公开(公告)号：US08929216B2

公开(公告)日：2015-01-06

申请号：US13301350

申请日：2011-11-21

申请人： Nam-Seok Ko ,  Jong-Dae Park ,  Byung-Ho Yae ,  Sung-Kee Noh ,  Woo-Sug Jung ,  Sung-Jin Moon ,  Hwan-Jo Heo ,  Soon-Seok Lee

发明人： Nam-Seok Ko ,  Jong-Dae Park ,  Byung-Ho Yae ,  Sung-Kee Noh ,  Woo-Sug Jung ,  Sung-Jin Moon ,  Hwan-Jo Heo ,  Soon-Seok Lee

IPC分类号： H04L12/26 ,  H04L12/873 ,  H04L12/875 ,  H04L12/869 ,  H04L12/867

CPC分类号： H04L47/52 ,  H04L47/568 ,  H04L47/58 ,  H04L47/629

摘要： A packet scheduling method and apparatus which allows multiple flows that require data transmission to the same output port of a network device such as a router to fairly share bandwidth. The packet scheduling method includes calculating an expected time of arrival of a (k+1)-th packet subsequent to a currently input k-th packet of individual flows by use of bandwidth allocated fairly to each of the flows and a length of the k-th packet; in response to the arrival of the (k+1)-th packet, comparing the expected time of arrival of the (k+1)-th packet to an actual time of arrival of the (k+1)-th packet; and scheduling the (k+1)-th packet of each flow according to the comparison result.

摘要翻译： 一种分组调度方法和装置，其允许需要数据传输到诸如路由器的网络设备的相同输出端口的多个流以公平地共享带宽。 分组调度方法包括通过使用公平分配给每个流的带宽和k的长度来计算当前输入的各个流的第k个分组之后的第（k + 1）个分组的到达时间 第 响应于第（k + 1）个分组的到达，将第（k + 1）个分组的预期到达时间与第（k + 1）个分组的实际到达时间进行比较; 并根据比较结果调度每个流的第（k + 1）个分组。

公开(公告)号：US08660001B2

公开(公告)日：2014-02-25

申请号：US13299618

申请日：2011-11-18

申请人： Nam-Seok Ko ,  Jong-Dae Park ,  Byung-Ho Yae ,  Sung-Kee Noh ,  Woo-Sug Jung ,  Sung-Jin Moon ,  Hwan-Jo Heo ,  Soon-Seok Lee

发明人： Nam-Seok Ko ,  Jong-Dae Park ,  Byung-Ho Yae ,  Sung-Kee Noh ,  Woo-Sug Jung ,  Sung-Jin Moon ,  Hwan-Jo Heo ,  Soon-Seok Lee

IPC分类号： H04L12/26

CPC分类号： H04L47/629 ,  H04L43/0894 ,  H04L47/52 ,  H04L47/525 ,  H04L47/568 ,  H04L47/58

摘要： A packet scheduling apparatus and method to fairly share network bandwidth between multiple subscribers and to fairly share the bandwidth allocated to each subscriber between multiple flows are provided. The packet scheduling method includes calculating first bandwidth for each subscriber to fairly share total bandwidth set for the transmission of packets between multiple subscribers; calculating second bandwidth for each flow to fairly share the first bandwidth between one or more flows that belong to each of the multiple subscribers; and scheduling a packet of each of the one or more flows based on the second bandwidth.

摘要翻译： 提供了一种在多个用户之间公平共享网络带宽并且公平地共享在多个流之间分配给每个用户的带宽的分组调度装置和方法。 分组调度方法包括：计算每个用户的第一带宽，以共享共享用于多个用户之间的分组传输的总带宽; 计算每个流的第二带宽以公平地共享属于多个用户中的每一个的一个或多个流之间的第一带宽; 以及基于所述第二带宽调度所述一个或多个流中的每一个的分组。

公开(公告)号：US20120127858A1

公开(公告)日：2012-05-24

申请号：US13299618

申请日：2011-11-18

申请人： Nam-Seok KO ,  Jong-Dae Park ,  Byung-Ho Yae ,  Sung-Kee Noh ,  Woo-Sug Jung ,  Sung-Jin Moon ,  Hwan-Jo Heo ,  Soon-Seok Lee

发明人： Nam-Seok KO ,  Jong-Dae Park ,  Byung-Ho Yae ,  Sung-Kee Noh ,  Woo-Sug Jung ,  Sung-Jin Moon ,  Hwan-Jo Heo ,  Soon-Seok Lee

