公开(公告)号：US5301303A

公开(公告)日：1994-04-05

申请号：US687590

申请日：1991-04-16

申请人： Menachem Abraham ,  David Bartolini ,  Samuel Ben-Meir ,  Ilan Carmi ,  John L. Cook, III ,  Ira Hart ,  Alex Herman ,  Steven E. Horowitz ,  Yongbum Kim ,  Yoseph Linde ,  Brian Ramelson ,  Richard Rehberg ,  Gordon Saussy ,  Yuval Shohet ,  Igor Zhovnirovski

发明人： Menachem Abraham ,  David Bartolini ,  Samuel Ben-Meir ,  Ilan Carmi ,  John L. Cook, III ,  Ira Hart ,  Alex Herman ,  Steven E. Horowitz ,  Yongbum Kim ,  Yoseph Linde ,  Brian Ramelson ,  Richard Rehberg ,  Gordon Saussy ,  Yuval Shohet ,  Igor Zhovnirovski

IPC分类号： G06F13/00 ,  H04L12/46 ,  H04L29/06 ,  G06F9/00 ,  G06F15/00

CPC分类号： H04L29/06 ,  H04L12/46 ,  H04L69/18 ,  Y10S370/908

摘要： A local net area network, or LAN, configuration is provided with a multiple generic LAN channel architecture which can be logically and dynamically changed. The configuration control can be applied to each module of the network and to each port of a module of a LAN hub. The architecture provides multiple LAN protocols to be used simultaneously, as needed, through protocol specific functions. Industry standard protocol such as: token bus, token ring, and fiber distributed data interface (FDDI), can be implemented using the generic channel architecture and its characteristics providing respective network functions. The architecture also provides a digital collision detection method and provides information necessary for precise network statistics monitoring. The token passing ring architecture provides a logical ring formation within the generic channel. A token passing bus architecture uses modified Ethernet.TM. architecture, and a hub management provides control for the generic multichannel and the LAN management provides protocol dependent network management. The architecture provided allows multiple hub management entities via hub mastership arbitration to provide a unique master for the hub management function.

摘要翻译： 本地网络局域网或局域网配置提供了可以逻辑和动态更改的多个通用LAN通道体系结构。 配置控制可以应用于网络的每个模块和LAN集线器的模块的每个端口。 该架构根据需要通过协议特定的功能提供多个LAN协议，以便同时使用。 行业标准协议如令牌总线，令牌环和光纤分布式数据接口（FDDI）可以使用通用通道架构及其提供各自网络功能的特性来实现。 该架构还提供数字冲突检测方法，并提供精确网络统计监控所需的信息。 令牌传递环结构提供了通用通道内的逻辑环形成。 令牌传递总线架构使用修改的以太网（商标）架构，集线器管理为通用多通道提供控制，而LAN管理提供了依赖于协议的网络管理。 所提供的架构允许通过集线器管理仲裁的多个集线器管理实体为集线器管理功能提供独特的主控。

公开(公告)号：US5530842A

公开(公告)日：1996-06-25

申请号：US221383

申请日：1994-03-31

申请人： Menachem Abraham ,  David Bartolini ,  Samuel Ben-Meir ,  Ilan Carmi ,  John L. Cook, III ,  Ira Hart ,  Alex Herman ,  Steven E. Horowitz ,  Yongbum Kim ,  Yoseph Linde ,  Brian Ramelson ,  Richard Rehberg ,  Gordon Saussy ,  Yuval Shohet ,  Igor Zhovnirovski

发明人： Menachem Abraham ,  David Bartolini ,  Samuel Ben-Meir ,  Ilan Carmi ,  John L. Cook, III ,  Ira Hart ,  Alex Herman ,  Steven E. Horowitz ,  Yongbum Kim ,  Yoseph Linde ,  Brian Ramelson ,  Richard Rehberg ,  Gordon Saussy ,  Yuval Shohet ,  Igor Zhovnirovski

