。 它还包括连接在第一区域和第二区域之间的第二路由器，其被配置为在第一区域内分发第二路由器VPN信息。 第二路由器VPN信息包括分配给第二路由器的VPN标识符，该第二路由器是分配给第一路由器的相同的VPN标识符。还提供了配置虚拟专用网络基础设施的方法，其使得能够通过共享网络进行专用网络通信。 该方法包括将共享网络划分成多个区域并在至少两个区域之间连接虚拟路由器。 VPN标识符被分配给虚拟路由器。 在第一私有网络路由器和连接到第一区域的第一共享网络路由器之间创建链路。 分配给虚拟路由器的VPN标识符也被分配给第一共享网络路由器，并且在第一共享网络路由器和虚拟路由器之间传送VPN标识符。

公开(公告)号：US5946313A

公开(公告)日：1999-08-31

申请号：US821145

申请日：1997-03-20

申请人： David Ian Allan ,  Liam M. Casey ,  Andre J. Robert

发明人： David Ian Allan ,  Liam M. Casey ,  Andre J. Robert

IPC分类号： H04L12/413 ,  H04L12/56 ,  H04L12/64 ,  H04Q11/04

CPC分类号： H04L12/4633 ,  H04Q11/0478 ,  H04L12/64 ,  H04L2012/5618 ,  H04L2012/5658 ,  H04L2012/5665

摘要： The invention provides for a E-Mux and a method for encapsulating/segmenting ATM cells into/from an Ethernet frame at the boundary between an ATM and an Ethernet network. An Ethernet end-station on the E-Mux is addressed using multiple MAC level identifiers, which are dynamically assigned according to the ATM virtual circuits which terminate on that end station, and have only transitory significance on the Ethernet. A unique ATM OUI identifies the frames carrying ATM-traffic.

摘要翻译： 本发明提供了一种E-Mux和一种在ATM和以太网之间的边界处将ATM信元封装/分割成以太网帧的方法。 E-MUX上的以太网端站使用多个MAC级别标识符进行寻址，这些标识符根据终端于该终端站的ATM虚拟电路动态分配，并且在以太网上只具有暂时的意义。 独特的ATM OUI识别携带ATM流量的帧。

公开(公告)号：US4566098A

公开(公告)日：1986-01-21

申请号：US609691

申请日：1984-05-14

申请人： Neil D. Gammage ,  Jan K. Pachl ,  Liam M. Casey

发明人： Neil D. Gammage ,  Jan K. Pachl ,  Liam M. Casey

IPC分类号： H04L12/43 ,  H04L12/433 ,  H04J3/16

CPC分类号： H04L12/433 ,  H04L12/43

摘要： The invention provides a ring communication network having an improved error recovery mechanism. The system uses a token or toggle signal which does not have an inherent control value but one that requires the values of a contiguous pair thereof to control access to the transmission medium of the system. A station recognizes that the ring is idle if the present value of the toggle signal is the same as the value of the toggle signal in the previous frame. Conversely, a station recognizes that the ring is busy if the present value of the toggle signal is different from the value of the toggle signal in the previous frame. A station that detects an idle toggle signal and wishes to transmit data on the communication ring changes the value of the toggle signal to that which corresponds to a busy status and transmits its data.

摘要翻译： 本发明提供一种具有改进的错误恢复机制的环通信网络。 该系统使用不具有固有控制值但是需要其连续对的值来控制对系统的传输介质的访问的令牌或切换信号。 如果切换信号的当前值与前一帧中的切换信号的值相同，则站识别出环是空闲的。 相反，如果切换信号的当前值与先前帧中的切换信号的值不同，则站识别出该振铃是忙的。 检测空闲切换信号并希望在通信环路上发送数据的站将切换信号的值改变为对应于忙状态的值，并发送其数据。