IPC分类号： H04L12/26

CPC分类号： H04L47/629 ,  H04L43/0894 ,  H04L47/52 ,  H04L47/525 ,  H04L47/568 ,  H04L47/58

摘要： A packet scheduling apparatus and method to fairly share network bandwidth between multiple subscribers and to fairly share the bandwidth allocated to each subscriber between multiple flows are provided. The packet scheduling method includes calculating first bandwidth for each subscriber to fairly share total bandwidth set for the transmission of packets between multiple subscribers; calculating second bandwidth for each flow to fairly share the first bandwidth between one or more flows that belong to each of the multiple subscribers; and scheduling a packet of each of the one or more flows based on the second bandwidth.

摘要翻译： 提供了一种在多个用户之间公平共享网络带宽并且公平地共享在多个流之间分配给每个用户的带宽的分组调度装置和方法。 分组调度方法包括：计算每个用户的第一带宽，以共享共享用于多个用户之间的分组传输的总带宽; 计算每个流的第二带宽以公平地共享属于多个用户中的每一个的一个或多个流之间的第一带宽; 以及基于所述第二带宽调度所述一个或多个流中的每一个的分组。

公开(公告)号：US20110023088A1

公开(公告)日：2011-01-27

申请号：US12842194

申请日：2010-07-23

申请人： Nam-Seok KO ,  Soon-Seok Lee ,  Jong-Dae Park ,  Sung-Kee Noh ,  Pyung-Koo Park ,  Seung-Woo Hong ,  Sung-Back Hong ,  Seong Moon

发明人： Nam-Seok KO ,  Soon-Seok Lee ,  Jong-Dae Park ,  Sung-Kee Noh ,  Pyung-Koo Park ,  Seung-Woo Hong ,  Sung-Back Hong ,  Seong Moon

IPC分类号： G06F21/20

CPC分类号： H04L63/1441 ,  H04L63/102

摘要： A traffic analysis and flow-based dynamic access control system and method. The flow-based dynamic access control system for controlling a user's access to an internal communication network through an external communication network includes an access control unit operating in an access control mode in which traffic received from a user is basically blocked, generating state management information of a flow, which is received from the user, based on a specified packet of the flow, and verifying whether access of the flow to the internal communication network is a normal access. As a proactive defense concept of allowing only normal users to access an internal network, a method of blocking attacks from a system contaminated by a worm virus, detecting a cyber attack on a certain system in advance and automatically avoiding the cyber attack, and guaranteeing the quality of normal traffic even under cyber attacks without performance degradation of the internal network is provided.

摘要翻译： 一种流量分析和流量动态访问控制系统及方法。 用于通过外部通信网络控制用户对内部通信网络的访问的基于流的动态访问控制系统包括以访问控制模式操作的访问控制单元，其中从用户接收的业务基本上被阻止，生成状态管理信息 从用户接收的流，基于流的指定分组，以及验证到内部通信网络的流的访问是否是正常访问。 作为只允许正常用户访问内部网络的主动防御概念，阻止来自受病毒感染的系统的攻击的方法，提前检测某个系统的网络攻击并自动避免网络攻击，并保证 提供即使在网络攻击下正常流量的质量，也不会导致内部网络性能下降。

公开(公告)号：US20120166558A1

公开(公告)日：2012-06-28

申请号：US13333446

申请日：2011-12-21

申请人： Eun-Joo KIM ,  Soon-Seok Lee ,  Young-Boo Kim

发明人： Eun-Joo KIM ,  Soon-Seok Lee ,  Young-Boo Kim

IPC分类号： G06F15/16

CPC分类号： H04L51/08 ,  H04L51/14 ,  H04L51/34

摘要： An email forwarding apparatus and method are provided. The email forwarding apparatus for an original email received from a transmitter email providing apparatus to a mobile communication terminal device in response to a request from the transmitter email providing apparatus, the email forwarding apparatus includes a data communication unit to transmit and receive information regarding an email to and from the transmitter email providing apparatus or the mobile communication terminal device; a file storage unit to store an attachment file that is attached to the original email; and a control unit to transmit to the mobile communication terminal device an email which includes access information associated with the attachment file stored in the file storage unit and/or text information contained in the original email and transmit to a receiver email providing apparatus a forwarding email which includes the attachment file stored in the file storage unit and/or remade text information.