IPC分类号： G06F13/00 ,  H04L12/46 ,  H04L29/06 ,  G06F9/00 ,  G06F15/00

CPC分类号： H04L29/06 ,  H04L12/46 ,  H04L69/18 ,  Y10S370/908

摘要： A local net area network, or LAN, configuration is provided with a multiple generic LAN channel architecture which can be logically and dynamically changed. The configuration control can be applied to each module of the network and to each port of a module of a LAN hub. The architecture provides multiple LAN protocols to be used simultaneously, as needed, through protocol specific functions. Industry standard protocol such as: token bus, token ring, and fiber distributed data interface (FDDI), can be implemented using the generic channel architecture and its characteristics providing respective network functions. The architecture also provides a digital collision detection method and provides information necessary for precise network statistics monitoring. The token passing ring architecture provides a logical ring formation within the generic channel. A token passing bus architecture uses modified Ethernet.TM. architecture, and a hub management provides control for the generic multichannel and the LAN management provides protocol dependent network management. The architecture provided allows multiple hub management entities via hub mastership arbitration to provide a unique master for the hub management function.

摘要翻译： 本地网络局域网或局域网配置提供了可以逻辑和动态更改的多个通用LAN通道体系结构。 配置控制可以应用于网络的每个模块和LAN集线器的模块的每个端口。 该架构根据需要通过协议特定的功能提供多个LAN协议，以便同时使用。 行业标准协议如令牌总线，令牌环和光纤分布式数据接口（FDDI）可以使用通用通道架构及其提供各自网络功能的特性来实现。 该架构还提供数字冲突检测方法，并提供精确网络统计监控所需的信息。 令牌传递环结构提供了通用通道内的逻辑环形成。 令牌传递总线架构使用修改的以太网TM架构，并且集线器管理为通用多通道提供控制，并且LAN管理提供与协议相关的网络管理。 所提供的架构允许通过集线器管理仲裁的多个集线器管理实体为集线器管理功能提供独特的主控。

公开(公告)号：US5311593A

公开(公告)日：1994-05-10

申请号：US882517

申请日：1992-05-13

申请人： Ilan Carmi

发明人： Ilan Carmi

IPC分类号： H04L29/06 ,  H04K1/00 ,  H04Q11/04 ,  H04L9/02

CPC分类号： H04L63/0428 ,  H04L63/1408 ,  H04L63/105

摘要： A method and apparatus for providing secure communication on open networks. Each port of the network is provided with a security entity which monitors the communication between one port to the other. End stations connected to the ports communicate with other end stations by transmitting data to the port and receiving data from the port. The data is sent out in data packets with a destination address and a source address. Each port has its own unique address. The security entity checks data packets coming into the port for a destination address. The destination address of incoming data packets is compared with the port address of the affiliated port. Also, outgoing data packets from an end station to a port are also monitored by the security entity. The security entity compares the destination and source address of the data packet with the affiliated port address. The security entity cyphers and decyphers a data portion of the data packet depending on whether or not the source address, destination address and port address match. In this way, end stations not destined to read the data portions are thus prevented from doing so. Also end stations which are not authorized to transmit onto the network are prevented from having any users on the network understand their data.

摘要翻译： 一种用于在开放网络上提供安全通信的方法和装置。 网络的每个端口都设置有一个安全实体，它监视一个端口与另一个端口之间的通信。 连接到端口的终端通过向端口发送数据并从端口接收数据与其他终端站通信。 数据以目的地址和源地址的数据包发送出去。 每个端口都有自己独特的地址。 安全实体检查进入端口的数据包目的地址。 输入数据包的目的地址与附属端口的端口地址进行比较。 此外，从终端站到端口的输出数据分组也由安全实体监视。 安全实体将数据包的目的地址和源地址与附属端口地址进行比较。 安全实体根据源地址，目的地址和端口地址是否匹配，对数据包的数据部分进行解密和解密。 这样就能防止不注册读取数据部分的终端站这样做。 还禁止未授权传输到网络上的终端站使网络上的任何用户了解其数据。