摘要翻译： 提供了一种电子邮件转发装置和方法。 响应于来自发送者电子邮件提供装置的请求，将从发送者电子邮件提供装置接收到的原始电子邮件转发装置发送给移动通信终端装置，电子邮件转发装置包括数据通信单元，用于发送和接收有关电子邮件的信息 来自发射机电子邮件提供装置或移动通信终端装置; 文件存储单元，用于存储附加到原始电子邮件的附件文件; 以及控制单元，向移动通信终端设备发送包含与存储在文件存储单元中的附件文件相关联的访问信息和/或包含在原始电子邮件中的文本信息的电子邮件，并将其发送到接收者电子邮件提供设备转发电子邮件 其包括存储在文件存储单元中的附件文件和/或重写文本信息。

公开(公告)号：US08270406B2

公开(公告)日：2012-09-18

申请号：US12516229

申请日：2007-10-31

申请人： Heuk Park ,  Jong-Tae Song ,  Kyung-Gyu Jeon ,  Soon-Seok Lee

发明人： Heuk Park ,  Jong-Tae Song ,  Kyung-Gyu Jeon ,  Soon-Seok Lee

IPC分类号： H04L12/28

CPC分类号： H04L63/1441 ,  H04L63/1466

摘要： Provided are a method and apparatus for blocking forged multicast packets. The apparatus includes input and output ports connected to user terminals; a forwarding process unit transferring a frame input through one of the input ports to one of the output ports connected to a user terminal having a destination address; a determination unit determining an address of a user terminal connected to one of the input ports from a source address included in the frame; a filtering database storing information on the output port connected to the user terminal having the destination address of the frame based on information received from the determination unit; a multicast gate information unit including information on multicast media access control (MAC) addresses of frames providing a monodirectional multicast service and blocking or forwarding all frames having a corresponding multicast MAC address as the destination address by checking whether the input and output ports are connected to an Internet group management protocol (IGMP) querier or not; and a port information transference unit learning the multicast MAC address of the IGMP querier connected to the apparatus, obtaining information on a port having the multicast MAC address as the destination address from the filtering database, and transferring the information to the multicast gate information unit. According to the present application, forged traffic is blocked from being multicasted and thus restricted resources of a network are prevented from being wasted. As a result, the network may be used more efficiently in an industrial field.

摘要翻译： 提供了一种用于阻止伪造的组播数据包的方法和装置。 该装置包括连接到用户终端的输入和输出端口; 转发处理单元，将通过所述输入端口之一输入的帧传送到连接到具有目的地地址的用户终端的输出端口之一; 确定单元，从包括在所述帧中的源地址确定连接到所述输入端口之一的用户终端的地址; 过滤数据库，其基于从所述确定单元接收的信息，存储关于连接到具有所述帧的目的地地址的用户终端的输出端口的信息; 组播门信息单元，其包括提供单向多播服务的帧的组播媒体访问控制（MAC）地址的信息，并且通过检查输入和输出端口是否连接到所述具有相应多播MAC地址的所有帧作为目的地地址来阻止或转发 一个互联网组管理协议（IGMP）查询器; 以及端口信息转发单元，用于学习与该装置连接的IGMP查询器的组播MAC地址，从过滤数据库获取具有组播MAC地址的端口作为目的地地址的信息，并将该信息传送给组播门信息单元。 根据本申请，伪造的业务被阻止被多播，从而防止网络的资源被浪费。 结果，可以在工业领域中更有效地使用网络。

公开(公告)号：US20100046513A1

公开(公告)日：2010-02-25

申请号：US12516088

申请日：2007-10-31

申请人： Heuk Park ,  Kyung-Gyu Jeon ,  Soon-Seok Lee ,  Jong-Tae Song

发明人： Heuk Park ,  Kyung-Gyu Jeon ,  Soon-Seok Lee ,  Jong-Tae Song

IPC分类号： H04L12/56

CPC分类号： H04N7/17318 ,  H04N7/17345 ,  H04N21/2543 ,  H04N21/25816 ,  H04N21/472 ,  H04N21/6125 ,  H04N21/6405

摘要： A system for and a method of providing IPTV service in a next generation network are provided. The system includes a service control unit, a transmission control unit, and an L2 switch unit. A service control unit authenticates a user terminal by receiving a request for providing a service from the user terminal which desires to receive the IPTV service and search for subscription information including the IPTV service for which the user has watching authority, when the user is an IPTV service subscriber. A transmission control unit extracts identification information of the user and a multicast address through which the IPTV service is provided from the subscription information found by the service control unit. An L2 switch unit performs switching so as to connect the multicast router which provides the IPTV service to the user terminal by identifying the watching authority of the user for the IPTV service corresponding to the request of the user terminal for providing the service by using the identification information and the multicast address through which the IPTV service provided, which are extracted by the transmission control unit.

摘要翻译： 提供了一种在下一代网络中提供IPTV服务的系统和方法。 该系统包括业务控制单元，传输控制单元和L2交换单元。 服务控制单元通过从用户终端接收提供服务的请求来认证用户终端，该用户终端希望接收IPTV服务，并且当用户是IPTV时，搜索包括用户具有观看权限的IPTV服务的订阅信息 服务订户。 传输控制单元从服务控制单元发现的订阅信息提取用户的识别信息和提供IPTV服务的多播地址。 L2交换单元进行交换，以通过使用识别符号来识别与用户终端的用户终端的请求对应的用于IPTV服务的用户的观看权限，从而将提供IPTV业务的组播路由器连接到用户终端 信息和IPTV服务提供的多播地址，由传输控制单元提取。

公开(公告)号：US20100157892A1

公开(公告)日：2010-06-24

申请号：US12505795

申请日：2009-07-20

申请人： Sung-Hyun YOON ,  Soon-Seok Lee

发明人： Sung-Hyun YOON ,  Soon-Seok Lee

IPC分类号： H04W40/00

CPC分类号： H04W40/24 ,  H04L45/02 ,  H04L45/04

摘要： Provided is a mobility supporting method of a mobile router. The method includes generating an area identifier to identify an open shortest path first area; and transmitting routing information including the area identifier to an access router.

摘要翻译： 提供了一种移动路由器的移动性支持方法。 该方法包括生成区域标识符以识别开放最短路径第一区域; 以及将包括所述区域标识符的路由信息​​发送到接入路由器。

公开(公告)号：US20100020796A1

公开(公告)日：2010-01-28

申请号：US12516229

申请日：2007-10-31

申请人： Heuk Park ,  Jong-Tae Song ,  Kyung-Gyu Jeon ,  Soon-Seok Lee

发明人： Heuk Park ,  Jong-Tae Song ,  Kyung-Gyu Jeon ,  Soon-Seok Lee

IPC分类号： H04L12/56

CPC分类号： H04L63/1441 ,  H04L63/1466

摘要： Provided are a method and apparatus for blocking forged multicast packets. The apparatus includes input and output ports connected to user terminals; a forwarding process unit transferring a frame input through one of the input ports to one of the output ports connected to a user terminal having a destination address; a determination unit determining an address of a user terminal connected to one of the input ports from a source address included in the frame; a filtering database storing information on the output port connected to the user terminal having the destination address of the frame based on information received from the determination unit; a multicast gate information unit including information on multicast media access control (MAC) addresses of frames providing a monodirectional multicast service and blocking or forwarding all frames having a corresponding multicast MAC address as the destination address by checking whether the input and output ports are connected to an Internet group management protocol (IGMP) querier or not; and a port information transference unit learning the multicast MAC address of the IGMP querier connected to the apparatus, obtaining information on a port having the multicast MAC address as the destination address from the filtering database, and transferring the information to the multicast gate information unit. According to the present application, forged traffic is blocked from being multicasted and thus restricted resources of a network are prevented from being wasted. As a result, the network may be used more efficiently in an industrial field.

摘要翻译： 提供了一种用于阻止伪造的组播数据包的方法和装置。 该装置包括连接到用户终端的输入和输出端口; 转发处理单元，将通过所述输入端口之一输入的帧传送到连接到具有目的地地址的用户终端的输出端口之一; 确定单元，从包括在所述帧中的源地址确定连接到所述输入端口之一的用户终端的地址; 过滤数据库，其基于从所述确定单元接收的信息，存储关于连接到具有所述帧的目的地地址的用户终端的输出端口的信息; 组播门信息单元，其包括提供单向多播服务的帧的组播媒体访问控制（MAC）地址的信息，并且通过检查输入和输出端口是否连接到所述具有相应多播MAC地址的所有帧作为目的地地址来阻止或转发 一个互联网组管理协议（IGMP）查询器; 以及端口信息转发单元，用于学习与该装置连接的IGMP查询器的组播MAC地址，从过滤数据库获取具有组播MAC地址的端口作为目的地地址的信息，并将该信息传送给组播门信息单元。 根据本申请，伪造的业务被阻止被多播，从而防止网络的资源被浪费。 结果，可以在工业领域中更有效地使用网络。